Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/HtkMOiRcVeVlirlO8i8I4FsrHPg.roa
File: HtkMOiRcVeVlirlO8i8I4FsrHPg.roa (raw, json)
Hash identifier: WGKXfCqp3NV9JfwwqsCLMRZhNPNHMlwjbUZ0KXLTzQg=
Subject key identifier: 1E:D9:0C:3A:24:5C:55:E5:65:8A:B9:4E:F2:2F:08:E0:5B:2B:1C:F8
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 899D2125
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/HtkMOiRcVeVlirlO8i8I4FsrHPg.roa
Signing time: Fri 03 Jun 2022 16:10:20 +0000
ROA not before: Fri 03 Jun 2022 16:10:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:181:22f:7a99/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2308776229 (0x899d2125)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jun 3 16:10:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ed90c3a245c55e5658ab94ef22f08e05b2b1cf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:02:6a:93:a6:4e:0a:7d:06:ee:02:9f:be:26:
0f:90:7f:a0:0d:59:40:b7:18:5a:cc:46:44:26:34:
59:3d:b9:07:d5:74:a5:07:bc:42:0e:ef:92:c8:0a:
1a:cb:55:8f:7f:93:c7:b5:b3:de:8b:22:30:61:16:
f4:f5:2d:4d:2a:fa:a5:2a:61:a4:e9:12:28:23:b9:
0d:87:08:cd:a6:5b:ed:44:a2:c5:b7:ba:a0:3d:cc:
8e:c2:62:9f:14:1b:92:48:4e:71:7c:99:99:b1:ee:
57:83:c8:14:a9:8d:48:fa:a0:ca:26:96:73:18:36:
74:59:24:d2:84:6e:b5:3a:fb:af:f2:ef:9c:15:e0:
b6:ad:21:a0:24:97:86:43:d7:69:e9:fa:ac:ea:d9:
bc:8d:0b:d8:37:a8:02:92:6e:3e:8c:8a:bb:c4:00:
0d:28:24:be:f6:89:8c:3b:e3:38:16:eb:69:22:ba:
43:6f:b9:a0:ae:b6:c9:d7:1a:67:be:31:8e:7e:db:
51:9c:0b:66:ab:ec:3e:51:ee:9b:93:a9:5d:b4:8c:
d2:dd:fd:9e:a9:0e:95:b3:f4:d0:61:2f:a6:a9:c5:
12:85:19:13:e4:e6:3b:a3:77:6c:43:97:e9:b4:fb:
df:76:3b:25:43:64:4c:7d:38:0d:86:3b:df:68:65:
51:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:D9:0C:3A:24:5C:55:E5:65:8A:B9:4E:F2:2F:08:E0:5B:2B:1C:F8
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/HtkMOiRcVeVlirlO8i8I4FsrHPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
99:59:6b:1e:3c:3c:1f:94:bf:76:94:da:30:8d:40:b3:52:90:
74:ad:45:26:b4:4c:da:00:4c:d8:d5:23:3e:cc:71:62:78:a3:
4c:30:70:03:e5:1c:87:b6:5c:97:20:9c:19:35:a2:50:be:e2:
91:02:8a:9e:0d:37:46:ff:50:ae:c8:3c:d1:c8:98:0a:f4:11:
50:3c:65:ab:ae:83:da:27:13:28:9c:40:b8:38:7e:45:21:8f:
2c:50:82:b1:07:21:ea:9d:ea:d9:9c:13:5d:51:a8:f8:12:f4:
34:18:a5:84:c4:cf:8e:10:84:28:21:b9:e0:cd:97:94:41:6e:
b0:1d:45:00:32:41:2e:5f:80:88:95:ec:20:0b:cd:1b:ab:0e:
51:8e:f3:55:46:47:16:bb:e7:a2:eb:8e:33:11:5c:51:3f:ac:
64:9d:f1:27:10:66:0b:01:c6:97:62:a7:0a:cb:fe:3c:c0:be:
d4:1c:ab:a8:59:4e:26:28:6a:fc:1e:c5:93:a3:a9:26:12:d2:
59:4e:33:14:7a:92:4a:0d:2c:78:9d:95:f0:d3:1f:91:c4:1f:
c1:e0:0b:c6:56:8c:91:57:69:6b:cb:ae:71:c9:fd:d9:e6:7e:
82:d4:06:de:df:0a:bc:0a:96:08:09:94:a3:ae:5d:04:80:ca:
80:1f:a0:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 14:32:46 2025 by rpki-client