Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/RW2yibfsr4LH1Tph6nlmps7mOcc.roa
File: RW2yibfsr4LH1Tph6nlmps7mOcc.roa (raw, json)
Hash identifier: bbMuAE9LDxpMZkbiCgQ3bjCGTZcHqlJiF1ki0hAKgPE=
Subject key identifier: 45:6D:B2:89:B7:EC:AF:82:C7:D5:3A:61:EA:79:66:A6:CE:E6:39:C7
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 7DFB38FA
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/RW2yibfsr4LH1Tph6nlmps7mOcc.roa
Signing time: Sun 24 Apr 2022 04:12:19 +0000
ROA not before: Sun 24 Apr 2022 04:12:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:180:466e:42dd/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:180:457:1e3f/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2113616122 (0x7dfb38fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 24 04:12:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=456db289b7ecaf82c7d53a61ea7966a6cee639c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c0:dd:59:3b:04:5b:71:b0:2e:85:38:6b:3f:
7c:a1:a1:80:34:ac:d0:ec:c9:98:df:5c:20:be:07:
bf:83:7c:eb:88:b2:55:e5:3b:7c:3a:15:e8:af:89:
2c:43:b5:c8:c2:b3:ca:3a:20:a1:db:d3:2f:44:e7:
41:3f:91:60:cd:92:8c:8a:14:31:e9:55:fd:f0:71:
b4:a4:7e:a9:d2:7f:a8:03:cc:93:65:8f:30:17:04:
b2:b5:16:59:8b:bf:46:00:22:89:64:f1:5f:f3:05:
2a:38:a2:a1:50:fa:f3:61:24:33:eb:c2:e1:94:94:
66:c4:fc:c5:e3:5c:d4:b4:17:58:ac:92:ee:27:0f:
ae:f8:3f:c5:17:95:ea:2b:fa:a0:f4:ae:d2:f6:24:
89:41:22:ff:d8:f7:1b:84:70:b1:4b:21:e9:8a:dc:
98:43:19:9c:87:20:f9:13:b5:cb:1f:7c:eb:03:4a:
3e:65:10:72:6a:3f:cd:2d:f8:ea:ed:af:87:71:73:
e3:b9:2b:9d:bd:5a:a4:ca:76:27:98:8b:6f:b3:ce:
2c:9f:fc:be:04:e5:7c:d5:78:8e:87:08:20:6a:57:
e5:48:10:2c:ee:cf:67:35:b0:4f:87:4b:85:8a:bf:
56:fc:50:f0:9e:c7:8d:5a:14:d5:da:ac:74:92:49:
01:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:6D:B2:89:B7:EC:AF:82:C7:D5:3A:61:EA:79:66:A6:CE:E6:39:C7
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/RW2yibfsr4LH1Tph6nlmps7mOcc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
52:9e:1e:1c:87:9a:42:55:18:42:72:88:3b:83:b7:b7:d5:72:
ff:26:e9:22:40:33:96:8d:27:90:61:4e:e7:7d:53:02:7d:25:
cc:5d:02:3e:86:17:3f:3d:d9:08:70:8a:8c:d3:27:01:56:ac:
42:e0:e6:4d:5c:c3:1b:fe:76:ae:15:a9:39:a1:19:69:8f:86:
a7:ad:f2:41:f7:db:35:2f:ea:e5:0e:ae:27:f7:71:91:d7:30:
bf:cc:e7:af:e0:70:12:f6:a1:e0:5a:62:08:19:dc:de:92:32:
4c:d8:45:c8:5d:60:66:76:5c:0b:d9:ae:fb:6b:00:87:43:32:
4c:f2:3c:15:9b:50:d1:6d:9b:62:3f:dd:3c:e8:ad:05:86:d5:
b4:7b:86:c4:72:bd:d2:7b:57:be:f9:86:ab:f9:67:d7:25:ee:
f9:85:71:b2:49:5f:f0:67:90:db:ed:18:12:9c:e7:11:66:47:
8c:07:a0:0a:a7:04:de:e7:b2:7c:c6:ed:87:7f:e8:26:92:91:
52:e9:65:df:7b:31:37:58:d2:e3:4a:09:93:e5:4b:29:f0:a2:
73:34:98:d7:1c:7d:18:90:28:58:ac:9e:d4:1f:f9:72:c6:5d:
32:80:58:94:70:71:a8:a6:45:c4:c9:32:10:12:1d:45:5d:11:
d1:fa:77:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 00:09:08 2025 by rpki-client