Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ScWd1oS4VPfPRODRwro2LlgSom4.roa
File: ScWd1oS4VPfPRODRwro2LlgSom4.roa (raw, json)
Hash identifier: 0gbM0oxEphEWQhQaNEFBXQK13rikUW2ePPX3Dov1N98=
Subject key identifier: 49:C5:9D:D6:84:B8:54:F7:CF:44:E0:D1:C2:BA:36:2E:58:12:A2:6E
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01863015064D96AA218A13A640FCF44794A4
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ScWd1oS4VPfPRODRwro2LlgSom4.roa
Signing time: Wed 08 Feb 2023 08:12:09 +0000
ROA not before: Wed 08 Feb 2023 08:12:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:30:15:06:4d:96:aa:21:8a:13:a6:40:fc:f4:47:94:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 8 08:12:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=49c59dd684b854f7cf44e0d1c2ba362e5812a26e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:0d:84:06:80:a5:95:7f:ef:41:e6:29:f3:53:
59:71:c1:0d:68:0c:8c:26:b8:05:34:a6:5b:b3:e3:
0f:c4:be:d2:f7:45:1d:45:ac:f4:bb:12:b6:f2:3d:
8f:a4:c8:bf:8d:03:45:39:fc:ce:0d:1c:2c:e5:59:
f9:d4:09:d9:21:5b:6c:ed:10:4d:1a:ca:97:08:33:
d4:6e:62:1d:fe:96:a4:43:f2:b8:0a:43:18:2c:98:
fb:bc:10:42:7a:b6:ab:c7:46:4f:7f:03:33:e3:48:
28:8e:04:6c:0d:fe:94:3e:cb:f9:2c:ad:0c:77:46:
ed:ba:bc:3d:71:10:43:bc:68:a8:2f:a9:0a:24:4e:
f8:00:0c:96:85:62:44:f3:c5:5f:67:33:97:ef:6f:
12:c8:3a:bf:01:0d:70:2f:a1:ae:7e:d6:ce:85:75:
42:40:aa:4c:aa:7b:ab:57:6c:cd:4a:32:a6:34:31:
06:da:fb:c9:94:04:28:b9:ec:54:45:8f:a5:39:97:
72:02:96:28:96:52:34:6e:f4:d2:57:cd:43:ac:fc:
16:33:23:df:b6:7b:6f:0a:fa:6c:57:58:6b:ad:92:
c2:95:29:49:95:af:c7:73:11:04:20:76:87:b6:9c:
1f:6f:37:4d:81:b8:fb:34:1a:9a:ba:69:a5:a3:95:
af:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:C5:9D:D6:84:B8:54:F7:CF:44:E0:D1:C2:BA:36:2E:58:12:A2:6E
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ScWd1oS4VPfPRODRwro2LlgSom4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7d:bc:5a:c8:7c:1b:f3:a7:e6:9b:be:bb:f3:3f:25:9d:57:c9:
20:d9:bf:b9:de:bf:43:4e:72:6b:7a:46:ac:05:a0:94:be:c0:
c4:5d:4a:96:23:2b:be:af:4a:d1:ba:a8:5f:13:97:58:6b:2e:
24:d2:91:fa:9a:45:6f:29:30:8e:0e:b1:88:b8:62:80:b7:d9:
0c:06:c0:9a:b1:0e:1b:1b:aa:e4:54:2b:8c:e4:ac:20:bf:cf:
54:e1:1c:d9:fc:98:cc:07:19:d1:ae:ee:ad:de:7b:23:df:f7:
a9:4f:ca:48:41:9d:f8:9f:0f:bb:11:bc:80:a6:dd:80:3e:e3:
70:d9:2d:c9:89:b3:af:20:bf:5d:13:99:f9:bd:aa:54:c7:8b:
2d:85:e4:9c:e9:0e:96:4e:65:03:54:9f:c4:2e:51:87:46:07:
bf:c0:92:3e:93:9a:51:69:bc:74:33:3d:32:36:8e:00:19:70:
67:15:51:60:5c:b7:04:3e:c7:a5:32:d2:f2:f8:97:dd:5a:fa:
0d:40:79:8a:fc:d4:29:47:24:72:f3:4b:37:02:df:2a:38:89:
6e:30:28:3f:81:b9:fe:13:03:98:11:77:0d:83:80:b4:f0:b1:
37:fb:51:7a:7e:73:7e:02:b8:6a:e5:e1:c6:79:7c:85:c1:8e:
a4:4e:c3:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:36:28 2025 by rpki-client