Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/KaWKG1BBQ6zZydBh5fxJuJvI3eY.roa
File: KaWKG1BBQ6zZydBh5fxJuJvI3eY.roa (raw, json)
Hash identifier: Sd2QRc+AAK8gXQTusixtfwTK9CEsv+tZVQruLXydfb8=
Subject key identifier: 29:A5:8A:1B:50:41:43:AC:D9:C9:D0:61:E5:FC:49:B8:9B:C8:DD:E6
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 818631C8
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/KaWKG1BBQ6zZydBh5fxJuJvI3eY.roa
Signing time: Fri 06 May 2022 02:10:39 +0000
ROA not before: Fri 06 May 2022 02:10:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:180:466e:42dd/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:180:8961:505f/128 maxlen: 128
2001:67c:64:ffff:0:180:457:1e3f/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2173055432 (0x818631c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 6 02:10:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29a58a1b504143acd9c9d061e5fc49b89bc8dde6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ed:b8:1c:8a:6e:c9:26:2d:33:93:78:9f:ac:
0b:43:98:1f:20:f7:05:99:3b:d3:b6:13:99:57:3a:
60:47:d6:d6:93:41:23:c2:60:44:c6:8a:31:96:d2:
aa:33:c5:bb:2d:1b:56:22:cc:80:13:37:a4:02:ec:
01:f2:3a:67:8c:0d:b4:dd:e3:bf:85:b9:f7:c7:39:
6c:77:82:37:6b:e4:25:45:52:87:fe:68:8b:ea:80:
40:a2:08:2c:b8:74:ee:9f:ce:af:bc:f4:17:b2:2d:
11:59:05:a7:07:82:0e:e1:92:f1:e5:6e:6e:65:fb:
ae:39:3d:5d:0d:6b:85:b6:6e:7d:7d:84:06:08:fa:
d5:49:a5:10:87:23:bf:f1:d8:dc:a6:6a:64:db:8e:
3e:90:bc:fb:08:26:52:b2:49:da:b1:d4:7d:08:77:
31:30:4c:94:a5:0b:df:fe:1c:21:82:f5:38:c6:8f:
17:5e:19:9a:f2:c2:a6:24:b1:f6:84:96:23:ba:41:
e2:da:f6:3b:4f:86:8b:ee:31:07:92:c3:88:b5:a2:
55:eb:11:f4:43:64:b2:60:53:05:18:0d:c2:2c:75:
b3:33:aa:c0:02:76:7c:21:3a:e9:cf:f4:55:d1:1c:
ae:db:f7:3e:15:61:58:59:42:64:15:6e:b5:ff:fe:
49:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:A5:8A:1B:50:41:43:AC:D9:C9:D0:61:E5:FC:49:B8:9B:C8:DD:E6
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/KaWKG1BBQ6zZydBh5fxJuJvI3eY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
b1:96:57:74:df:b6:6b:36:51:13:66:c3:52:e9:78:8c:e7:5a:
e3:1d:45:c5:a1:65:3e:0d:db:5f:86:42:76:bd:13:fb:42:4b:
33:4d:b4:44:5c:a0:7f:f1:c7:28:0d:e4:97:ad:cc:88:ac:fc:
da:7d:50:66:57:6b:b8:96:7b:7a:e3:bb:e6:4b:56:c4:a2:fb:
09:3d:1a:09:92:29:18:a1:d9:17:49:26:5b:e5:ab:d7:b5:ee:
3c:ad:39:c0:03:a8:1e:7a:0f:32:c6:75:d2:7d:e9:5c:82:b0:
82:48:cf:d9:45:f1:36:56:2c:6b:3e:1f:cf:22:7b:4e:d2:80:
ac:21:bd:7f:60:1d:da:cb:61:e1:5a:63:64:54:d9:0c:e5:77:
63:ac:4f:84:69:c4:aa:a5:ea:db:98:8d:5f:02:45:85:4c:f4:
c1:24:bf:51:e1:52:47:4f:c6:4d:26:d7:f7:00:10:c8:9b:90:
2f:5d:da:5d:28:7e:9a:c1:43:7d:23:c3:47:c1:05:5a:4e:c5:
c1:ee:10:be:12:bb:99:f8:32:85:22:cf:96:61:66:9b:79:4c:
3e:3c:a8:35:f4:88:9f:97:cc:c0:dd:39:5e:8e:d1:73:d4:71:
91:35:15:64:e3:a7:67:3e:97:08:dd:b3:be:61:3c:46:69:36:
58:ea:a0:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 19:42:03 2025 by rpki-client