Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/S0jeRuNOInwUI1GzUBq6phmhgXs.roa
File: S0jeRuNOInwUI1GzUBq6phmhgXs.roa (raw, json)
Hash identifier: 4ybt6b1CGXXQt/kuc76S5J+egoJzvOkYZOc9b7UnlDQ=
Subject key identifier: 4B:48:DE:46:E3:4E:22:7C:14:23:51:B3:50:1A:BA:A6:19:A1:81:7B
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0185507CEA4C349F0FA61A56688856F9A4C3
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/S0jeRuNOInwUI1GzUBq6phmhgXs.roa
Signing time: Mon 26 Dec 2022 22:10:41 +0000
ROA not before: Mon 26 Dec 2022 22:10:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:185:3dcc:d8f/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:50:7c:ea:4c:34:9f:0f:a6:1a:56:68:88:56:f9:a4:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Dec 26 22:10:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4b48de46e34e227c142351b3501abaa619a1817b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ee:21:eb:db:2f:8c:b6:d7:00:b2:32:ce:8e:
f1:97:a3:09:f6:8c:43:38:75:ec:62:c9:4b:d0:e3:
ca:ef:b6:c8:22:5a:cf:7b:0a:2c:44:64:37:59:e9:
9f:b2:19:98:a2:6d:7f:d8:38:1b:8b:39:cf:16:a0:
6e:96:22:c5:85:b1:16:0e:88:95:3d:a1:33:b3:b5:
79:d3:e8:44:b0:3d:ad:90:d4:c4:88:e2:e0:46:de:
2d:6f:18:65:fd:56:8e:bb:81:ed:05:c6:b8:8c:5b:
e5:e4:74:e8:6f:19:f7:c0:9c:da:bb:b3:2f:7c:98:
99:5c:13:79:ed:61:55:3c:04:a0:cd:77:5e:ad:83:
98:2a:24:6c:ef:ca:1b:52:0c:65:98:ac:70:0f:3d:
76:ca:db:ff:5f:59:2d:7c:d5:52:30:18:8d:4b:23:
60:41:d5:9f:bb:f0:01:a6:b0:bb:26:7a:86:ea:56:
34:df:7d:bb:5c:41:26:11:a5:19:46:55:bb:cf:2c:
fa:d4:99:97:93:c3:fa:70:dd:e9:46:53:51:d1:a0:
ec:a1:69:54:b2:d2:98:70:d4:5a:c7:cc:da:81:f0:
45:fc:a7:1f:75:0f:73:58:88:28:88:2a:18:c7:e7:
e4:4b:63:16:f2:fa:7c:2a:0b:d7:5c:39:9d:0b:3b:
81:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:48:DE:46:E3:4E:22:7C:14:23:51:B3:50:1A:BA:A6:19:A1:81:7B
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/S0jeRuNOInwUI1GzUBq6phmhgXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
4d:95:7a:68:89:08:6a:c7:38:4e:0e:a2:a8:f5:03:c8:57:3a:
fe:5b:24:34:f5:29:3b:38:39:e5:56:29:d5:cc:21:49:5a:ac:
e8:70:2e:35:9a:70:95:ad:ff:f1:ff:60:0a:72:bc:48:60:44:
e6:b2:ff:77:51:69:4e:c7:d1:f4:27:c3:3e:80:9c:a9:c9:a6:
12:0f:4f:8a:1d:5f:42:ca:1c:50:54:05:03:c6:65:65:e5:9a:
0d:b4:5d:28:fa:8c:5a:40:e7:69:ac:68:6a:07:5d:19:09:ea:
4b:39:b0:e7:ab:16:04:36:cd:85:61:c4:e6:de:ee:d2:a8:1e:
cf:0c:b8:b7:e3:04:56:03:f0:46:5d:84:2b:b7:ae:7a:85:db:
03:c7:99:30:8f:62:d8:e4:27:cf:d8:4f:6f:83:b9:87:41:57:
18:1b:bf:00:f6:21:ff:2c:07:15:05:8b:73:40:14:df:ad:48:
2b:b4:28:30:46:81:fb:02:ad:9a:cb:4d:44:8b:d6:51:83:b7:
fc:4d:be:7d:29:38:bb:64:fd:3d:cc:4d:0a:b1:8c:5e:4c:8e:
43:fe:8f:56:75:d8:86:3f:c7:10:22:1c:52:f9:46:b6:77:bd:
bc:f2:42:76:09:06:73:a7:7c:5e:f3:75:ce:79:66:f1:91:84:
d8:63:fc:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 05:02:28 2025 by rpki-client