Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Ji2qEIVqalPgIB-GEBX_M6ssktI.roa
File: Ji2qEIVqalPgIB-GEBX_M6ssktI.roa (raw, json)
Hash identifier: 8KG3uNFbIBeKUMzL9X/xtnsyfIVroySGgqR4DrQqKAE=
Subject key identifier: 26:2D:AA:10:85:6A:6A:53:E0:20:1F:86:10:15:FF:33:AB:2C:92:D2
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 7B7EA149
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Ji2qEIVqalPgIB-GEBX_M6ssktI.roa
Signing time: Fri 15 Apr 2022 12:10:23 +0000
ROA not before: Fri 15 Apr 2022 12:10:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:180:457:1e3f/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2071896393 (0x7b7ea149)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 15 12:10:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=262daa10856a6a53e0201f861015ff33ab2c92d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:5c:3b:e1:5c:3e:56:5e:74:44:37:9c:23:72:
27:f8:93:59:a3:09:c9:c4:2f:09:b4:1b:e1:42:44:
8b:64:1a:49:3d:2d:40:1b:79:95:0e:95:25:7e:35:
50:8b:d4:00:4c:93:cc:a4:ef:ee:e8:16:a1:d4:f0:
98:2d:39:13:d9:1d:c9:0b:c2:7c:d5:b8:6b:56:6b:
e5:1a:a1:df:8f:f9:92:46:7c:a4:a1:a9:4e:85:61:
04:da:2f:9a:1f:1a:22:06:00:ba:67:30:d2:af:c9:
03:5f:5e:10:44:9d:bf:8a:8e:e8:8e:80:79:50:07:
18:ef:c7:31:07:f4:15:de:a8:83:39:96:ee:23:bd:
c4:6c:45:ef:51:d6:41:88:28:d8:d0:6b:f7:ab:89:
a3:9a:8f:53:9f:9a:09:fd:d7:2b:ec:79:15:5a:b6:
d4:39:63:62:de:4b:50:3f:bf:0f:42:a2:fb:e7:c0:
11:4a:52:0b:7d:9e:55:38:d0:6f:81:80:fc:e7:d4:
15:be:fc:50:77:93:e3:61:be:30:7c:36:d9:2d:f2:
a0:8c:1e:9c:f2:81:61:5c:04:cb:58:05:b4:14:d2:
dd:ee:db:33:2d:36:99:32:b3:72:83:00:f7:cd:77:
b3:0c:e7:54:a0:c1:fe:52:9e:fc:fc:06:45:25:1d:
9b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:2D:AA:10:85:6A:6A:53:E0:20:1F:86:10:15:FF:33:AB:2C:92:D2
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Ji2qEIVqalPgIB-GEBX_M6ssktI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
88:69:25:30:02:26:7f:b3:b4:8b:1d:12:21:24:2e:56:ec:c3:
28:b7:15:26:fe:70:34:c3:be:17:e9:9d:86:d2:d2:1a:93:d5:
ee:a1:1a:8f:0f:41:6d:f2:d3:f1:9b:ff:46:11:53:41:0f:9b:
39:f4:77:05:e6:9a:bd:ab:d5:bc:6f:6b:81:31:23:ca:62:53:
6b:3e:40:47:3e:af:1f:d4:5b:d6:7b:b9:a5:c6:71:c8:cd:90:
79:39:c2:aa:30:65:76:45:77:fb:d8:a6:c1:3e:df:a3:e6:44:
96:61:32:00:e3:d4:07:23:8b:fa:85:6d:db:a2:9c:d3:09:61:
fa:20:60:b5:4d:0f:8b:44:ca:bd:ba:a4:e8:34:8f:24:d5:11:
10:a7:f6:dd:c3:01:cb:de:6b:c2:28:9e:8a:87:50:13:66:ba:
f7:32:e8:ee:45:3b:d2:53:d5:41:3c:37:68:14:c2:7c:62:db:
3f:e2:ed:24:ae:a9:c8:15:68:33:40:42:01:e2:88:9a:dd:2c:
e0:1d:07:0a:ec:d7:98:05:2b:b2:26:a7:e4:7f:4b:76:9e:fe:
04:ea:80:11:cc:cc:51:f5:e2:d3:47:2f:0a:62:bc:19:6b:34:
8e:03:76:4d:62:5a:f1:d0:7b:4b:1d:b3:69:5c:ee:4d:a3:0e:
92:ea:1d:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:38:53 2025 by rpki-client