Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/D7iiLHTfWa9FSalyWCIn7aNlqjU.roa
File: D7iiLHTfWa9FSalyWCIn7aNlqjU.roa (raw, json)
Hash identifier: R5lzVZojF2RsLjpDDoW5aL4BfU5ySMee4IsYQjBfYVY=
Subject key identifier: 0F:B8:A2:2C:74:DF:59:AF:45:49:A9:72:58:22:27:ED:A3:65:AA:35
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 68E8A89C
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/D7iiLHTfWa9FSalyWCIn7aNlqjU.roa
Signing time: Tue 08 Feb 2022 12:04:41 +0000
ROA not before: Tue 08 Feb 2022 12:04:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:17e:d7ee:e040/128 maxlen: 128
2001:67c:64:ffff:0:17e:d592:92a4/128 maxlen: 128
2001:67c:64:ffff:0:17e:d600:60b0/128 maxlen: 128
2001:67c:64:ffff:0:17e:d524:ead9/128 maxlen: 128
2001:67c:64:ffff:0:17e:d901:fecb/128 maxlen: 128
2001:67c:64:ffff:0:17e:d7b8:3101/128 maxlen: 128
2001:67c:64:ffff:0:17e:d6a5:23ae/128 maxlen: 128
2001:67c:64:ffff:0:17e:a0dd:2f5b/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:17e:d826:2565/128 maxlen: 128
2001:67c:64:ffff:0:17e:d713:9aeb/128 maxlen: 128
2001:67c:64:ffff:0:17e:d55b:c264/128 maxlen: 128
2001:67c:64:ffff:0:17e:d66e:8559/128 maxlen: 128
2001:67c:64:ffff:0:17e:d938:ba2e/128 maxlen: 128
2001:67c:64:ffff:0:17e:d85c:d348/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1760077980 (0x68e8a89c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 8 12:04:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0fb8a22c74df59af4549a972582227eda365aa35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:69:d8:45:3a:66:3f:b0:65:0a:25:91:62:76:
85:54:39:57:2a:2e:b2:d6:71:19:3e:e8:25:2e:6a:
7d:89:21:84:ba:0f:b6:17:d6:6a:6c:c8:fb:b6:f1:
7a:e2:7e:57:f7:fc:a4:ac:24:23:95:49:5a:39:10:
25:ef:70:95:0b:d0:1f:99:14:55:87:f9:58:8e:8b:
ad:ca:be:64:20:65:e2:dc:97:06:ac:b4:2e:63:e0:
29:4e:9c:31:d4:a3:07:47:df:75:8e:56:28:52:a6:
aa:ba:15:ca:7a:8b:c2:1b:5e:9e:4f:c2:66:f3:b4:
2f:4b:37:c4:0b:ff:3e:30:9b:a1:22:08:71:39:42:
bc:09:95:cd:ab:df:4b:64:57:31:09:39:4e:25:b5:
d0:42:24:3a:87:46:ef:e2:d7:a1:a7:8e:b0:54:97:
5c:91:e6:1d:95:78:49:1b:3c:54:37:d1:df:33:09:
31:e3:09:6b:8d:77:31:49:9f:f5:9b:af:39:fb:21:
63:d9:c7:57:f8:a0:c6:62:69:58:38:4a:11:79:a3:
23:55:17:44:f5:85:3a:22:9b:4a:84:d5:a5:fd:20:
e1:00:27:11:a1:4b:d2:69:b5:be:8c:6b:58:ce:c4:
6c:dd:94:04:34:fb:99:28:36:00:ee:b1:04:80:a7:
d8:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:B8:A2:2C:74:DF:59:AF:45:49:A9:72:58:22:27:ED:A3:65:AA:35
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/D7iiLHTfWa9FSalyWCIn7aNlqjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5b:36:e4:38:77:f5:4f:5c:d2:35:e2:1f:b9:4e:65:7f:23:f7:
48:0e:f4:c8:6f:6f:8c:92:51:7c:cb:82:3e:94:76:cc:f7:c7:
00:4b:5b:b1:fa:53:32:e4:2d:f2:46:46:62:23:0e:76:98:4b:
33:79:81:33:25:3b:26:d1:08:c2:2d:de:1e:ee:15:f8:1d:e1:
a4:35:b4:6f:e1:a9:d9:22:c2:f0:e4:7d:e3:92:79:25:57:bc:
9c:50:3b:87:cc:f6:02:5a:98:92:6e:b1:03:1f:a5:f9:23:22:
a6:03:c7:2b:67:88:80:fc:1f:f5:92:35:94:30:1e:14:19:8a:
b2:4c:cb:04:cc:8a:96:56:42:d1:87:65:45:2d:57:94:ed:b8:
b9:db:a2:fd:be:cd:a9:ff:98:f3:29:c5:6f:50:c1:05:1b:f4:
ec:9b:4f:96:61:df:e1:03:df:83:a2:2f:88:f2:b4:11:c1:d1:
32:8d:3d:e7:27:7c:12:16:c7:cf:96:26:db:50:63:8b:94:d4:
fe:ee:48:d2:26:ff:39:44:a0:fd:53:1e:a2:78:82:25:39:7c:
90:2b:c0:2c:89:0b:26:3c:ed:55:2c:43:d5:60:0c:7f:33:f3:
4e:b9:da:83:17:05:1a:20:60:6b:10:0b:e2:43:77:3c:8b:1d:
c8:a4:1c:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:41:01 2025 by rpki-client