Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/HFbTS3iajorMzwqvI1waZf-8Ha8.roa
File: HFbTS3iajorMzwqvI1waZf-8Ha8.roa (raw, json)
Hash identifier: WTFE7a3OZ4JDXhwGK6Xb5QDJoWSkIZPmnadzk/lq0QQ=
Subject key identifier: 1C:56:D3:4B:78:9A:8E:8A:CC:CF:0A:AF:23:5C:1A:65:FF:BC:1D:AF
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018A0F359741626E9B6580B07A9554155AED
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/HFbTS3iajorMzwqvI1waZf-8Ha8.roa
Signing time: Sat 19 Aug 2023 19:11:24 +0000
ROA not before: Sat 19 Aug 2023 19:11:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:189:a0e4:5c7d/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:0f:35:97:41:62:6e:9b:65:80:b0:7a:95:54:15:5a:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 19 19:11:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c56d34b789a8e8acccf0aaf235c1a65ffbc1daf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:94:89:4e:6f:cf:89:b6:29:8b:ec:40:88:26:
51:6f:7a:16:81:02:ba:c8:f7:94:58:2c:fc:3c:43:
b3:d9:32:dd:5d:68:a2:d6:df:53:e8:d0:a2:0e:f0:
f5:11:fe:da:e0:fb:4d:e6:0f:0d:58:15:f0:50:1e:
c2:ba:93:de:de:d9:86:b0:e5:5c:c3:6c:c1:53:d7:
48:d3:8c:aa:9a:51:ed:0e:8e:ff:98:64:49:b5:ab:
79:58:69:e6:c8:1b:2f:c7:b7:ae:0a:03:34:1b:c1:
e8:ff:2e:fd:5b:d2:19:23:78:71:92:e0:56:7b:a5:
8c:f9:d0:8e:d0:7f:7e:0c:45:85:0a:97:22:68:86:
26:5f:ce:0e:14:55:53:08:83:7f:be:d7:be:95:f1:
6c:c0:5f:0b:c3:48:a3:65:5e:01:67:01:aa:c6:47:
1e:7d:2b:4c:3b:20:61:9f:bf:0b:33:45:ff:23:2f:
2b:c9:7a:7f:d7:6f:64:8b:4b:8e:db:7a:17:d9:dc:
57:1d:65:c3:8b:3f:1b:8f:fb:73:be:1f:b6:45:13:
55:fd:82:49:94:3b:f2:e1:5d:11:71:73:5b:22:44:
68:1b:85:d0:d8:3f:ff:60:35:95:2f:04:44:5e:64:
fe:0b:f2:4f:84:e0:7b:4a:b2:08:ed:4a:b1:25:c0:
b1:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:56:D3:4B:78:9A:8E:8A:CC:CF:0A:AF:23:5C:1A:65:FF:BC:1D:AF
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/HFbTS3iajorMzwqvI1waZf-8Ha8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
8c:58:a9:b8:58:1e:2b:4f:7e:bd:d9:31:07:c5:b3:1f:cb:26:
f1:13:fd:e9:a3:80:90:3b:ce:4f:2d:6f:ef:8c:bf:cc:e2:96:
3d:f6:3e:46:29:cb:79:ac:8f:d7:11:d3:8e:b7:5a:35:6d:33:
3d:1c:bf:f0:fa:1e:0a:77:6a:ef:88:9c:70:fa:61:ce:69:d8:
5d:cd:58:6b:6e:c8:ea:01:c5:91:89:2e:ed:0a:f4:56:b1:55:
25:0b:1b:7f:1d:27:cb:f2:33:4f:6b:4b:54:46:99:02:b4:6c:
a9:0c:09:62:09:15:d4:c2:25:e6:52:d3:b2:13:a9:f8:41:27:
71:ff:4d:a6:e9:48:6d:6c:ee:bb:2b:d9:01:c5:17:be:e2:ae:
f7:21:70:fc:5f:f5:c9:11:19:11:24:d5:61:d9:2c:58:01:e6:
19:27:b6:7b:2e:e6:54:dd:58:c4:27:66:a0:7c:50:81:98:53:
26:8f:76:c7:f1:d5:03:9e:fc:35:ef:f7:3e:41:6d:fa:9d:94:
81:55:4b:3e:4a:a0:cb:61:6d:51:9e:80:d8:05:a2:31:13:c8:
4c:80:a9:aa:5e:cb:48:14:ea:a4:89:c1:83:3d:ec:0c:58:90:
46:ba:55:fd:fb:da:3d:b5:67:5d:2c:1a:7a:2c:24:df:82:eb:
4a:b7:7f:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 03:56:10 2025 by rpki-client