Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/G_Fy9N35cYHNNhlvG8oEUq-Cppw.roa
File: G_Fy9N35cYHNNhlvG8oEUq-Cppw.roa (raw, json)
Hash identifier: ghApJQwctcKzhom74VAB+NNSYL5hfDy8kMvOZ058FCg=
Subject key identifier: 1B:F1:72:F4:DD:F9:71:81:CD:36:19:6F:1B:CA:04:52:AF:82:A6:9C
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0186FB47BA140E30B62285573E3D2E5146B2
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/G_Fy9N35cYHNNhlvG8oEUq-Cppw.roa
Signing time: Sun 19 Mar 2023 19:10:27 +0000
ROA not before: Sun 19 Mar 2023 19:10:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:fb:47:ba:14:0e:30:b6:22:85:57:3e:3d:2e:51:46:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Mar 19 19:10:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1bf172f4ddf97181cd36196f1bca0452af82a69c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7f:c1:f3:d6:9a:19:3d:38:c8:6d:cb:9f:25:
6c:4d:b2:35:2d:71:41:f5:30:cc:0c:52:d4:6f:71:
46:b9:a6:cf:16:87:a6:07:4e:88:f8:17:4f:18:9e:
26:aa:0f:6f:46:f9:e1:5b:c2:ee:61:9f:67:fe:9d:
ac:fc:45:56:c2:c6:c4:65:2f:13:18:20:cf:a9:03:
52:0d:f7:36:12:cd:74:ee:45:e7:b6:c9:47:31:6e:
29:ca:57:81:d4:a6:25:24:5a:bc:8b:d1:52:cb:12:
9a:5f:52:5b:1a:fc:f3:4e:3d:03:c2:7b:5f:d5:9f:
ec:b7:68:77:c7:68:a4:40:dd:a1:04:09:df:2c:a1:
38:d0:b5:01:7d:e2:bf:b4:9e:fe:3d:9d:a4:f8:3f:
1a:fc:9a:43:55:13:43:b0:e4:25:51:75:e0:fd:36:
18:e9:4f:96:00:41:8d:e3:66:66:ca:41:cc:25:4e:
30:9c:86:81:ad:d0:14:91:36:73:71:63:56:41:82:
48:f8:d1:fa:a9:7d:03:d3:ec:b8:e4:6f:0e:70:3c:
f0:06:c5:85:95:73:cd:91:e2:26:6a:16:ee:ed:24:
76:18:76:05:5b:69:08:d9:9e:2d:fe:78:bc:f2:07:
d4:be:88:a7:10:35:25:74:d3:2f:93:d1:f8:61:ac:
34:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:F1:72:F4:DD:F9:71:81:CD:36:19:6F:1B:CA:04:52:AF:82:A6:9C
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/G_Fy9N35cYHNNhlvG8oEUq-Cppw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
98:7a:df:d2:bc:64:c3:7a:3b:62:d5:c8:e5:ce:44:d3:04:44:
f8:aa:be:16:17:2e:f0:49:ff:1c:c2:3d:90:cf:fd:85:39:1d:
96:f4:c8:7a:b8:64:42:9c:fe:24:20:33:b3:c3:6d:a3:80:c5:
a2:35:4f:72:c6:ad:9a:d1:68:45:1d:70:77:b8:a0:b6:be:2d:
6f:c5:b0:b5:45:b4:06:0b:60:c3:d6:cb:34:f4:58:54:da:d1:
a2:41:7e:f5:fb:a1:46:0f:ef:6d:dc:01:40:d2:65:fc:17:0e:
69:85:f9:e8:b5:82:0f:c5:5a:c6:00:36:dc:37:7e:e9:78:c6:
01:b6:a6:c4:68:7c:2b:90:10:3c:88:de:92:f4:07:bd:9d:8d:
ea:65:18:21:49:2a:49:4e:75:2b:9c:1c:9a:f8:1f:52:b9:88:
ce:9c:36:f6:70:ed:05:c9:bb:e6:9d:c8:a8:3b:a8:8f:ff:85:
0c:51:cd:7f:a4:e8:6c:df:cf:d3:9d:be:17:3d:7d:4d:a2:9a:
ff:ce:b9:58:46:3a:dd:e7:97:c1:d1:ff:b3:dc:32:4e:ef:a2:
ab:e1:07:78:51:06:48:75:32:2c:8c:26:cf:80:31:df:ae:8f:
a4:9b:4d:b0:b0:4b:22:9f:64:19:0f:de:ef:2f:cb:2d:3d:16:
71:83:39:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 02:52:28 2025 by rpki-client