Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Ouq8VNXTtIAoXB1YIiuKbK7unGA.roa
File: Ouq8VNXTtIAoXB1YIiuKbK7unGA.roa (raw, json)
Hash identifier: PvGm24LALteXSMUludxSioR1RKg6lNDaSFIcb2ImBr8=
Subject key identifier: 3A:EA:BC:54:D5:D3:B4:80:28:5C:1D:58:22:2B:8A:6C:AE:EE:9C:60
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01894BBE072D4FE67F689B1D2617097398DF
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Ouq8VNXTtIAoXB1YIiuKbK7unGA.roa
Signing time: Wed 12 Jul 2023 20:14:52 +0000
ROA not before: Wed 12 Jul 2023 20:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4b:be:07:2d:4f:e6:7f:68:9b:1d:26:17:09:73:98:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 12 20:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3aeabc54d5d3b480285c1d58222b8a6caeee9c60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:be:1e:fe:2b:b0:c3:f0:bc:f8:c8:1a:e6:fe:
85:50:15:ce:66:eb:62:58:6c:f4:57:c4:f9:ec:fd:
2f:5e:92:58:31:58:bd:a9:fa:a5:4f:e2:ca:53:33:
af:36:e9:27:37:ed:3f:fb:d4:18:e2:a5:d7:f3:e1:
c7:7f:0b:34:ae:68:dd:07:e6:6c:a9:88:38:04:35:
d8:44:f7:88:fa:75:ca:37:81:f5:48:d2:b1:e1:89:
b3:59:1c:42:8f:f5:c4:fe:27:53:61:ed:32:bb:2a:
44:c7:1c:c3:57:b3:4e:36:cb:1e:41:95:af:ed:1c:
6b:46:c2:62:e7:d9:50:eb:bf:9b:34:1e:ba:30:45:
f7:4e:06:eb:84:b8:0a:dc:7d:8e:f6:1d:9e:f5:4a:
c6:cf:30:7d:f9:10:4c:e8:ca:53:7a:e8:b7:fd:98:
3d:a0:bd:7a:61:bc:80:9a:99:f5:0d:81:36:15:d2:
95:e7:61:e3:1c:81:24:14:59:55:27:52:b2:73:ac:
5d:94:11:0f:67:f4:7e:05:43:62:6a:cc:93:ab:96:
08:74:c3:b5:62:ef:59:3f:54:b7:44:a0:c3:43:ce:
f0:48:bc:01:44:34:36:de:ee:41:e0:61:a5:5e:87:
36:c3:56:de:e2:48:fd:92:d4:0e:0a:64:7a:d4:8a:
48:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:EA:BC:54:D5:D3:B4:80:28:5C:1D:58:22:2B:8A:6C:AE:EE:9C:60
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Ouq8VNXTtIAoXB1YIiuKbK7unGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
b1:32:16:3e:93:06:bd:b4:49:f4:6c:69:40:57:0e:c2:3d:01:
fe:c5:7b:45:32:28:ef:39:72:d0:a9:d5:68:fc:a7:41:93:0d:
b7:7c:94:21:a1:3c:7e:20:fc:5b:28:29:df:06:cb:4e:a5:79:
66:a9:e8:2e:b0:46:26:e9:8a:56:79:28:0d:c7:47:a2:20:ba:
86:68:9f:46:6e:f4:ab:97:20:41:e3:49:27:24:64:be:80:0d:
27:3c:99:7d:c9:e4:31:9b:f6:91:71:97:78:5a:94:c8:2c:6b:
15:67:85:ec:9e:1c:19:5e:ac:70:9d:73:a1:26:0b:ff:14:0a:
19:e0:07:f9:d9:7f:e4:3d:61:c0:ef:83:28:e5:2c:16:c1:77:
67:f2:30:ba:9c:25:f4:d0:ef:02:f7:d2:85:5c:e3:a1:68:b4:
43:56:1e:2d:ff:0e:6e:bc:77:49:66:d5:2f:73:5b:c3:a3:f6:
64:2c:36:6d:29:80:4d:37:d5:2a:d9:1f:fa:59:25:fe:a6:3f:
31:88:49:b2:25:dd:19:3e:58:75:56:d0:3a:af:16:a3:4c:75:
40:ac:6a:e9:c7:90:ae:2f:19:58:52:44:af:5c:8c:0a:ef:b4:
4c:f9:06:a4:3a:93:3a:e0:f1:95:3e:ba:18:ab:9f:75:5c:43:
aa:13:92:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 11:37:49 2025 by rpki-client