Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/QY6Oz5uYe7icJSyJvcroppNZ7dw.roa
File: QY6Oz5uYe7icJSyJvcroppNZ7dw.roa (raw, json)
Hash identifier: MVH0byNweZdbi05jwjWuKyNS5vbw0I5Rzd+5jb58TKo=
Subject key identifier: 41:8E:8E:CF:9B:98:7B:B8:9C:25:2C:89:BD:CA:E8:A6:93:59:ED:DC
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 6BACABEB
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/QY6Oz5uYe7icJSyJvcroppNZ7dw.roa
Signing time: Fri 18 Feb 2022 13:09:25 +0000
ROA not before: Fri 18 Feb 2022 13:09:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1806478315 (0x6bacabeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 18 13:09:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=418e8ecf9b987bb89c252c89bdcae8a69359eddc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:9b:e8:dd:ea:ba:de:e8:11:1b:68:9d:db:38:
8a:73:66:1c:5e:2b:9d:61:47:02:89:e6:55:a3:c9:
65:21:a9:9e:dc:2d:98:70:64:17:9d:99:f1:9a:78:
14:dc:89:e2:cf:b1:83:96:fc:a2:79:e9:a2:20:ab:
90:a9:c7:b8:a3:9a:28:4f:eb:00:0a:04:b0:a7:fa:
24:5b:96:b5:e4:b4:52:66:64:4a:0d:01:da:dd:46:
83:88:49:a2:30:11:e3:89:1e:23:26:25:ac:66:69:
0d:8b:89:c1:00:79:b8:33:ad:14:ce:41:cf:4e:b1:
f5:f4:74:31:23:c7:3e:6c:92:ab:ce:47:b7:fd:47:
41:18:1f:ce:d3:f2:1a:0a:99:f1:89:fc:2e:51:01:
14:6e:71:0f:be:a1:fd:51:ac:41:7a:1b:2c:de:d9:
d4:83:14:8d:50:38:c4:91:39:e1:a9:f9:6b:8d:f3:
9a:b9:02:89:b4:26:2e:1a:cd:11:46:00:13:2d:b6:
ef:a7:f1:df:f8:6b:15:d3:ca:02:dd:a0:67:f8:3d:
41:66:38:14:d7:14:3f:84:05:3c:35:cc:1a:7c:a0:
4e:33:4a:23:7f:b9:18:23:ca:7a:5c:38:65:46:ed:
ed:67:60:ed:26:df:77:0f:d0:2a:94:2f:a9:97:73:
d2:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:8E:8E:CF:9B:98:7B:B8:9C:25:2C:89:BD:CA:E8:A6:93:59:ED:DC
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/QY6Oz5uYe7icJSyJvcroppNZ7dw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7b:a3:29:50:e2:7b:61:65:35:d1:26:fa:28:26:3f:03:f8:88:
c4:d1:c5:d1:b4:71:b7:c0:7c:53:58:e0:94:18:3d:17:05:96:
09:59:12:5f:b9:1e:ba:7d:0e:38:12:e3:1d:04:83:be:a9:11:
78:bb:d1:19:cc:e1:d8:a6:c4:3c:f6:96:74:16:97:d1:ec:5c:
08:c7:67:72:26:ba:32:b7:ac:9e:a7:b4:c6:9e:91:d6:02:f9:
06:e9:97:cb:88:12:d6:cb:f6:c3:e2:e7:8d:c2:ac:59:5c:0b:
d3:62:2f:93:79:c7:32:a8:9d:ac:3f:e3:ed:46:3a:8c:3c:bd:
1c:22:4a:05:40:b9:68:59:e3:fd:d2:cb:9a:b5:49:a0:22:d5:
82:0a:5e:4d:b7:2d:ce:13:c7:5f:6a:bd:70:5b:d7:92:6b:e6:
19:ef:b3:81:44:9d:c6:aa:9f:ec:ce:5f:4f:6f:b6:ef:3b:15:
07:78:91:aa:1e:26:d1:b5:0e:d1:98:d2:49:04:d4:f8:ef:80:
45:3e:3a:b7:a2:41:a1:45:92:2e:f6:db:9f:16:ea:76:07:0e:
a3:34:bd:fc:2b:be:55:0d:6d:06:36:85:e8:da:ae:79:7b:71:
ac:0e:55:f9:4f:47:84:94:8f:35:b5:27:45:16:6a:45:30:75:
2a:ea:1e:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 11:29:50 2025 by rpki-client