Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/OXemOOpEXXwSq7rtqMxbrMQGctU.roa
File: OXemOOpEXXwSq7rtqMxbrMQGctU.roa (raw, json)
Hash identifier: PWuiyV0NhOxfJse1/2cPfk7x3yK3hbw5pOhu6qxxbwE=
Subject key identifier: 39:77:A6:38:EA:44:5D:7C:12:AB:BA:ED:A8:CC:5B:AC:C4:06:72:D5
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0181D748E8E42A3A06538FB332106D7A9152
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/OXemOOpEXXwSq7rtqMxbrMQGctU.roa
Signing time: Thu 07 Jul 2022 06:11:28 +0000
ROA not before: Thu 07 Jul 2022 06:11:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d7:48:e8:e4:2a:3a:06:53:8f:b3:32:10:6d:7a:91:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 7 06:11:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3977a638ea445d7c12abbaeda8cc5bacc40672d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:76:cc:6d:8f:55:d3:fb:89:ce:4e:5c:3d:e8:
c2:58:c6:c4:61:f2:4f:27:79:a5:0b:19:19:e3:24:
51:35:84:c8:31:5d:e2:a1:86:a5:75:2c:69:45:ef:
6f:4b:c0:e4:68:fe:7f:66:6e:34:29:e7:d0:4e:83:
d1:9e:e0:b4:cb:df:17:8e:cd:c6:00:8f:9e:dd:7e:
cb:fb:78:9b:11:34:89:4c:d6:14:24:9d:3f:d4:8e:
ed:fd:c1:82:f4:e2:52:e2:16:e0:20:76:6e:d6:9a:
b2:47:64:19:c1:e0:8f:29:04:76:aa:ed:46:ab:bf:
50:f4:30:da:b9:7f:14:e4:7f:a5:c2:39:d7:5d:b8:
cc:79:80:9a:10:88:52:eb:e2:28:c5:05:79:0d:52:
63:23:1b:fe:c8:61:68:2e:28:f0:09:de:b4:66:20:
e6:15:85:4a:1c:f5:af:ea:e3:63:a5:47:c2:59:00:
2c:e8:8e:19:f6:92:f8:3d:49:23:c7:39:54:8b:cd:
59:53:79:30:2d:26:27:f5:73:4b:30:9b:32:51:51:
fe:9d:47:b4:3d:f7:61:32:42:c9:5d:c3:62:e0:de:
ac:20:1b:0d:e7:44:4f:2b:0b:ad:46:57:dc:03:29:
25:9d:95:5a:10:46:49:ff:55:10:43:ef:63:d1:94:
5c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:77:A6:38:EA:44:5D:7C:12:AB:BA:ED:A8:CC:5B:AC:C4:06:72:D5
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/OXemOOpEXXwSq7rtqMxbrMQGctU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
4d:aa:54:69:67:7e:d4:e8:35:e8:cf:51:84:21:6e:99:90:b5:
72:c8:cf:f6:76:8c:a7:73:25:12:48:ff:56:0b:d6:f8:de:d6:
ce:77:35:a7:74:67:77:fe:6e:91:35:47:bb:db:30:ce:5d:2e:
67:fc:1d:e9:06:8f:bd:18:3d:9b:a9:8f:69:0f:d2:e4:83:9f:
2c:ec:13:f9:fc:a9:7b:a4:27:c2:e0:9e:bf:ad:15:e0:12:ce:
50:bd:67:f0:8d:b8:52:9a:eb:f9:e3:b2:29:ef:08:0f:cb:94:
a0:df:50:69:4c:d2:d4:b5:58:1f:0f:7f:38:dd:eb:84:ad:7a:
48:8c:8c:79:fc:3c:e6:68:ce:97:61:bd:df:4c:c1:d7:bd:9c:
be:a9:dc:17:19:11:15:76:07:74:52:14:36:f2:99:5a:23:a8:
00:58:87:25:63:a6:fd:f0:22:72:a3:f7:29:b6:27:73:2d:18:
d1:66:1c:7c:39:d2:c5:d8:d1:d2:0b:4f:56:84:42:94:7e:e5:
08:b2:93:32:cb:d6:7b:81:c0:12:2b:e4:e6:36:af:0c:25:78:
a5:d6:8f:a1:9e:f3:64:e4:37:b2:54:a2:20:c8:4a:a0:2e:1f:
f6:03:98:e8:03:65:92:b1:bc:45:5c:ea:f2:07:3f:b7:12:0c:
bc:9d:33:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 10:11:53 2025 by rpki-client