Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/KGmIewpphPw_-JiBMCNOS4CFEWM.roa
File: KGmIewpphPw_-JiBMCNOS4CFEWM.roa (raw, json)
Hash identifier: CuKYomSalAuyFG4CANXsFDAMfccSp+79OoVemyp+rWQ=
Subject key identifier: 28:69:88:7B:0A:69:84:FC:3F:F8:98:81:30:23:4E:4B:80:85:11:63
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018969FA6E12A510C25830CEAFCE433E1D27
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/KGmIewpphPw_-JiBMCNOS4CFEWM.roa
Signing time: Tue 18 Jul 2023 17:09:27 +0000
ROA not before: Tue 18 Jul 2023 17:09:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:69:fa:6e:12:a5:10:c2:58:30:ce:af:ce:43:3e:1d:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 18 17:09:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2869887b0a6984fc3ff8988130234e4b80851163
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4b:52:96:4b:ad:96:7e:67:6c:71:7c:46:3d:
83:71:6e:6d:b0:cc:1e:e3:57:21:89:07:08:94:94:
21:4b:79:29:ce:8c:b5:ce:b0:b7:1b:de:3b:40:b0:
fb:74:5f:7d:1b:ee:76:dd:3f:05:0d:40:08:e9:60:
b2:88:fc:2f:10:e3:76:5c:b1:2f:ba:86:b0:40:12:
4e:e8:0d:9a:94:64:8a:4a:b0:85:81:db:7b:80:85:
34:20:fe:15:00:b3:37:5c:bb:e6:cb:49:4c:d0:6a:
0d:3a:ba:0f:16:3e:a7:37:d3:cb:78:b8:0a:03:6d:
d2:41:19:83:d8:39:17:54:63:de:77:a8:35:ba:94:
15:e0:b8:7b:53:67:7d:df:4d:d2:5e:25:1e:7f:07:
15:b2:9a:c8:c7:a2:d9:e8:44:cf:28:6a:89:6b:17:
a0:07:01:13:33:8a:38:a3:ae:39:24:ef:20:bf:c8:
37:8d:54:16:df:7a:94:48:6b:fa:29:d5:3a:53:08:
fe:68:3d:1f:0f:3a:03:b9:ba:c5:8d:5b:16:f0:2d:
ac:e4:32:bc:83:15:89:5c:e8:49:35:82:11:c2:44:
8c:9d:d0:54:d8:54:ff:4a:e9:60:d1:41:cd:8d:07:
54:5a:ea:a6:3b:c7:bf:ad:f2:2b:1a:53:d4:c4:74:
e9:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:69:88:7B:0A:69:84:FC:3F:F8:98:81:30:23:4E:4B:80:85:11:63
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/KGmIewpphPw_-JiBMCNOS4CFEWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
0d:ae:3f:5e:31:0d:3f:4a:09:13:a1:87:ff:91:61:22:3e:ce:
f8:c1:b6:7a:2e:5a:ec:e9:21:7a:c0:b9:de:4a:51:65:0e:cc:
3b:e3:c6:e3:9f:f3:a2:ea:21:b5:cb:6f:6f:e5:7b:20:d7:86:
bc:ad:e4:98:b4:9b:8b:b5:f4:bd:2b:26:4b:e6:d1:73:c2:34:
01:15:c9:08:d6:32:3a:7b:1a:c6:25:ef:15:a9:74:40:8d:ad:
20:8c:9f:d2:44:84:ad:d5:d0:e0:1c:f2:9e:bd:2a:40:db:f7:
e4:a2:1e:61:74:b7:40:61:8c:08:8a:50:44:48:f4:40:bd:16:
a4:6b:9f:3c:7d:ec:7a:cf:66:bf:90:60:96:8e:46:d5:f9:ff:
68:26:dd:8a:9a:b0:99:26:58:fe:7b:24:54:1b:f9:32:99:6f:
67:26:53:4e:c2:81:a7:db:0b:2e:94:de:5c:73:a6:45:78:49:
55:f6:69:32:3e:20:e0:23:96:bc:aa:21:bf:cd:96:bc:eb:b4:
cb:74:09:61:61:cd:b3:b9:68:79:57:54:13:a7:bd:1c:e3:01:
18:d1:b0:a9:06:f1:00:1d:e8:cd:d0:b7:b0:a2:a2:d2:41:3c:
e4:f2:54:a2:61:a2:a3:80:6a:d6:47:cc:0b:af:b6:ce:15:fc:
6c:f1:9e:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 20:07:05 2025 by rpki-client