Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/S_mXbNhsY2MU9At3NQ4DcQice8A.roa
File: S_mXbNhsY2MU9At3NQ4DcQice8A.roa (raw, json)
Hash identifier: YAflKpezbJdv5B03nFO0QpJmqXbZoAOPX0vPZ3FO3Lc=
Subject key identifier: 4B:F9:97:6C:D8:6C:63:63:14:F4:0B:77:35:0E:03:71:08:9C:7B:C0
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 77728B7F
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/S_mXbNhsY2MU9At3NQ4DcQice8A.roa
Signing time: Fri 01 Apr 2022 08:10:34 +0000
ROA not before: Fri 01 Apr 2022 08:10:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2003995519 (0x77728b7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 1 08:10:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bf9976cd86c636314f40b77350e0371089c7bc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d2:33:d7:40:c0:8d:d0:eb:ee:e0:b9:72:c5:
dc:5b:3d:29:6c:58:9d:8a:ab:a6:6d:3f:ab:9d:87:
70:e8:49:6e:a0:a8:a2:56:2f:fa:90:ac:56:d7:ac:
38:40:01:ad:7c:28:97:c1:f5:ce:55:17:83:b9:9e:
5f:50:eb:75:b2:9f:6b:ac:3a:3c:47:ce:dd:bb:62:
85:2e:fc:a1:fb:30:fb:54:1c:1f:15:be:42:7f:6f:
92:e8:6d:2e:82:59:e7:63:f0:82:a7:73:e9:d3:b1:
17:2d:5a:a3:ae:9f:0d:d7:76:ba:51:f7:f5:21:85:
0a:0f:c4:da:0f:2f:2c:7c:f6:3f:e6:d3:0e:36:9a:
21:00:1b:a8:0a:d1:00:6f:eb:5e:02:6e:ea:14:34:
b0:88:8c:c7:3e:f5:65:e2:f6:f2:87:ae:94:10:53:
33:f3:a0:ae:5c:4a:f9:68:aa:bf:40:bb:02:26:89:
5e:87:24:c6:d7:e3:33:5a:9b:a3:ef:c5:08:44:80:
a7:a6:f6:c5:8b:14:e7:03:e0:63:04:54:3e:8e:df:
b6:f8:30:c5:a8:85:9b:bf:d2:31:ce:b9:f9:7c:93:
f4:8e:be:80:52:a6:80:bb:46:67:64:f9:e3:6c:3c:
4d:3b:a1:e8:e0:d2:dd:75:08:32:4f:17:ba:84:23:
94:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:F9:97:6C:D8:6C:63:63:14:F4:0B:77:35:0E:03:71:08:9C:7B:C0
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/S_mXbNhsY2MU9At3NQ4DcQice8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
83:52:5c:25:54:71:c0:47:da:0c:08:58:3b:d3:55:7e:65:fe:
a8:4b:13:8a:6e:78:2a:1f:0b:6b:29:02:d3:5d:7f:d1:46:a6:
07:b6:8a:49:e8:7f:1d:e5:6b:b1:53:df:89:58:6f:1b:56:89:
c9:d5:59:0b:33:50:e7:35:f5:98:ee:da:d4:dd:9c:7a:48:bb:
02:c4:97:c3:6f:54:43:ed:7e:b2:9f:37:25:00:c5:ea:94:03:
3d:f1:c0:56:e8:af:81:ae:21:ac:7a:fb:05:47:05:96:14:a7:
c9:15:56:48:16:bf:21:ce:66:f8:56:70:c5:33:5e:ab:69:2d:
ff:59:91:81:84:57:4e:4c:85:ba:b2:92:9e:a2:2f:9e:55:77:
35:0e:59:bc:6e:a0:a8:e0:8a:b7:14:96:7a:5f:cc:65:81:7d:
f4:d6:0d:6e:26:16:a7:90:82:56:01:3e:98:d3:5f:d6:43:b2:
a8:35:80:aa:1d:28:c5:4d:e4:49:e5:cc:91:61:e1:38:d8:0c:
6b:24:a1:b7:91:db:b3:3c:ae:e7:c2:61:d7:61:76:bd:10:3e:
e0:16:74:0c:07:08:66:05:bb:25:3c:8b:fd:75:eb:a7:8a:6c:
a1:36:97:b3:57:f1:97:1a:6c:07:c6:68:c0:29:35:9f:90:e5:
89:2b:ac:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 18:46:17 2025 by rpki-client