Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/JIeEeBy_-VrdKJy7vwG3P1z7ogA.roa
File: JIeEeBy_-VrdKJy7vwG3P1z7ogA.roa (raw, json)
Hash identifier: Dv8+tstPuVMARCKIwgxHxVOtvTA0r255cEjYJnmtdm4=
Subject key identifier: 24:87:84:78:1C:BF:F9:5A:DD:28:9C:BB:BF:01:B7:3F:5C:FB:A2:00
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01869BFC8F323C20D2F78636E1D2877A5252
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/JIeEeBy_-VrdKJy7vwG3P1z7ogA.roa
Signing time: Wed 01 Mar 2023 07:04:25 +0000
ROA not before: Wed 01 Mar 2023 07:04:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:9bfc:4af9/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9b:fc:8f:32:3c:20:d2:f7:86:36:e1:d2:87:7a:52:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Mar 1 07:04:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=248784781cbff95add289cbbbf01b73f5cfba200
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a0:34:1f:07:10:eb:59:9a:ee:c9:c0:f4:a6:
c0:08:4e:1e:a7:1e:77:57:b6:99:ce:82:02:ae:ea:
5e:cc:96:fe:71:f0:a1:16:1f:5b:29:3d:52:ca:d0:
c8:cf:4e:48:1c:19:52:f8:b3:67:33:06:ec:bf:c4:
ba:ba:bd:0a:41:a0:5b:df:b5:2c:ed:44:9d:de:d9:
a2:6f:28:2a:7d:c6:09:40:f8:5b:b0:fc:9c:96:2c:
76:59:8a:63:34:6c:46:fd:4e:20:c0:44:06:72:9c:
83:d3:62:bc:3c:40:c6:40:d7:90:7d:7e:bd:bc:a5:
45:e5:0a:f7:ac:2d:c8:64:4a:66:8f:b2:19:62:9f:
03:86:a3:b3:b4:ec:ee:37:4c:c0:97:2c:7e:ba:47:
a7:05:44:12:2c:41:33:b4:1c:cb:41:e3:14:19:71:
2a:87:e7:eb:9c:d1:bd:fa:7c:e8:cb:4a:b1:84:04:
71:b7:a4:70:cb:6d:26:48:4f:10:7f:68:59:39:a9:
5b:44:25:7b:ca:91:a2:8e:0c:93:4a:d8:b8:df:53:
8a:47:d7:3b:c4:d8:0c:81:c9:fc:eb:8d:2b:7a:dd:
63:7c:4d:69:59:44:76:ab:c2:51:d2:9b:88:1d:40:
db:ad:5e:d2:01:cb:c3:e6:bb:5d:35:d6:8b:72:92:
76:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:87:84:78:1C:BF:F9:5A:DD:28:9C:BB:BF:01:B7:3F:5C:FB:A2:00
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/JIeEeBy_-VrdKJy7vwG3P1z7ogA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
40:45:83:66:4c:58:35:86:97:19:00:25:09:0f:74:f1:02:f6:
c9:d1:14:aa:03:2f:1c:02:db:27:d6:19:ca:9d:0f:d9:6b:7b:
c5:8c:76:e2:07:c7:63:c5:34:ca:5d:32:52:a3:b6:8b:f8:fb:
a7:38:e9:13:ae:d9:b0:74:e2:ef:04:3d:b4:58:7f:bb:29:b6:
e5:26:0f:d0:8c:40:c3:91:7c:5b:de:08:02:5c:65:bc:4b:f0:
5e:57:38:40:01:ef:37:49:0f:f2:70:64:df:86:4d:81:97:b6:
19:a0:84:e8:f7:12:b7:97:de:5f:cd:31:38:93:99:06:54:8e:
d7:08:ca:4a:92:07:e9:85:4b:a4:4b:d8:41:5d:21:65:18:ba:
e0:a4:0f:ce:98:17:40:f9:1d:8a:29:92:65:53:bc:2f:cc:d0:
7a:a0:ce:55:be:ee:cd:64:fb:60:67:55:74:b4:31:c5:b5:b1:
9c:4d:7e:5b:d5:d3:71:39:ab:51:3e:e5:dc:e8:ed:bf:51:2f:
a4:71:d8:d6:f2:39:e1:3c:09:2a:96:88:23:0c:62:09:62:3b:
19:91:62:71:75:14:d2:e7:37:f7:e3:5e:0c:22:e1:49:93:97:
e1:5e:c9:d2:7d:fe:e7:3e:6f:a1:81:6c:53:ac:7d:f1:29:c3:
73:8e:8e:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 12:15:10 2025 by rpki-client