Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/O8YFlSapAJTP1luvpB9k-_oEEK4.roa
File: O8YFlSapAJTP1luvpB9k-_oEEK4.roa (raw, json)
Hash identifier: w7J8nctMXgIvL/b4YQD85lt+XZ5wEdrYKOk9SAlJdC0=
Subject key identifier: 3B:C6:05:95:26:A9:00:94:CF:D6:5B:AF:A4:1F:64:FB:FA:04:10:AE
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 7F00A2E1
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/O8YFlSapAJTP1luvpB9k-_oEEK4.roa
Signing time: Wed 27 Apr 2022 17:09:26 +0000
ROA not before: Wed 27 Apr 2022 17:09:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:180:466e:42dd/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:180:457:1e3f/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2130748129 (0x7f00a2e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 27 17:09:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3bc6059526a90094cfd65bafa41f64fbfa0410ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:25:07:76:a4:e8:8e:9c:7a:5d:e6:55:cd:1b:
48:b3:29:2b:73:98:6a:0f:e1:fd:c9:72:0b:c5:99:
62:45:e7:a8:19:6b:24:ce:af:a8:10:8f:9e:b3:9e:
73:bb:ad:a6:a5:20:33:95:a0:21:f8:55:40:a2:96:
29:18:80:67:fa:a5:77:ab:fe:cf:fe:98:b3:37:7e:
76:21:a6:3b:34:8c:39:1b:d8:2b:99:ab:72:05:0e:
dd:9f:a1:79:ac:45:f6:9f:e1:53:24:6d:07:84:23:
8b:24:6b:66:e2:e7:0d:61:7f:ad:ae:10:47:be:c8:
d1:05:2f:40:a0:6a:b1:34:ac:5d:db:0c:7f:30:6d:
86:a3:8c:e8:c5:c2:ac:f5:9d:62:d3:ab:5c:4c:a5:
1a:64:4c:22:53:8e:8b:f7:41:fe:02:3e:17:99:74:
96:ae:8d:24:a1:3f:ba:87:47:4b:4d:34:20:c4:1b:
a1:34:9a:41:72:f1:3a:79:95:01:68:14:0a:5d:d9:
77:b8:25:84:c7:8b:67:57:40:57:b9:7f:9f:5d:93:
5b:c9:ee:d7:50:34:c8:1d:ee:31:c9:33:dc:d0:d3:
93:b3:b1:de:83:4a:90:3b:31:c5:d6:c6:19:5d:9e:
a1:32:3d:2b:d9:77:ea:51:89:ed:61:78:23:87:fc:
d9:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:C6:05:95:26:A9:00:94:CF:D6:5B:AF:A4:1F:64:FB:FA:04:10:AE
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/O8YFlSapAJTP1luvpB9k-_oEEK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
27:d7:41:fc:11:07:0b:06:07:8c:2d:fb:ad:ff:a5:49:c2:91:
1b:83:6c:b7:8e:3f:2a:bf:42:99:47:19:79:9c:af:ee:f1:32:
bc:07:84:cf:7a:1b:9c:b9:6c:b8:22:0c:34:be:ab:80:b8:fa:
74:c5:7d:1d:ab:a2:40:9b:4e:d1:df:b2:f8:b3:b9:96:06:9c:
c3:bb:f3:93:20:c1:03:b8:fb:bc:78:90:76:99:e6:cd:f7:9c:
aa:c4:73:fd:f1:e0:cd:64:a1:c5:4e:13:ca:2f:d6:73:42:04:
67:9d:09:4d:eb:b1:99:48:b6:5f:82:d2:8a:8e:9b:dd:a6:2b:
7b:03:00:ff:d8:09:db:12:fc:35:98:9c:6e:d8:c7:49:ea:2c:
4e:fe:d4:67:38:1a:a3:a7:a7:b9:cd:e2:2f:7b:f6:6e:4c:93:
26:c9:a4:57:5d:7b:4e:2d:b1:b7:c8:1d:a0:77:14:63:42:de:
3c:5d:24:d4:3b:c2:53:43:87:34:00:e0:37:6e:05:7d:a6:b9:
28:43:0a:71:b8:05:1c:d7:94:87:18:cb:43:51:18:7e:b9:d5:
89:29:90:a0:af:dd:02:90:84:05:b4:44:da:3c:2f:72:2a:c1:
e8:da:94:8d:a1:b8:df:94:a6:15:e5:96:84:fa:11:12:af:8b:
4d:85:a4:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 06:46:49 2025 by rpki-client