Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Fomnr8efgPc4d8jWgtzkuzZTUVw.roa
File: Fomnr8efgPc4d8jWgtzkuzZTUVw.roa (raw, json)
Hash identifier: gT/n+5ydfLKaf3ndJQbooTRQ+GYAqNNtvOrw/DR55IQ=
Subject key identifier: 16:89:A7:AF:C7:9F:80:F7:38:77:C8:D6:82:DC:E4:BB:36:53:51:5C
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0187C3B218C0807641D607A9EC35D7D4746E
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Fomnr8efgPc4d8jWgtzkuzZTUVw.roa
Signing time: Thu 27 Apr 2023 17:10:41 +0000
ROA not before: Thu 27 Apr 2023 17:10:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c3:b2:18:c0:80:76:41:d6:07:a9:ec:35:d7:d4:74:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 27 17:10:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1689a7afc79f80f73877c8d682dce4bb3653515c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:0e:7e:dd:a9:41:2d:bd:a5:d7:30:b0:9f:7a:
71:8d:50:58:53:e9:8c:cc:af:36:10:8a:c5:72:5f:
75:b4:c1:27:b7:2a:f4:18:f5:62:2f:78:d0:b6:ce:
06:b2:4a:8d:22:7a:ea:f4:fd:aa:d6:2d:a2:11:0c:
2a:c6:b5:00:8a:da:71:e1:7f:49:47:53:ba:00:2f:
32:de:48:e7:fb:b1:e5:e1:0c:9c:49:51:a1:4b:3a:
d0:05:4a:03:40:75:51:f0:ef:d4:41:a8:56:32:bc:
74:79:6a:2c:01:bc:81:72:9f:73:46:54:fb:c4:69:
78:b7:69:b3:8d:f8:0d:e6:11:fe:da:d6:32:b4:5f:
71:08:60:93:76:59:5b:de:ab:cf:2b:47:5d:f8:b1:
ce:a3:e1:3a:32:6b:01:97:c2:65:1a:29:77:17:9c:
a0:be:d2:96:e0:98:87:20:f9:2a:52:03:da:b8:ab:
04:b3:34:e4:30:c1:5e:8a:e3:f5:40:5c:46:2c:8d:
84:ee:26:a5:d3:a6:78:b0:34:44:82:9a:ed:4a:9e:
8f:c2:4e:b3:4f:64:5f:da:ea:04:89:7b:13:02:a2:
0b:ca:f0:7d:60:10:5e:6d:39:ab:a5:ef:80:2a:d7:
b0:ec:8d:c2:97:24:c8:53:bd:9e:7a:93:38:a9:e8:
17:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:89:A7:AF:C7:9F:80:F7:38:77:C8:D6:82:DC:E4:BB:36:53:51:5C
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Fomnr8efgPc4d8jWgtzkuzZTUVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
6e:35:40:2e:52:82:1c:75:21:ae:39:fb:bb:7f:a2:22:e5:00:
9d:ae:62:2e:47:45:38:3b:3f:d0:da:1b:1e:35:8d:ac:65:91:
a5:82:72:a9:80:03:de:14:49:54:96:be:bc:a8:d9:2b:a6:08:
d0:f6:6a:fa:f9:3b:a0:3b:8d:03:52:96:f0:ef:2c:03:6f:5e:
03:42:13:89:81:45:b0:25:ef:3e:30:4e:bc:e9:84:ed:82:71:
9c:d6:b1:15:d5:63:1c:e6:7e:cd:92:1f:25:16:77:6a:c6:b6:
8a:5e:3c:d0:91:97:41:88:52:97:1d:ff:b0:63:67:0c:98:ea:
48:1a:1d:e0:ae:85:22:96:64:9e:d6:e8:71:c1:76:7f:7e:b6:
2d:ea:b8:f3:a3:c4:8d:06:5b:e6:0e:5b:26:72:94:53:65:b5:
27:17:bc:47:a4:99:40:e1:9f:b4:1e:e8:de:68:d8:c8:70:42:
d5:e2:f4:32:c0:83:b6:00:bd:82:98:11:b3:66:e7:50:ad:30:
e2:a0:7e:90:87:18:7f:23:d2:0c:35:b5:64:fb:d5:9f:70:28:
f8:0e:30:6a:54:70:8b:41:dd:56:7d:94:1a:e0:25:23:89:91:
23:4a:0c:78:25:c9:5f:0c:16:c0:54:62:bd:80:6a:6b:70:e3:
d7:b3:f4:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 06:09:38 2025 by rpki-client