Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/R7BlHlshsUZkYx56f59ZRPQLcwU.roa
File: R7BlHlshsUZkYx56f59ZRPQLcwU.roa (raw, json)
Hash identifier: GsomCQlFHNeKwrzr9+2NseX2fvkIRtJr4NPcTCXTCq0=
Subject key identifier: 47:B0:65:1E:5B:21:B1:46:64:63:1E:7A:7F:9F:59:44:F4:0B:73:05
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 79D000AE
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/R7BlHlshsUZkYx56f59ZRPQLcwU.roa
Signing time: Sat 09 Apr 2022 10:10:55 +0000
ROA not before: Sat 09 Apr 2022 10:10:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:180:457:1e3f/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2043674798 (0x79d000ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 9 10:10:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=47b0651e5b21b14664631e7a7f9f5944f40b7305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d5:b2:db:f2:6e:f3:13:83:59:e7:04:87:4b:
d1:4f:2c:a5:f0:26:58:46:46:ab:f6:12:38:a8:2d:
8d:7d:93:51:71:90:b4:36:d8:7f:2b:90:16:f1:36:
a5:1a:d7:6c:1b:d1:82:11:dc:df:de:dd:da:3b:dd:
c0:e3:74:5f:7c:a8:9d:75:99:ed:42:ac:bc:6f:7c:
e3:c4:05:c1:24:1f:4d:f8:fd:f2:0a:45:f4:42:38:
3f:6f:f4:c6:b1:15:19:ee:03:65:8c:98:b3:ff:db:
15:63:81:9b:fe:69:9a:56:f0:b0:5c:08:da:88:62:
b1:8f:fd:70:42:f5:4a:6e:e4:23:00:63:4d:43:8a:
0b:2d:d3:1c:08:3d:a6:c0:40:cc:4a:0d:17:bc:b8:
c0:6a:8b:06:4c:b7:55:5b:41:68:f3:6d:c9:2c:60:
57:e8:8a:b6:4a:69:b9:ca:91:5e:59:93:dd:dd:34:
fe:5a:d3:a3:62:29:d8:65:15:ae:0a:e4:cd:1a:94:
99:39:43:df:98:39:34:95:b5:fb:90:1b:b4:ed:7c:
43:d0:f5:89:b6:eb:b1:53:43:7f:23:43:85:1c:b8:
56:26:91:e6:8d:f4:22:60:27:8e:52:8f:53:9d:73:
6b:a4:8c:c9:3c:12:36:eb:01:87:71:c7:11:be:dd:
55:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:B0:65:1E:5B:21:B1:46:64:63:1E:7A:7F:9F:59:44:F4:0B:73:05
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/R7BlHlshsUZkYx56f59ZRPQLcwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
70:da:f2:42:67:c5:cd:3a:c0:9b:6f:bb:48:9a:8b:1d:88:d9:
0a:dc:35:b2:2c:65:8f:1e:6d:bb:72:a5:d3:a2:3d:27:0e:9e:
3b:bc:d5:06:fa:c1:95:04:f3:ed:ae:aa:7d:cd:51:4a:69:67:
6d:7c:0d:f9:2c:8e:cc:83:9b:52:ad:59:f2:51:73:88:28:bc:
32:51:6b:42:17:61:3c:5b:56:cc:6e:3a:ab:21:67:db:f6:a1:
e9:74:1b:9a:30:af:9d:99:27:a1:8b:6c:c2:7f:ad:38:fc:e9:
a5:2a:c3:48:0c:64:4c:77:bf:c0:29:e1:5f:d4:80:78:2e:26:
94:fb:ad:01:62:cf:ec:06:45:05:a9:2e:41:4f:2a:a6:ce:de:
c3:0e:7f:dc:a6:2b:fd:1a:b2:03:3f:0f:8d:d4:3e:ba:73:24:
ae:cb:e3:08:69:49:c2:57:2d:b2:9b:c4:9c:cf:be:89:ef:d6:
a8:7d:f1:9c:60:42:77:aa:03:4e:67:ff:1f:8b:07:1b:0a:fd:
17:69:23:45:2a:a9:11:e6:24:73:38:49:67:31:49:07:31:c7:
53:64:24:ca:97:1e:9d:ce:cf:38:fd:37:54:75:e4:f7:62:73:
d2:9d:af:26:bf:8e:49:64:cb:21:7a:b7:72:c9:16:04:1c:3a:
39:0e:af:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 08:40:40 2025 by rpki-client