Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/D3kCj8JBUQ4nVZf4GH8Jkz08hmA.roa
File: D3kCj8JBUQ4nVZf4GH8Jkz08hmA.roa (raw, json)
Hash identifier: EqwJmkgR/QRSLPkfni8HwhqdccgRHKYSobjiB3O9Orw=
Subject key identifier: 0F:79:02:8F:C2:41:51:0E:27:55:97:F8:18:7F:09:93:3D:3C:86:60
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0187E607045373A36C5CAC6FF17129507103
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/D3kCj8JBUQ4nVZf4GH8Jkz08hmA.roa
Signing time: Thu 04 May 2023 09:10:32 +0000
ROA not before: Thu 04 May 2023 09:10:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e6:07:04:53:73:a3:6c:5c:ac:6f:f1:71:29:50:71:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 4 09:10:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f79028fc241510e275597f8187f09933d3c8660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:d9:a3:bb:b9:37:24:4e:b7:ca:3d:11:bd:45:
37:77:8e:55:12:79:eb:dc:62:af:15:b2:f1:fa:02:
d7:72:5e:26:85:79:4f:7d:66:d7:69:91:c8:94:95:
db:4c:6b:c5:85:fe:c2:94:19:86:9e:69:63:f7:58:
d6:2b:88:19:f3:cf:d4:2a:31:6a:ad:0e:b6:98:c7:
9e:36:52:c2:eb:63:f5:ba:34:77:02:3c:c0:ee:ac:
f8:bf:4f:58:1d:98:90:0e:9f:f1:87:5d:7f:a5:d7:
43:0f:b2:65:d4:1c:56:b3:e3:83:99:fb:9f:4c:f1:
42:ea:28:fd:cd:d2:6d:18:0e:de:e2:43:a7:3b:d9:
bc:83:0c:93:dc:94:f2:cd:6e:0d:22:a8:03:2d:e4:
9e:6e:5d:27:9d:61:9d:d5:e0:eb:d1:34:bc:88:b4:
36:dc:d9:f3:3a:34:41:56:d8:7d:6b:b9:de:77:ec:
62:ba:97:98:89:29:03:77:ba:52:55:7a:87:9a:f4:
1d:f6:04:f0:59:bf:e0:47:e5:05:53:ee:71:10:2f:
dd:a1:b7:fd:9a:3c:7c:66:f1:4a:f8:eb:85:a8:51:
cc:d1:88:35:f4:c8:ed:6e:b1:d2:96:f3:65:05:d0:
1c:60:2e:8e:41:b7:b6:27:62:17:a1:da:3c:92:1e:
04:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:79:02:8F:C2:41:51:0E:27:55:97:F8:18:7F:09:93:3D:3C:86:60
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/D3kCj8JBUQ4nVZf4GH8Jkz08hmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
85:27:94:dc:cd:bf:c9:72:3c:24:e3:89:cf:6f:d9:1c:17:a2:
bb:e6:c8:ed:35:4a:80:4c:af:f8:54:4a:29:af:50:79:04:e9:
56:09:e1:58:23:e7:81:50:a0:d2:f3:60:13:09:62:fc:02:3e:
46:c1:ba:00:53:d2:b1:d9:1f:b9:fa:e1:ef:85:52:0a:5e:d7:
e9:16:d1:b0:1e:c4:51:d2:60:3b:7e:0e:30:39:df:36:9c:c2:
7b:b4:92:e0:01:57:ca:77:1a:ab:02:01:1e:8b:46:f5:d6:d1:
fa:17:eb:6a:7e:76:e0:22:56:3e:ba:c2:04:86:a6:9f:cb:42:
dd:3c:26:94:47:ec:11:85:52:43:ad:6e:62:81:7c:28:94:18:
f0:2f:bc:d7:5d:cf:0d:59:9c:1f:27:78:2e:46:ef:4a:66:63:
56:f1:dd:ad:0b:99:41:4b:b3:cb:86:34:14:91:08:ed:32:7c:
83:a3:df:53:4b:3f:45:c4:f2:ec:15:3e:4f:54:a7:9f:76:47:
00:81:e0:e7:d4:ef:cb:a3:4d:90:59:81:3f:87:26:d1:43:73:
46:be:6e:a1:1d:e0:b8:1f:8e:b1:c5:6e:a8:93:11:f1:3f:82:
b0:21:7e:b4:26:ea:63:c3:b9:a7:0b:13:b0:c2:7b:41:ac:2a:
ae:e0:a3:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 16:09:30 2025 by rpki-client