Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/OUj5kBzAB_FpBeO2HtV591jBJQY.roa
File: OUj5kBzAB_FpBeO2HtV591jBJQY.roa (raw, json)
Hash identifier: lqnsJ80L2Qs/VUPApsRGGaJnJXCUKAwmBMipGKrSm1A=
Subject key identifier: 39:48:F9:90:1C:C0:07:F1:69:05:E3:B6:1E:D5:79:F7:58:C1:25:06
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 7B290E2E
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/OUj5kBzAB_FpBeO2HtV591jBJQY.roa
Signing time: Thu 14 Apr 2022 08:20:19 +0000
ROA not before: Thu 14 Apr 2022 08:20:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:180:457:1e3f/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2066288174 (0x7b290e2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 14 08:20:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3948f9901cc007f16905e3b61ed579f758c12506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:0f:d7:e6:51:fa:fa:2c:ed:f4:41:14:b0:a7:
42:73:41:f7:e5:4b:87:49:0a:62:db:35:c5:50:9b:
a6:2e:b4:24:56:56:26:ee:1d:ef:9d:d3:90:30:d3:
d8:16:20:80:64:9f:6b:ad:40:85:10:69:14:5a:57:
96:67:c9:78:0b:08:a9:05:bc:af:1c:83:b7:dd:cf:
1e:48:1d:82:0c:59:73:fa:6e:ca:da:19:50:b6:d4:
30:df:3d:e6:aa:e2:3b:1f:f7:df:e9:d6:a0:da:16:
c3:8e:bb:dd:22:4c:ba:1e:17:22:f1:f8:85:42:3c:
05:f5:ed:c0:b5:f5:06:50:f8:6c:bb:8a:ad:79:21:
99:03:be:8c:3f:7b:bf:a2:c3:fd:12:af:e4:1e:93:
7d:97:64:85:c1:80:f3:7e:05:89:b4:81:64:61:b5:
8f:ed:39:0b:c3:e6:b9:70:06:b5:e7:a3:69:06:b5:
8e:70:0b:17:3f:c5:df:13:a8:93:f0:62:a7:58:be:
34:fa:46:3d:56:92:19:9c:33:d3:b7:dc:63:09:ce:
c8:4e:91:71:d8:a0:b5:3e:b8:61:39:94:f7:b0:a8:
b5:de:0b:46:00:2d:56:73:e2:79:88:25:6d:40:ac:
5c:e7:01:af:f0:fe:04:e3:de:26:0f:d8:a9:95:b5:
66:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:48:F9:90:1C:C0:07:F1:69:05:E3:B6:1E:D5:79:F7:58:C1:25:06
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/OUj5kBzAB_FpBeO2HtV591jBJQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
63:88:f7:27:09:2d:e4:f3:07:93:0c:2e:34:d3:ea:35:01:8f:
f9:b8:9f:24:2b:09:24:37:66:8f:79:bd:9e:b2:30:1c:60:49:
17:8a:2a:c1:42:a7:b1:dc:bf:4c:79:dc:99:6e:e6:cb:70:0d:
82:aa:c7:d9:66:26:f8:f2:85:e8:df:f7:4e:b8:66:6a:e0:4f:
b1:68:a3:7f:26:19:f5:91:7a:b9:aa:ff:69:c6:b4:41:57:eb:
df:6b:bd:97:8a:c1:97:e5:97:25:c0:c0:43:10:ef:5b:b7:f0:
58:fd:a1:44:6f:9c:04:41:7c:f9:30:8f:f1:9c:f5:a4:92:05:
1e:43:6a:f7:41:58:c8:c2:03:7d:b6:3a:4b:f2:ed:3a:70:56:
1a:82:89:bf:fc:3f:4b:d7:e6:32:f0:7d:3f:53:8b:32:22:b4:
48:6a:28:94:a4:ed:c3:3a:74:df:a7:67:3a:70:c6:9d:86:e3:
8b:22:82:81:61:07:98:70:4e:66:7e:3e:53:96:2d:dd:bd:3e:
b5:73:a0:1f:17:34:36:f7:1b:c0:c2:ec:c9:9f:db:86:54:8a:
93:f1:5d:ee:85:b1:5b:42:2e:21:67:bc:58:72:83:dc:ce:f6:
e5:7e:28:f2:47:c6:89:ee:9d:d6:e4:34:5c:f6:09:54:77:ec:
b2:0b:65:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 15:34:36 2025 by rpki-client