Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Mm4hAiBePnTsYi7-PEdNHrkY2Ug.roa
File: Mm4hAiBePnTsYi7-PEdNHrkY2Ug.roa (raw, json)
Hash identifier: toWNzOIAlrIDqjhgRS+z1TzJWyIPTHYANEd1T7DzGaY=
Subject key identifier: 32:6E:21:02:20:5E:3E:74:EC:62:2E:FE:3C:47:4D:1E:B9:18:D9:48
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018811913708EBECE871029E3A0162FC9D6D
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Mm4hAiBePnTsYi7-PEdNHrkY2Ug.roa
Signing time: Fri 12 May 2023 20:05:09 +0000
ROA not before: Fri 12 May 2023 20:05:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:188:1190:75d1/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:11:91:37:08:eb:ec:e8:71:02:9e:3a:01:62:fc:9d:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 12 20:05:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=326e2102205e3e74ec622efe3c474d1eb918d948
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:10:29:6b:fd:03:59:b2:67:76:1e:3c:a7:62:
4e:cd:0f:95:ac:3b:8a:5d:43:a0:04:e2:67:51:5f:
9f:e5:fe:7f:38:30:a8:64:de:1b:5d:0d:0d:63:24:
36:09:a1:71:9d:09:2e:94:c2:fe:18:c1:44:7c:72:
ed:3d:28:3d:24:03:f6:18:38:5f:64:2a:62:32:1e:
13:2e:51:89:59:35:5e:df:b5:90:6e:ea:c9:8e:b3:
48:76:06:7f:25:45:23:bd:5b:3e:ab:fa:37:5f:54:
92:fe:d1:99:17:5e:0f:fb:63:26:86:13:65:85:eb:
cb:04:eb:36:33:40:50:e6:69:f4:8d:b7:e0:54:e0:
82:9f:3d:0f:82:b6:ed:60:87:5e:d3:0d:3b:63:e5:
a1:ac:5f:db:0a:8a:07:98:70:b6:c3:ed:0f:b3:58:
13:41:49:c2:67:79:57:f6:0c:bd:86:3b:24:0e:1c:
77:0c:1d:f2:42:76:fd:41:34:e4:3a:c7:b6:05:15:
cf:b8:d9:86:09:2b:14:16:45:41:34:7e:96:c2:27:
f6:5d:72:4c:fa:cf:35:3c:1b:e4:54:13:cf:56:b9:
bc:68:38:d7:1a:63:f2:7f:dd:0e:fc:b9:e9:99:db:
47:33:37:9b:d2:53:47:4a:a7:ca:6d:64:37:d6:e0:
7f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:6E:21:02:20:5E:3E:74:EC:62:2E:FE:3C:47:4D:1E:B9:18:D9:48
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Mm4hAiBePnTsYi7-PEdNHrkY2Ug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
ab:d3:48:e5:81:32:44:24:0a:6d:88:61:a0:4c:46:cb:07:2e:
89:22:28:01:f2:43:b8:16:d6:db:59:c5:6a:32:23:c5:91:f3:
ce:92:93:10:84:2b:c0:20:8b:2d:db:04:67:0c:b7:4e:24:c8:
c1:1d:02:56:ef:67:e9:05:b2:29:35:43:f9:93:82:18:d4:09:
7b:02:7c:c9:65:93:66:32:ba:30:54:9e:47:32:43:80:59:f0:
c4:42:a0:76:91:fe:dd:3e:43:a1:e0:f6:fe:69:b4:af:c9:3e:
e2:c6:da:29:5b:58:9d:85:62:82:24:ef:bb:7c:09:94:89:a2:
0c:4e:62:c4:69:c7:7b:18:11:b4:83:b3:8c:c5:2c:6c:e1:77:
a3:15:e5:09:0f:db:90:ab:ac:3c:28:59:2c:ea:43:83:80:2b:
bd:df:a3:e0:86:3c:0a:86:b8:c8:75:e0:f2:dc:4a:72:c2:c4:
49:a7:da:78:e0:0c:53:0a:03:45:0b:13:f2:dc:8e:aa:49:31:
37:70:52:17:fb:b6:6b:4e:9c:44:d5:0b:f7:3d:ce:f9:f7:cc:
ae:14:37:62:c0:a5:d5:5d:61:75:84:b7:c2:e2:ac:6f:fe:2a:
24:af:bb:67:1e:80:99:29:c4:80:57:d9:b0:20:18:1c:49:4a:
d9:8d:41:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:38:15 2025 by rpki-client