Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/JxssUo2ahFU9SDGz6nWb7awxBlM.roa
File: JxssUo2ahFU9SDGz6nWb7awxBlM.roa (raw, json)
Hash identifier: X2FryZyK4drJWkUpsn9N+zq3vA15Rv4rsfN/x/Hkj/Y=
Subject key identifier: 27:1B:2C:52:8D:9A:84:55:3D:48:31:B3:EA:75:9B:ED:AC:31:06:53
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018426AAB036455D2576C2E8DC9B7582B500
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/JxssUo2ahFU9SDGz6nWb7awxBlM.roa
Signing time: Sun 30 Oct 2022 02:13:51 +0000
ROA not before: Sun 30 Oct 2022 02:13:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:26:aa:b0:36:45:5d:25:76:c2:e8:dc:9b:75:82:b5:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Oct 30 02:13:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=271b2c528d9a84553d4831b3ea759bedac310653
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:f1:c9:5d:b5:56:52:61:c8:c9:5b:79:6f:02:
b9:95:30:42:b9:b3:cf:1f:9a:da:cb:bb:41:39:e1:
0d:a1:4c:7e:d1:d7:cb:55:d4:14:70:4e:74:2b:ca:
e6:2d:95:cc:d1:ac:6f:9d:cb:20:63:a5:4b:eb:34:
6c:c7:e4:10:34:cb:56:8f:0a:84:e7:22:b2:79:dc:
fe:cf:db:2d:85:80:19:55:f7:51:2b:72:79:16:06:
f6:9f:41:3a:25:e7:06:8c:35:38:87:b4:5e:91:55:
f1:06:c5:67:fb:de:c2:34:33:e8:cc:f1:ec:03:cf:
3c:90:df:a7:ca:0e:0f:a5:36:1d:18:cd:95:2b:04:
95:b5:7e:c6:0e:61:05:63:e6:f6:41:f7:33:00:cc:
38:d1:5c:73:d0:1d:da:34:82:93:56:73:63:db:a0:
4f:bf:17:82:01:4a:f3:c7:03:9f:87:06:3a:73:c9:
9a:aa:28:b7:a3:5e:9b:7b:d4:b1:3c:2f:01:c2:05:
b5:30:c0:c1:b0:c1:99:30:31:fc:f2:dd:dc:ab:dc:
26:94:cf:22:b8:77:4b:e7:4c:2e:e5:10:e9:35:91:
90:4e:0b:79:86:48:0d:66:eb:82:13:95:f3:44:4c:
b8:17:35:f5:35:f2:98:ff:ae:e8:cd:da:88:ef:e8:
c8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:1B:2C:52:8D:9A:84:55:3D:48:31:B3:EA:75:9B:ED:AC:31:06:53
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/JxssUo2ahFU9SDGz6nWb7awxBlM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a2:a6:ba:05:6f:63:30:dd:32:88:07:36:9c:2b:be:03:b7:ef:
81:05:94:23:7b:9c:10:c9:1c:f4:20:6d:27:4a:02:ca:27:70:
af:3f:c2:3d:12:db:20:91:b0:89:57:33:33:e6:69:4b:32:62:
17:3f:c8:03:7e:5e:52:cb:17:76:91:3c:b0:34:44:87:84:45:
9c:c1:84:c0:b7:39:98:6d:0e:5d:5b:fd:4f:c6:8a:e3:c5:4b:
d1:ee:09:7f:be:0b:c0:54:60:3b:76:72:17:c6:f8:34:e7:ba:
17:b0:1e:3c:44:7e:5e:bd:2d:0b:8a:c1:c5:af:f6:cf:b8:7a:
b9:64:43:b1:67:a6:be:ef:38:44:6d:ac:20:80:5e:6b:b4:63:
30:f3:12:b8:4e:dc:25:d1:ec:e6:26:b8:3b:36:84:93:fa:69:
ed:7f:16:5f:af:61:37:c6:1a:68:7c:ed:a6:68:2b:9a:04:3f:
5f:93:e6:6a:2c:e4:7d:e3:a9:9c:66:14:d8:a5:68:87:fa:0f:
3c:e3:8c:1d:f2:86:9d:01:0f:5f:cd:2c:7e:c6:74:bf:74:d0:
bf:f0:ff:f8:f0:4b:38:96:1f:4d:91:e5:1d:97:22:3f:f4:fd:
9b:e1:38:fa:ea:0f:6b:35:08:77:5e:95:8e:77:f7:96:a4:85:
d4:bc:5e:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 03:05:08 2025 by rpki-client