Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/DWtXkJxXk4o6_Yvxdn5U88YEwzY.roa
File: DWtXkJxXk4o6_Yvxdn5U88YEwzY.roa (raw, json)
Hash identifier: 8tjOG3E6F3mFJKHBEvpAAx4SozjKfzd8bABT07caKAw=
Subject key identifier: 0D:6B:57:90:9C:57:93:8A:3A:FD:8B:F1:76:7E:54:F3:C6:04:C3:36
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01848B17137B36437C046FFE159D76FFEAE9
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/DWtXkJxXk4o6_Yvxdn5U88YEwzY.roa
Signing time: Fri 18 Nov 2022 14:14:16 +0000
ROA not before: Fri 18 Nov 2022 14:14:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8b:17:13:7b:36:43:7c:04:6f:fe:15:9d:76:ff:ea:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Nov 18 14:14:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d6b57909c57938a3afd8bf1767e54f3c604c336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1f:be:6f:ff:14:db:36:03:f3:5d:81:3a:98:
db:5f:30:06:3f:45:3a:17:04:55:8d:a3:84:71:4f:
d1:1f:83:24:85:79:5e:cf:df:5c:ea:c6:fb:d5:af:
68:b8:f7:65:47:69:e3:6b:3b:b8:f4:aa:94:51:4b:
16:e5:69:52:64:81:8e:06:15:3a:1a:c7:5b:38:be:
3d:39:e6:83:ea:07:b4:dc:81:14:71:12:c3:19:47:
d5:3f:a6:8f:30:09:96:78:9d:3c:85:e1:d6:1b:52:
6d:a2:05:e7:1a:6e:d0:81:2c:8e:fd:60:62:ae:5a:
bd:51:ae:ac:ad:52:62:1b:ef:1c:d4:b2:e8:23:06:
5d:30:5b:9b:74:57:d5:ea:73:7d:87:df:bd:62:a8:
70:2c:21:46:2f:96:8a:73:4f:3a:ef:22:c9:eb:26:
70:70:b1:49:9f:e1:d1:6f:bc:e1:2f:00:2f:d2:45:
9e:2d:89:39:8d:0c:e3:0f:c9:1d:70:f9:47:3e:99:
2b:9f:f4:fa:cd:e0:7c:68:6c:da:73:f2:74:c4:3f:
b2:59:28:23:81:95:a3:74:16:0b:b5:49:d9:ff:bc:
a7:ef:df:e3:a8:e6:0d:cb:b9:18:4c:76:72:6f:0d:
97:88:f9:ca:9c:96:ce:c6:30:17:90:24:83:08:c7:
ae:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:6B:57:90:9C:57:93:8A:3A:FD:8B:F1:76:7E:54:F3:C6:04:C3:36
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/DWtXkJxXk4o6_Yvxdn5U88YEwzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
85:eb:6b:e7:f2:1d:d0:9a:a3:ad:81:17:d2:fb:50:05:34:7d:
3a:2b:62:30:49:0d:11:07:06:66:2c:ff:29:ea:5c:7b:35:d1:
56:52:1c:84:fa:31:51:bb:4a:be:19:48:91:77:ab:49:94:9d:
52:ab:e4:9e:ac:b5:d6:b6:aa:ad:7e:7f:db:af:81:5e:c8:5f:
e7:1e:0d:db:e3:50:32:86:54:68:bb:d3:00:aa:ec:78:63:0a:
9d:a1:f3:eb:2d:cd:b3:b2:ea:89:06:18:45:e6:44:78:5c:eb:
7d:f6:93:40:4b:83:14:0d:83:9b:d3:bf:86:ec:7a:5e:5d:40:
24:d4:af:6c:67:e0:34:8f:23:e6:2d:07:2f:05:00:27:9c:17:
b4:b2:19:12:09:00:9a:d6:82:14:ba:f7:be:72:e2:d5:63:11:
81:6a:47:bf:f8:42:d7:8a:73:51:26:4d:11:06:4c:0f:5e:a2:
07:15:cb:3b:9d:02:91:c4:eb:4f:44:9f:20:d7:20:08:db:0a:
1e:9e:eb:35:b8:7a:2d:10:db:3f:f0:a7:01:1c:b3:f6:3a:7e:
e4:a4:07:78:03:08:de:bc:bd:ba:fa:65:ce:10:63:5b:a8:8e:
c0:4b:2d:64:21:11:77:9c:dd:34:4f:84:85:05:48:ee:2d:1e:
8c:5a:79:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 18:45:34 2025 by rpki-client