Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/JBfZX-mG92Pnk-54LYhzfzN89ew.roa
File: JBfZX-mG92Pnk-54LYhzfzN89ew.roa (raw, json)
Hash identifier: LZLAwXR5nFOf1ySyRZwl45C4QVJYAeEsLroMubqfhkY=
Subject key identifier: 24:17:D9:5F:E9:86:F7:63:E7:93:EE:78:2D:88:73:7F:33:7C:F5:EC
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0188ADFE6B5AD456F7CEE1D9519C33003F0D
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/JBfZX-mG92Pnk-54LYhzfzN89ew.roa
Signing time: Mon 12 Jun 2023 05:05:11 +0000
ROA not before: Mon 12 Jun 2023 05:05:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:188:adfd:8152/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ad:fe:6b:5a:d4:56:f7:ce:e1:d9:51:9c:33:00:3f:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jun 12 05:05:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2417d95fe986f763e793ee782d88737f337cf5ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:77:0a:24:1c:18:a0:d2:8e:81:d8:f1:2a:70:
47:a8:c6:da:28:00:c0:8b:6f:2c:82:a8:12:44:86:
2e:26:ff:fd:c4:39:83:ce:e3:dd:b9:0a:d3:d1:d3:
38:55:6b:34:c6:70:a3:6a:b0:a6:4d:cc:43:62:d2:
f2:40:03:f9:1d:a5:a5:97:19:d0:d3:18:26:14:52:
4a:36:65:a2:1f:72:5c:c8:c7:25:1b:55:15:28:42:
de:50:6d:cd:90:eb:91:ae:13:8a:9c:b7:33:ba:3a:
3f:f9:8b:6b:52:50:65:86:db:c0:ae:62:ff:91:58:
d3:2a:92:ce:f5:83:36:fc:ac:de:d6:a8:b7:2c:5a:
f1:fb:0b:38:ca:66:f6:5a:22:35:eb:39:6f:d6:49:
bd:86:92:74:f2:c8:28:a8:53:39:53:df:b1:55:38:
9e:18:00:f4:c5:bc:b3:5d:34:b2:82:42:03:51:9e:
da:05:30:76:c9:c7:66:bd:27:d7:e7:c0:49:28:ce:
d2:4c:36:13:24:d6:93:d9:95:92:95:f3:20:56:6e:
e3:67:a0:19:12:1f:7e:bd:8b:11:5b:96:09:b5:07:
24:5f:c4:09:08:0a:0f:43:88:d6:4e:bb:d1:5c:bd:
fc:7f:52:b8:1f:db:a6:f8:23:19:9f:e1:80:91:51:
91:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:17:D9:5F:E9:86:F7:63:E7:93:EE:78:2D:88:73:7F:33:7C:F5:EC
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/JBfZX-mG92Pnk-54LYhzfzN89ew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
4f:de:84:ec:12:69:88:03:ef:82:8e:e8:58:6e:18:3f:71:a8:
66:7f:fe:a0:fc:4c:2b:b5:37:3e:2b:b1:c5:b2:56:ce:e8:33:
70:eb:59:7a:b8:85:3d:db:a3:11:28:e4:9c:82:77:c6:0f:96:
d2:c8:e6:ff:4c:64:a9:d6:cf:e3:e6:8b:1b:55:10:99:cf:75:
fa:14:5e:44:12:de:6e:bf:3d:c0:82:95:40:64:cc:02:42:5c:
7e:6a:15:96:9b:89:db:1a:d7:6e:4f:a7:7b:b8:46:8f:f1:3e:
88:4f:f9:62:86:b7:c5:2f:c3:94:9e:3f:46:00:87:09:bd:81:
32:90:32:70:52:03:a3:fa:0f:07:f0:ff:bb:78:38:b5:59:ae:
60:7d:94:6c:58:e6:fc:c2:f9:79:d2:76:50:2f:42:44:11:51:
b8:b4:df:32:65:3d:3d:70:c0:82:2f:58:b4:c3:7e:2a:a5:b8:
7b:9a:18:0c:d3:4a:0f:5e:90:ac:4d:e9:68:91:69:30:2b:99:
7d:cd:aa:75:39:01:73:dd:87:68:50:bc:9d:15:be:1c:ce:bf:
bf:22:4f:f8:69:01:85:bb:f8:86:07:eb:5b:f2:79:b4:45:f0:
ef:d8:3c:6c:3e:aa:bc:c0:c5:26:9f:5a:1f:da:01:e6:4a:51:
bc:22:e7:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 20:20:40 2025 by rpki-client