Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/N7FX7KHUG18Cow4Nu5-7rZILkdQ.roa
File: N7FX7KHUG18Cow4Nu5-7rZILkdQ.roa (raw, json)
Hash identifier: Hrnujgv9t0URT0P1QTfhBBX+jQK9xx+w3eDn66qeqgg=
Subject key identifier: 37:B1:57:EC:A1:D4:1B:5F:02:A3:0E:0D:BB:9F:BB:AD:92:0B:91:D4
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018502D0DE3D2CC59EB08589CAD5BE2B7668
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/N7FX7KHUG18Cow4Nu5-7rZILkdQ.roa
Signing time: Sun 11 Dec 2022 20:12:00 +0000
ROA not before: Sun 11 Dec 2022 20:12:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:02:d0:de:3d:2c:c5:9e:b0:85:89:ca:d5:be:2b:76:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Dec 11 20:12:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=37b157eca1d41b5f02a30e0dbb9fbbad920b91d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:91:d7:57:64:9a:20:af:d8:b3:b3:de:d7:07:
79:d1:2f:b4:fe:de:b5:3b:46:93:d2:73:36:f8:92:
00:f3:fe:95:9b:24:b2:3c:03:f9:23:40:be:76:01:
4d:5a:20:eb:8e:72:3c:67:e2:19:8c:1c:42:30:c1:
49:05:6c:9b:fb:0a:b0:d0:c6:41:49:23:87:2d:9b:
7e:99:7c:c0:b1:47:8f:b0:81:14:6f:d0:d0:92:a7:
7d:84:06:08:91:a3:b6:ad:34:ae:62:a1:42:a4:3c:
77:4c:14:ad:ca:60:a3:90:f3:4d:b0:aa:76:b0:71:
46:4d:ab:49:ef:15:5b:8e:33:5e:89:ac:02:99:b2:
47:54:a1:35:9b:3c:70:75:73:e7:42:7a:f0:39:af:
33:f1:bd:11:bf:d0:68:c5:7d:12:62:13:98:07:09:
3a:2d:ee:71:2a:eb:16:5b:42:5f:2f:6d:53:ff:48:
5e:df:21:be:f7:58:09:8f:ef:42:89:65:fe:84:e3:
48:c8:c1:aa:81:d7:cc:94:e6:4d:53:bb:71:ae:2c:
a3:b8:bd:0a:62:3d:8b:87:96:83:11:e5:f3:4c:d0:
cb:4d:e1:3b:a2:fc:a7:6f:56:b3:74:66:c8:8f:4c:
09:b2:db:b4:9d:cc:ca:06:04:e6:f2:70:0d:f9:05:
37:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:B1:57:EC:A1:D4:1B:5F:02:A3:0E:0D:BB:9F:BB:AD:92:0B:91:D4
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/N7FX7KHUG18Cow4Nu5-7rZILkdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
6c:a4:3a:bb:53:f7:eb:be:67:fc:a3:a4:7a:2f:cb:ae:ba:4b:
7e:55:fe:49:90:0c:32:3c:68:16:e8:3f:6a:bb:36:91:e3:95:
70:d0:8c:11:81:24:00:82:93:8d:9a:d6:63:11:b8:aa:a1:17:
59:18:db:bf:d9:ad:6a:01:95:69:a8:61:0d:5f:89:8a:53:7f:
e9:ce:2e:35:d6:a4:1b:f1:dd:5f:eb:9a:3b:cc:73:08:59:9b:
72:0e:8e:64:4c:0e:87:e0:7c:9f:22:01:8d:99:b6:9a:7a:4d:
8a:29:08:68:ee:bf:5d:66:49:e8:43:72:2c:74:39:c9:3d:fa:
a7:e2:c8:e3:1f:91:8c:88:34:8d:3b:28:51:83:f3:0f:8b:d4:
6c:69:76:bc:40:a7:9d:93:0c:93:e5:b6:36:5c:15:79:b8:2e:
f6:9c:b7:3d:62:00:e7:79:dd:b1:15:52:cc:10:83:17:e6:da:
22:f0:45:fd:34:8f:94:4a:eb:ee:cc:fe:72:d9:6c:b7:2a:50:
ef:ea:6f:28:4c:8f:cc:1e:6c:69:3b:b9:c3:44:e6:8c:46:f8:
74:10:fc:33:dd:a2:18:15:76:6d:10:a3:38:fd:f3:60:49:c3:
44:22:6c:f1:0d:d8:37:d5:d3:9b:e7:f0:0f:b3:cf:5d:45:64:
38:9f:87:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 19:46:29 2025 by rpki-client