Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/SkPBEeUu3oN7iizjizh7BbkO_1s.roa
File: SkPBEeUu3oN7iizjizh7BbkO_1s.roa (raw, json)
Hash identifier: g4RBYU0UsMPfgEQi+OHEsCo7yKk8MWHDbNcP+SduqvU=
Subject key identifier: 4A:43:C1:11:E5:2E:DE:83:7B:8A:2C:E3:8B:38:7B:05:B9:0E:FF:5B
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0187FF8E9EAD3868F3EE2C3E42C52DE710EC
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/SkPBEeUu3oN7iizjizh7BbkO_1s.roa
Signing time: Tue 09 May 2023 08:09:09 +0000
ROA not before: Tue 09 May 2023 08:09:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ff:8e:9e:ad:38:68:f3:ee:2c:3e:42:c5:2d:e7:10:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 9 08:09:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a43c111e52ede837b8a2ce38b387b05b90eff5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f0:10:40:69:b9:e1:0c:d2:d4:d5:16:80:d6:
64:29:e9:3f:82:fc:55:49:65:4e:83:c7:d3:6a:32:
29:96:c8:08:12:bb:fe:24:b2:a0:3b:a3:22:e6:31:
a3:25:9f:49:c9:4c:69:a5:e1:4a:b7:53:56:5d:9d:
59:62:af:d6:99:4e:a9:a6:46:4f:30:df:ee:b5:53:
0b:57:b6:e3:05:49:94:e0:00:06:ef:fd:48:0e:d0:
b4:74:0f:92:60:e5:b1:c7:d9:86:73:76:7a:4e:7d:
b4:88:4d:29:73:02:b5:87:48:df:b8:e9:11:cd:b9:
2d:e0:43:79:8e:e7:16:c1:b0:5d:02:1f:cd:60:b9:
10:3e:61:f5:1e:6a:97:c7:39:24:71:88:c3:43:20:
18:5f:75:e4:6b:f1:67:0b:09:3d:e7:09:6d:19:11:
60:da:c0:4a:98:2d:4f:b2:d3:d3:14:b3:d7:d7:de:
7d:cb:d6:b2:23:83:1f:17:67:84:47:c5:80:89:fa:
ec:ff:15:53:0e:cc:f8:68:15:24:c1:8d:a2:84:00:
7f:28:c4:6b:90:96:f8:a1:6a:56:05:e6:19:50:9b:
79:52:76:4c:73:4e:ec:b8:75:46:1f:d5:ff:89:aa:
bd:9e:56:53:83:a5:4c:66:f0:6c:ef:09:3e:cf:a4:
14:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:43:C1:11:E5:2E:DE:83:7B:8A:2C:E3:8B:38:7B:05:B9:0E:FF:5B
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/SkPBEeUu3oN7iizjizh7BbkO_1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
53:a1:31:61:74:0a:ea:0e:97:f1:4f:84:65:15:cf:41:00:bb:
29:44:85:6c:44:09:bf:43:f0:05:ca:e1:ae:88:85:6b:d1:e7:
22:b8:78:e8:90:8c:98:3b:cf:84:62:54:a4:b3:68:b4:72:44:
a9:ac:d6:a8:4c:30:43:6b:12:c8:e5:75:40:79:2c:6c:22:5b:
28:a6:81:53:f0:64:18:32:1e:d4:d8:9a:f1:43:69:79:d3:5b:
31:62:65:b5:ff:17:14:67:d2:33:d3:5f:9f:cd:87:d7:df:d5:
34:1f:cc:16:48:8b:8f:99:ee:de:a0:00:95:56:5e:6c:ca:c7:
d0:e2:d1:84:d0:89:6c:3a:c2:e7:13:77:9c:98:20:ed:4a:61:
65:0a:a6:e3:9e:5f:59:48:10:4f:6e:67:60:51:ed:ab:bc:50:
a6:a9:2d:aa:ea:3e:bf:67:dc:9a:7a:7a:55:91:6a:27:64:a4:
9a:54:63:0e:7d:67:34:21:98:e0:d1:ca:0b:95:f8:93:96:42:
a8:b0:94:dd:d6:7e:da:4a:1f:1f:f2:79:bb:0f:f7:38:fe:3b:
c1:13:7f:27:b3:e8:b9:22:b8:1a:ed:07:c4:36:fe:a9:f7:d9:
d6:a6:3a:0d:a0:07:ea:4a:9c:de:b2:6b:c0:8a:5d:48:01:ab:
12:b9:a0:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 19:01:47 2025 by rpki-client