Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/M9vL2khEAKX-vZGFJCApDQWY7Ao.roa
File: M9vL2khEAKX-vZGFJCApDQWY7Ao.roa (raw, json)
Hash identifier: dXfe+TSRVpN1Z9vM0E+JQgK/ddQinISIMnuIhLx2Xgc=
Subject key identifier: 33:DB:CB:DA:48:44:00:A5:FE:BD:91:85:24:20:29:0D:05:98:EC:0A
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 69B5364D
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/M9vL2khEAKX-vZGFJCApDQWY7Ao.roa
Signing time: Fri 11 Feb 2022 13:07:48 +0000
ROA not before: Fri 11 Feb 2022 13:07:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:17e:d600:60b0/128 maxlen: 128
2001:67c:64:ffff:0:17e:d524:ead9/128 maxlen: 128
2001:67c:64:ffff:0:17e:d9a6:5e4a/128 maxlen: 128
2001:67c:64:ffff:0:17e:ddba:7b5e/128 maxlen: 128
2001:67c:64:ffff:0:17e:db26:e5c4/128 maxlen: 128
2001:67c:64:ffff:0:17e:dab9:26f6/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:17e:da82:41aa/128 maxlen: 128
2001:67c:64:ffff:0:17e:dd83:3b9e/128 maxlen: 128
2001:67c:64:ffff:0:17e:dcde:5809/128 maxlen: 128
2001:67c:64:ffff:0:17e:d938:ba2e/128 maxlen: 128
2001:67c:64:ffff:0:17e:d85c:d348/128 maxlen: 128
2001:67c:64:ffff:0:17e:daf0:4034/128 maxlen: 128
2001:67c:64:ffff:0:17e:dc02:dc22/128 maxlen: 128
2001:67c:64:ffff:0:17e:d592:92a4/128 maxlen: 128
2001:67c:64:ffff:0:17e:d7ee:e040/128 maxlen: 128
2001:67c:64:ffff:0:17e:d6a5:23ae/128 maxlen: 128
2001:67c:64:ffff:0:17e:d901:fecb/128 maxlen: 128
2001:67c:64:ffff:0:17e:d7b8:3101/128 maxlen: 128
2001:67c:64:ffff:0:17e:a0dd:2f5b/128 maxlen: 128
2001:67c:64:ffff:0:17e:d826:2565/128 maxlen: 128
2001:67c:64:ffff:0:17e:dc39:b603/128 maxlen: 128
2001:67c:64:ffff:0:17e:db5e:7e8/128 maxlen: 128
2001:67c:64:ffff:0:17e:d713:9aeb/128 maxlen: 128
2001:67c:64:ffff:0:17e:d55b:c264/128 maxlen: 128
2001:67c:64:ffff:0:17e:d66e:8559/128 maxlen: 128
2001:67c:64:ffff:0:17e:d96f:7a13/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1773483597 (0x69b5364d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 11 13:07:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33dbcbda484400a5febd91852420290d0598ec0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:82:ca:64:d5:87:be:c3:0b:d2:a3:dd:2f:10:
51:23:b5:49:12:73:6f:0c:00:66:65:7b:ab:f1:1c:
c8:7c:d6:af:46:a0:08:d6:c2:5d:07:1b:9a:73:69:
62:b3:5f:a7:91:96:cb:48:56:06:08:a0:a1:b6:d9:
2b:06:dc:68:5f:ca:bd:11:00:a1:a9:0b:07:00:35:
14:92:b4:cb:a9:6a:5a:d5:be:57:5f:f8:fa:14:3d:
bd:ce:f1:2e:b9:91:c7:94:9a:53:2c:2b:bb:1d:28:
42:b5:f9:5f:e8:e1:d3:48:1e:e2:15:a1:99:55:8f:
5f:81:0e:74:3f:da:f0:50:ed:94:66:37:18:a8:67:
39:1f:80:1f:05:91:21:a6:09:35:ce:d9:6d:d1:3a:
98:4c:73:56:3f:bc:45:25:bd:6b:9c:02:a9:39:39:
af:ab:4e:cb:c1:a5:02:3b:f5:73:39:7d:c4:b9:72:
20:3d:54:cb:07:2c:c3:ac:b5:aa:40:22:a0:86:c5:
1a:d5:f9:f6:62:5f:3f:cd:8b:c2:c1:05:7f:35:07:
65:7a:50:ea:df:d0:6e:fe:c5:43:a8:9c:54:20:43:
de:7d:bf:82:d1:6d:7d:ef:b2:c2:8b:0c:10:33:13:
6c:f7:08:83:3d:67:b7:7c:77:90:c8:c8:03:f6:0f:
51:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:DB:CB:DA:48:44:00:A5:FE:BD:91:85:24:20:29:0D:05:98:EC:0A
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/M9vL2khEAKX-vZGFJCApDQWY7Ao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
27:79:3f:c6:b8:fc:b8:3e:f3:9c:62:8c:03:d7:df:aa:b6:2d:
f7:63:44:ab:b6:6d:4f:e2:c2:15:bf:67:72:89:3f:c6:45:b7:
16:d6:a4:f9:fb:66:46:25:32:5b:f5:20:0a:7d:c7:45:0b:88:
46:05:4c:8c:34:d7:4e:ab:10:43:df:95:c4:ae:e9:f2:f0:fe:
df:ac:5f:e1:f4:61:ef:6c:f6:49:09:35:87:66:29:ee:03:58:
94:a9:40:96:3d:0e:80:11:a1:60:f0:b2:16:e3:00:15:8f:6f:
75:ec:35:74:ea:0e:f4:3b:75:3a:5c:4d:53:f8:09:79:97:e9:
58:1c:05:3a:fa:3c:2e:3c:b3:e4:5c:7e:b9:14:27:b4:82:0a:
14:5c:15:13:e0:e9:56:35:10:25:aa:04:8a:29:25:b5:80:3a:
fb:5c:5f:64:67:af:4f:52:07:01:f9:9d:bd:c4:df:c4:d6:5a:
b8:29:95:01:e3:f6:2e:1c:05:24:02:31:45:ad:0a:c8:1a:39:
18:74:c7:63:b0:58:f3:48:f9:7e:f8:fa:68:74:57:54:6d:08:
19:f0:fd:99:c8:80:9b:26:8b:96:0c:1c:1c:60:ca:f1:88:83:
4b:7e:fc:73:8b:08:4e:8c:d8:e3:90:00:4e:a9:a9:2e:2e:13:
6b:04:40:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:30:16 2025 by rpki-client