Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/RhtcYphMf9U0n8527bCVnZEVe3Q.roa
File: RhtcYphMf9U0n8527bCVnZEVe3Q.roa (raw, json)
Hash identifier: +1yrefo5BWD+VsPKpeQg6eymoiq2Nza/eBo/yBTPzI0=
Subject key identifier: 46:1B:5C:62:98:4C:7F:D5:34:9F:CE:76:ED:B0:95:9D:91:15:7B:74
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0181DB5C8876A1B825528868F6FDA17F39CF
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/RhtcYphMf9U0n8527bCVnZEVe3Q.roa
Signing time: Fri 08 Jul 2022 01:11:23 +0000
ROA not before: Fri 08 Jul 2022 01:11:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:db:5c:88:76:a1:b8:25:52:88:68:f6:fd:a1:7f:39:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 8 01:11:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=461b5c62984c7fd5349fce76edb0959d91157b74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:42:3f:c3:f5:03:54:e6:3b:8c:4e:f0:b4:cc:
2b:18:26:25:8d:8b:ff:56:5c:8d:a5:d7:68:68:fc:
5c:30:23:88:89:c8:0a:1a:4c:01:76:16:46:aa:51:
dd:f8:f8:7a:c6:59:00:d6:0c:3c:a9:55:2e:72:1b:
cf:73:d4:33:3b:f1:6a:7e:3f:6b:a5:1a:ad:24:60:
8c:9f:3e:ad:c8:70:75:33:a9:1d:45:88:67:92:ac:
4e:2f:0a:ae:8c:43:da:ae:5c:fe:db:27:84:f7:22:
6f:68:b0:9d:c3:55:63:75:f5:9f:f1:6a:e1:cb:87:
de:5c:2b:73:0d:ab:62:fd:c6:a2:49:fb:55:f4:27:
0e:81:a4:fb:88:80:a2:c9:2c:b0:c7:d2:f0:56:fb:
50:02:2a:dc:3a:3d:f5:c4:c0:e0:a4:a6:50:4d:15:
29:83:3f:81:36:c3:4a:63:02:45:97:1d:d1:5b:dd:
fc:04:32:ff:c0:c7:71:e5:9a:c0:5d:9e:dc:c7:26:
ca:37:5a:91:ff:af:f9:b5:8f:ff:46:ce:33:5a:0c:
28:ef:94:a4:ca:0a:c9:97:9f:9e:2a:f8:3d:67:53:
88:e0:fc:7f:b7:ee:a9:72:03:f1:00:f1:fe:72:8c:
46:eb:22:4c:99:5c:fe:6b:3e:c6:cc:97:ae:ee:a6:
6b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:1B:5C:62:98:4C:7F:D5:34:9F:CE:76:ED:B0:95:9D:91:15:7B:74
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/RhtcYphMf9U0n8527bCVnZEVe3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
05:7d:48:c7:ad:40:fe:c5:73:43:44:5b:e5:a5:72:16:ed:e3:
6f:a4:d0:76:f3:36:bd:9c:a8:d7:ae:a4:e4:8e:9b:f8:86:a2:
ed:f7:9f:03:c4:f6:05:05:ae:ab:46:ce:83:d5:89:1f:ee:5c:
5e:30:08:72:dd:ef:da:27:00:68:db:99:c3:ae:3b:05:21:3e:
01:93:bc:80:0d:17:23:2b:32:c6:75:15:91:88:a2:f1:ac:79:
03:a5:91:47:fe:c4:04:d7:30:a9:e1:3a:54:62:a1:ea:04:49:
24:41:3c:bd:1a:f1:e3:05:6c:e5:47:61:0d:da:a9:fe:46:79:
c4:8e:7b:17:30:e8:7d:05:20:2c:bd:ce:85:70:99:34:03:f0:
83:c1:1f:04:e8:1b:8f:17:0d:c7:88:be:20:30:cd:9c:07:85:
3e:dc:ed:62:85:82:97:40:49:47:82:72:fe:11:91:fa:0e:5d:
a6:1e:32:ab:96:98:68:d9:33:64:86:27:95:c8:f2:52:0c:66:
b7:06:ea:f0:cf:17:54:6e:6e:2d:fe:31:78:d0:fc:e8:09:72:
46:4d:db:ee:5d:ae:12:f7:e2:95:11:fe:7a:1e:b4:f5:ab:df:
2f:29:8d:d2:f6:e0:0c:2a:f4:d4:f2:d4:72:20:3d:5e:33:27:
56:36:2c:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 21:07:47 2025 by rpki-client