Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/NH0tGq7jWvpMernsXNe5d7i9Ndo.roa
File: NH0tGq7jWvpMernsXNe5d7i9Ndo.roa (raw, json)
Hash identifier: Sva4wzGgHIr3sZ5PASGqwbpJEDXmJ2fSXT5NxjgnSd8=
Subject key identifier: 34:7D:2D:1A:AE:E3:5A:FA:4C:7A:B9:EC:5C:D7:B9:77:B8:BD:35:DA
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 66307054
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/NH0tGq7jWvpMernsXNe5d7i9Ndo.roa
Signing time: Sat 29 Jan 2022 21:09:13 +0000
ROA not before: Sat 29 Jan 2022 21:09:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:17e:a0dd:2f5b/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1714450516 (0x66307054)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jan 29 21:09:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=347d2d1aaee35afa4c7ab9ec5cd7b977b8bd35da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:20:b0:ef:b5:2f:cc:13:fd:b2:f3:aa:be:9f:
24:3c:b2:f4:9d:c0:39:3e:32:8f:a4:d9:8d:2f:43:
b1:77:7c:46:5b:e0:a6:c1:2b:de:8e:7a:74:d2:69:
2b:c5:de:df:2d:a0:6d:18:54:d5:ac:51:df:71:e6:
11:ad:93:79:a1:c7:3a:cf:45:9a:56:cf:f2:3f:c7:
8d:1e:fe:4a:d5:70:b3:83:eb:8c:40:be:b8:00:27:
54:50:5a:5f:05:49:9c:83:93:60:be:d2:ac:f8:e6:
8e:70:24:4f:55:ae:6b:e8:3f:4b:05:47:fd:ac:c2:
eb:7c:1c:9a:59:5a:e4:d5:e7:f9:8b:7e:47:e4:e9:
16:2f:71:16:4e:5e:bc:7a:da:06:f2:9e:67:62:37:
cb:23:99:b4:77:a3:32:53:e9:80:9f:0d:5e:26:96:
e4:49:80:0a:4f:c5:e8:76:e8:f9:68:6f:f6:fc:a3:
20:3d:38:62:9e:2a:3f:86:4e:df:23:68:f8:c2:8e:
c1:f0:fd:27:61:f6:b3:f7:bb:42:73:13:83:bf:86:
a2:4c:7c:ae:1c:7a:e0:f1:64:c3:70:2e:c6:7f:73:
ad:ca:ff:b7:fd:b3:60:de:3f:3c:75:94:10:ee:c7:
87:c9:b2:9c:0f:0f:1a:0d:45:b0:53:a4:29:c3:1c:
38:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:7D:2D:1A:AE:E3:5A:FA:4C:7A:B9:EC:5C:D7:B9:77:B8:BD:35:DA
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/NH0tGq7jWvpMernsXNe5d7i9Ndo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
6a:63:3f:a0:68:ca:83:83:c7:bc:ee:42:c0:8e:a0:fc:bf:9f:
d6:a5:f9:5d:2b:e1:6d:2c:f3:35:8c:7c:3a:64:ab:ca:c4:a0:
dc:35:dd:6d:82:38:b9:00:17:80:89:3b:dd:ec:96:93:54:f5:
b6:cb:5d:6d:3a:37:77:dd:15:ae:6c:c0:eb:cb:fd:d5:7d:3c:
d3:ee:53:bf:fe:32:e4:b5:de:5b:d3:53:50:5d:bd:f7:0f:57:
8f:80:28:19:3d:12:fe:36:6c:bb:75:22:88:e4:47:f4:b0:e7:
99:9c:49:75:3a:99:8d:24:b7:36:a2:5a:5c:7e:b1:05:19:75:
9b:bd:1a:2a:54:37:64:99:e7:1a:80:c3:17:20:f7:5b:06:ca:
51:ff:c2:52:0f:36:e6:52:67:23:54:67:3c:34:ee:a5:2e:67:
7e:7a:de:ca:1e:78:ca:b4:54:6d:e7:70:1d:71:71:ab:69:9a:
ad:fb:3e:cd:a2:59:5b:d8:d1:57:34:38:e1:8d:56:b1:0a:d8:
1f:df:7d:26:1f:83:79:bc:69:cf:a4:46:a9:e3:b5:21:6f:18:
2d:e4:81:c5:e9:07:55:39:8e:ed:c5:0c:cc:2c:e8:71:fe:09:
34:12:02:b7:9b:d1:2a:32:3e:e1:b2:eb:7a:fb:2a:24:89:d9:
04:9a:b7:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 05:01:30 2025 by rpki-client