Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/FtyRHp5bgbqVVjpGa0HIVy92Bwk.roa
File: FtyRHp5bgbqVVjpGa0HIVy92Bwk.roa (raw, json)
Hash identifier: kEMwheeaRS3PJVnXjAz6ejw4fbffaHZ/W4BOkgD4MEo=
Subject key identifier: 16:DC:91:1E:9E:5B:81:BA:95:56:3A:46:6B:41:C8:57:2F:76:07:09
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0189D21156557906E8AF64A4F081F06EE159
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/FtyRHp5bgbqVVjpGa0HIVy92Bwk.roa
Signing time: Mon 07 Aug 2023 22:14:58 +0000
ROA not before: Mon 07 Aug 2023 22:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:189:a0e4:5c7d/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d2:11:56:55:79:06:e8:af:64:a4:f0:81:f0:6e:e1:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 7 22:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16dc911e9e5b81ba95563a466b41c8572f760709
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:0d:60:1d:0e:c1:13:7d:0c:9a:78:4e:ba:8b:
fa:ae:06:d7:d3:cc:5d:a5:af:a0:bd:85:5d:f4:e5:
04:0f:31:c9:f2:df:17:0f:fc:a4:19:a6:a7:b8:d6:
18:f3:7f:17:f8:2d:89:ce:89:8b:65:c6:27:d4:d2:
28:33:6b:23:e4:b6:6b:78:0b:f5:82:d5:d7:f9:b5:
92:aa:2d:9d:4f:a1:f0:18:db:fb:2a:56:52:2a:39:
f6:54:28:c5:d6:a4:cf:52:ec:b9:06:90:70:7a:f9:
81:94:0f:bb:b0:d9:6f:e5:f8:5e:44:dd:5c:37:2d:
93:e5:ba:8f:9b:96:1b:2f:07:9c:70:cf:45:f0:fc:
5b:27:81:c2:5e:5b:d6:98:d9:63:2b:8e:4b:02:25:
ff:f1:97:ae:cf:85:06:49:06:1f:4c:3e:fd:a4:24:
31:9f:b4:f6:17:f6:eb:06:05:a4:16:9a:f6:56:75:
26:85:e5:60:9c:49:d0:6d:f5:3d:90:34:f4:f2:73:
0c:5c:5d:c9:7e:88:d3:c0:27:f3:68:bc:d0:9b:14:
ca:3a:0c:cd:25:68:e2:9d:99:1d:19:ef:a9:63:46:
3b:aa:72:40:97:49:f8:c8:99:cb:f6:ce:44:ec:f4:
f8:c6:dd:26:ad:5d:37:03:0d:c5:79:c8:71:d1:dd:
46:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:DC:91:1E:9E:5B:81:BA:95:56:3A:46:6B:41:C8:57:2F:76:07:09
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/FtyRHp5bgbqVVjpGa0HIVy92Bwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
44:65:d3:71:31:0c:22:dd:6d:eb:eb:60:ba:aa:7d:2d:88:72:
7b:19:0b:34:0b:df:2c:75:5d:f1:07:2d:af:55:5b:bc:4f:49:
ce:ea:97:c6:5a:f9:df:4f:9f:ab:1d:59:6c:f3:53:ac:bd:9a:
76:bf:df:99:64:a2:fa:54:78:c2:91:48:bf:cd:2b:e8:04:2d:
6c:91:4f:00:f1:83:b3:a0:e9:54:31:18:d6:3d:0f:9b:46:80:
b6:18:18:45:38:56:6b:51:dd:77:e9:a7:9a:1a:93:49:60:3d:
d1:22:c8:9e:8c:c8:75:d4:d1:56:ac:e5:57:8b:30:b9:4d:5e:
93:21:e5:29:22:a1:65:95:f3:fe:3c:5c:0a:b4:30:75:b3:2e:
f3:3b:f6:c9:2d:d6:19:b7:07:41:f5:54:ac:08:85:15:41:9a:
20:5f:04:dc:b3:a3:ad:08:ae:5d:ae:bf:9b:26:b8:40:f1:3a:
6b:07:45:25:76:0a:b1:53:ae:39:b6:27:96:b6:b5:f7:63:ff:
2f:06:79:f9:c8:c2:5f:9d:33:e0:19:5c:03:86:28:f4:2b:72:
53:c2:a9:de:8c:9a:bf:07:3c:ef:e0:d9:a5:a3:1a:fe:25:6b:
66:cc:25:6a:6c:ee:11:6a:0b:46:70:2b:23:93:ad:74:0e:93:
a1:58:02:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 00:08:14 2025 by rpki-client