Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/HTbJxX-mLZAqAJowaHxY2ggv3zs.roa
File: HTbJxX-mLZAqAJowaHxY2ggv3zs.roa (raw, json)
Hash identifier: dpBD3FqIYAQedVcScXZKswel6ibM15qpSxtpzfGBAb0=
Subject key identifier: 1D:36:C9:C5:7F:A6:2D:90:2A:00:9A:30:68:7C:58:DA:08:2F:DF:3B
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01894439948A96C702A7DD535091ED99C922
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/HTbJxX-mLZAqAJowaHxY2ggv3zs.roa
Signing time: Tue 11 Jul 2023 09:12:51 +0000
ROA not before: Tue 11 Jul 2023 09:12:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:44:39:94:8a:96:c7:02:a7:dd:53:50:91:ed:99:c9:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 11 09:12:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d36c9c57fa62d902a009a30687c58da082fdf3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2c:ad:ac:a5:d6:d8:fb:c6:36:eb:61:52:19:
c0:0c:6d:67:1e:f4:cb:f9:a2:28:2b:94:15:84:91:
d5:38:a7:a7:d7:be:4b:53:bf:7d:26:ad:d0:bf:80:
34:58:40:a0:57:b9:bb:42:84:d9:55:e7:7f:27:0f:
93:a2:93:0a:d3:e8:cc:5c:26:38:73:0e:e7:ea:1f:
26:dc:ac:cd:48:32:22:72:2b:ec:96:48:a1:eb:7a:
ed:d3:c3:b6:25:a6:9a:d1:68:eb:17:b9:d4:8e:a1:
f9:d5:46:c1:f8:2c:7b:c9:1b:80:71:e6:f7:5d:63:
35:81:04:55:d8:5d:e0:4b:12:2a:7e:0f:22:e0:04:
d1:3e:0e:f1:16:fd:8a:15:b0:f2:8f:de:d3:1e:47:
ab:bb:de:25:e2:48:aa:ef:ed:ff:14:b3:3d:df:97:
78:60:75:99:fa:ad:21:a9:ed:8a:3b:c4:22:51:a8:
fc:12:b4:d5:14:df:16:02:34:18:a5:7d:07:62:a0:
4d:4e:fc:e7:b2:f1:d4:76:bf:b1:7d:60:01:ca:76:
02:56:f3:87:a2:55:03:ca:75:16:f3:21:94:c8:5e:
a8:3d:d9:a3:72:9c:f0:e2:11:2b:97:b0:c9:43:3a:
33:28:85:39:4a:11:ba:f8:d0:ed:3f:86:41:06:50:
68:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:36:C9:C5:7F:A6:2D:90:2A:00:9A:30:68:7C:58:DA:08:2F:DF:3B
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/HTbJxX-mLZAqAJowaHxY2ggv3zs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
22:24:df:56:14:4b:4e:5f:4a:b4:2b:0a:50:46:19:fe:3c:ef:
d7:3a:1a:c8:f7:fc:08:af:43:61:2e:0d:b6:b1:c3:79:9b:38:
3b:e3:d5:4c:40:cb:b4:5f:39:1f:c4:e4:38:d7:1f:d6:02:ab:
de:e5:9c:62:c0:c6:cf:55:5f:b1:9b:db:42:ba:55:ca:b7:8f:
3b:b9:40:42:fc:1d:79:b5:18:d9:ef:17:70:00:63:54:15:82:
e1:70:d0:b9:5d:a7:75:16:50:8d:ff:cd:7e:95:f2:49:3c:e0:
29:3a:d2:d9:70:56:12:f7:6b:5f:f6:3a:c2:80:a8:50:ba:79:
53:13:9f:12:e2:18:4a:3d:01:1f:dd:8e:a5:ad:f4:a0:93:c0:
e1:d4:65:1a:02:15:bb:39:e3:a2:85:65:40:0e:f0:78:b3:94:
32:70:d7:cd:13:08:9d:ad:e3:fa:8e:a3:d6:54:0c:89:71:27:
dd:b1:10:51:ef:19:80:df:12:f6:e5:82:b7:ec:1c:64:c4:dd:
df:ce:6d:0b:f1:6e:34:88:0b:48:ca:ee:94:06:7c:a6:a5:0e:
9d:64:6c:24:12:d4:fa:92:5d:20:7b:6b:37:c3:a8:96:2e:83:
39:0c:d0:0c:67:b2:23:ba:fb:68:95:5d:14:ee:36:56:4c:fe:
aa:d1:5e:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 02:52:00 2025 by rpki-client