Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/SJHNUYSmPXRiCbAX32j3OSnJ_Wo.roa
File: SJHNUYSmPXRiCbAX32j3OSnJ_Wo.roa (raw, json)
Hash identifier: ZMKwl/e6A9VLb1QneyWZkOJn5QS7ffneMNpsE999kG0=
Subject key identifier: 48:91:CD:51:84:A6:3D:74:62:09:B0:17:DF:68:F7:39:29:C9:FD:6A
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 9188062A
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/SJHNUYSmPXRiCbAX32j3OSnJ_Wo.roa
Signing time: Fri 01 Jul 2022 18:10:25 +0000
ROA not before: Fri 01 Jul 2022 18:10:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2441610794 (0x9188062a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 1 18:10:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4891cd5184a63d746209b017df68f73929c9fd6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:e8:b7:53:82:42:80:4f:06:4c:55:f7:0a:b6:
3e:fa:85:3e:00:d4:b7:02:22:88:90:23:e0:8e:e4:
d2:09:ac:b7:6b:e6:f8:28:53:d6:8d:a7:3a:48:86:
59:29:66:e0:d2:c1:ea:5b:72:cb:c0:f6:b6:45:22:
c0:29:96:63:d8:3c:3d:32:e3:f0:e2:58:b5:e1:30:
da:c4:f6:5f:11:41:52:ba:a8:f7:dd:fd:43:1b:2f:
f3:2f:f6:c1:08:da:ca:0f:e4:6f:a0:04:f6:55:a1:
9b:d3:4c:21:9d:f3:00:69:10:9a:33:3a:19:33:40:
58:25:7d:76:7a:e2:2f:2c:f3:b4:82:a1:4d:48:9a:
69:0f:cc:1e:f4:7d:4d:3a:a7:36:6d:eb:bc:78:ec:
88:5c:c6:6b:10:3d:69:4d:82:94:93:28:45:29:87:
cc:c2:ff:35:0a:d7:38:53:d7:6e:9d:89:5c:68:4b:
16:3e:22:e9:21:8d:d8:e3:39:ee:28:63:9d:f9:13:
ae:19:0f:93:d5:03:be:fd:17:3f:8b:10:6d:ea:2f:
48:fd:59:74:f5:96:ff:47:5a:69:7f:55:8a:41:d6:
c1:6f:0e:39:cc:8d:0b:55:97:fe:70:99:77:6f:9d:
0e:84:f7:ee:29:7d:ba:ee:af:ee:6e:6c:b9:ac:0d:
44:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:91:CD:51:84:A6:3D:74:62:09:B0:17:DF:68:F7:39:29:C9:FD:6A
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/SJHNUYSmPXRiCbAX32j3OSnJ_Wo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
99:a2:5d:bc:0d:23:f7:cd:e6:8b:8f:50:4d:f0:83:10:03:bf:
d9:a4:a0:7c:f1:59:1c:81:fc:c0:56:43:6f:11:f9:a2:0e:8c:
8a:da:e3:ef:9b:9b:ed:14:7b:72:2a:bb:c9:c9:09:c0:6d:7a:
cd:bf:a4:3f:e0:08:70:52:b8:af:f8:d0:ce:fc:1c:60:e4:ba:
8a:ec:6e:eb:bc:f8:6c:76:3d:0e:62:21:f4:ff:6f:13:4c:ce:
08:07:0b:8b:83:a5:5e:cd:02:74:cd:18:ca:6f:db:6b:49:4c:
5a:5c:79:cc:fd:4e:97:4e:27:ef:39:3a:df:66:68:5c:24:1d:
5c:15:4e:9e:13:73:a8:56:7d:ff:b3:bf:32:72:d8:ee:65:1a:
ef:47:62:b2:c0:ea:2d:24:66:a7:ff:c8:76:a4:8f:33:48:7f:
9c:9d:44:71:ae:a9:d4:27:b1:cd:78:a9:1c:5b:e9:0a:ea:9a:
fa:62:0a:8e:90:1a:0f:0d:86:bf:c8:a6:0f:b3:3c:c2:50:b9:
1b:1a:66:c5:0e:af:37:42:13:72:e0:c5:a4:5d:24:5c:f9:91:
8f:95:b3:d3:9d:a3:69:26:29:92:12:7c:44:d0:1b:f5:5e:64:
03:9a:d6:38:ea:26:cd:d4:f7:bf:c4:a7:6c:ff:0c:f7:43:ed:
22:08:3c:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 18:45:32 2025 by rpki-client