Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/K0WQQXCJfr77ID5MY71Uu_P3Tak.roa
File: K0WQQXCJfr77ID5MY71Uu_P3Tak.roa (raw, json)
Hash identifier: xjSW36xwqx/j1ypWmWUYc0BhHv6FIpHI3XBby8DCx+I=
Subject key identifier: 2B:45:90:41:70:89:7E:BE:FB:20:3E:4C:63:BD:54:BB:F3:F7:4D:A9
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018833B6E887EEF6446EAF9DE582B8E7F280
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/K0WQQXCJfr77ID5MY71Uu_P3Tak.roa
Signing time: Fri 19 May 2023 11:13:25 +0000
ROA not before: Fri 19 May 2023 11:13:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:33:b6:e8:87:ee:f6:44:6e:af:9d:e5:82:b8:e7:f2:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 19 11:13:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b45904170897ebefb203e4c63bd54bbf3f74da9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:98:40:20:0a:7f:4a:dd:e5:d9:1b:21:10:35:
1e:10:12:57:b4:1d:e5:a7:0f:b5:87:ed:d5:30:51:
2f:57:49:62:ea:4a:5b:9e:ce:49:e3:39:cf:de:75:
61:b4:f4:33:38:55:e8:86:a2:b5:d8:37:51:e8:e4:
6e:b8:ee:ce:6a:2b:24:71:65:4b:42:98:bd:76:09:
7f:63:f6:43:18:08:39:1e:e8:91:7d:09:46:a5:68:
d3:11:ba:15:9f:55:24:17:21:e5:93:9b:d3:c0:e7:
4e:e6:ac:6d:6c:e8:70:c3:c7:c3:ed:a0:ae:0a:d7:
4d:9b:0c:fb:c7:b2:9b:69:5e:d3:3a:30:3f:29:51:
b9:cc:8b:b9:00:d8:d8:8f:73:56:d6:70:de:62:9e:
f7:a2:26:b7:38:61:d5:ce:87:9c:ba:25:29:60:01:
33:6e:32:63:1c:bd:38:8a:7f:bc:d7:ce:e4:2b:3f:
13:58:97:f1:da:c2:53:30:f9:64:4d:bb:c6:60:b0:
23:43:17:fe:49:54:18:d8:dd:85:ad:38:2d:4d:63:
1c:d5:f9:01:0a:81:2c:1f:89:53:54:e4:83:48:0f:
62:4e:45:ea:ca:51:e3:db:5b:d5:c2:a1:b0:f3:2e:
ae:e4:c0:df:81:ae:8e:01:85:e8:ad:51:0f:4e:2b:
78:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:45:90:41:70:89:7E:BE:FB:20:3E:4C:63:BD:54:BB:F3:F7:4D:A9
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/K0WQQXCJfr77ID5MY71Uu_P3Tak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
2d:25:58:19:26:bc:d9:87:8c:24:bf:f4:5f:82:e9:a2:65:48:
e5:20:ad:3a:34:c0:70:af:cd:74:64:4f:04:a9:6b:7a:11:41:
cf:42:d1:d7:73:2e:02:1f:6a:70:fc:a8:96:dc:ac:2e:54:7d:
4d:e6:97:4f:7f:24:c0:e0:ea:32:6b:6d:48:2a:f7:cd:38:2d:
0a:5f:54:23:1f:f4:3a:b1:45:f6:d8:12:79:7a:21:85:88:4f:
fe:e8:0d:25:f0:e2:b3:10:c8:eb:c3:a7:90:01:74:1d:a1:5a:
a2:ac:75:4b:33:40:47:47:d8:4c:83:79:5e:51:e8:a1:02:3d:
47:d7:9f:33:1f:92:d0:fd:10:93:a6:bb:57:bc:c2:6d:b6:10:
90:a9:e1:f4:1a:21:5e:62:6c:bf:a9:bd:1f:0d:5a:8b:60:44:
02:7e:10:8d:d1:68:d4:94:c2:64:e9:9e:1e:35:50:b4:15:24:
ea:c4:bb:47:8c:5f:57:fa:43:8d:c0:06:69:41:88:78:2f:2e:
a7:6a:38:44:3e:44:86:e5:25:04:c6:33:0d:17:a4:e1:cb:32:
27:4f:0d:fd:6b:07:72:27:5c:0f:1b:e1:97:90:d3:df:6a:7b:
3c:27:f7:0e:ec:26:f7:cb:b8:e7:5d:44:8c:6f:4a:41:40:a8:
bf:55:b6:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 00:35:18 2025 by rpki-client