Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Do5K1oziDRa54JNlSp0jgLBN258.roa
File: Do5K1oziDRa54JNlSp0jgLBN258.roa (raw, json)
Hash identifier: 4PqaXDYwD4Wlfnt+GFJ96DoapXJvVxReYKBJt/DWOnc=
Subject key identifier: 0E:8E:4A:D6:8C:E2:0D:16:B9:E0:93:65:4A:9D:23:80:B0:4D:DB:9F
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 78CD060B
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Do5K1oziDRa54JNlSp0jgLBN258.roa
Signing time: Wed 06 Apr 2022 00:10:57 +0000
ROA not before: Wed 06 Apr 2022 00:10:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2026702347 (0x78cd060b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 6 00:10:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e8e4ad68ce20d16b9e093654a9d2380b04ddb9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:0e:be:f3:ce:01:f8:71:27:9d:6a:b8:79:a9:
5c:1b:94:a4:85:04:55:09:ec:fd:09:f9:0f:51:d6:
4f:56:41:e2:ea:ac:12:7b:cb:27:a6:ac:cc:af:da:
58:6a:03:35:0c:f3:ed:f6:07:c8:1a:92:dd:ca:bc:
89:3e:4d:b6:dd:df:fb:b0:ed:d4:7d:8e:a2:1a:4f:
f5:ed:79:f6:4f:99:97:48:1d:f3:ec:28:7f:40:7a:
d0:cf:3c:8c:1c:34:8c:c7:05:05:9c:f5:40:30:84:
19:b2:70:ff:19:a3:b4:ac:a6:a3:d5:75:51:a3:bd:
ad:6c:b8:2d:6d:3f:53:13:f4:7d:75:69:a7:f4:42:
40:ae:e4:8b:97:23:17:2e:d1:f2:77:c3:98:3f:bc:
a9:f2:c8:62:b8:3a:e3:11:da:fd:28:05:51:99:be:
71:46:65:34:10:da:25:b8:51:cc:e2:dc:cc:12:d8:
f0:4b:7c:9e:d8:2d:9b:38:3c:37:13:f2:d9:de:e0:
76:7c:a5:2a:7a:95:24:6b:d7:35:e7:de:03:c8:a9:
bd:e1:83:cd:23:14:b9:93:af:77:d0:38:8f:bb:08:
c2:06:ac:3d:a6:e5:63:bc:28:9f:ab:24:4a:36:59:
09:83:57:89:96:a6:7d:67:15:99:5f:ca:56:55:47:
95:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:8E:4A:D6:8C:E2:0D:16:B9:E0:93:65:4A:9D:23:80:B0:4D:DB:9F
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Do5K1oziDRa54JNlSp0jgLBN258.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
83:9b:00:8f:5b:92:39:fd:1b:ac:77:80:30:1e:e0:fa:5c:3c:
14:a3:a1:09:2f:96:51:88:1a:19:5b:b4:62:38:96:af:07:c8:
9a:3b:7a:89:08:b5:fb:5a:a9:2f:ef:43:a4:27:98:49:41:9d:
01:e6:e8:e8:bb:9c:7f:73:46:5a:12:7f:ee:c3:73:10:8a:f6:
37:bb:5d:51:fe:9c:34:45:0f:3d:a7:66:89:49:ed:34:3e:f7:
5c:5a:c5:91:70:83:4e:42:a2:b7:ef:3b:72:3b:51:bd:13:68:
14:c2:34:19:a5:1d:0a:2c:79:3a:a0:c1:35:29:33:c2:9b:a7:
ff:2e:0b:21:d7:3a:11:93:ee:c4:23:ff:3b:cd:34:66:99:39:
0f:52:03:42:fd:d5:e4:d4:56:91:66:f0:2d:c2:a8:8e:90:cf:
1a:4d:eb:ef:0c:e9:2c:73:6f:d3:86:f6:73:1d:e3:28:e2:c2:
13:d9:3b:ac:c2:38:ce:2c:4f:7c:47:50:8a:48:35:7c:05:d5:
b1:ed:57:99:cd:d7:3c:ce:10:ff:80:1b:8b:da:97:bc:ff:10:
19:46:4c:f1:e1:9f:9c:36:b9:30:ec:d9:35:46:dd:b2:87:09:
05:01:ff:cb:9b:fe:79:14:73:5b:3b:5c:9f:ed:ea:37:4f:90:
df:0d:28:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 4 07:07:22 2025 by rpki-client