Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/TF8gzNPOxvdMtI0tOr4U9FB4Xno.roa
File: TF8gzNPOxvdMtI0tOr4U9FB4Xno.roa (raw, json)
Hash identifier: CvCYbcPCfZDzWf3im3BrjXFiHrRPrQpnaNkZQtLwA4U=
Subject key identifier: 4C:5F:20:CC:D3:CE:C6:F7:4C:B4:8D:2D:3A:BE:14:F4:50:78:5E:7A
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 69418B19
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/TF8gzNPOxvdMtI0tOr4U9FB4Xno.roa
Signing time: Wed 09 Feb 2022 23:08:33 +0000
ROA not before: Wed 09 Feb 2022 23:08:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:17e:d600:60b0/128 maxlen: 128
2001:67c:64:ffff:0:17e:d524:ead9/128 maxlen: 128
2001:67c:64:ffff:0:17e:d9a6:5e4a/128 maxlen: 128
2001:67c:64:ffff:0:17e:ddba:7b5e/128 maxlen: 128
2001:67c:64:ffff:0:17e:db26:e5c4/128 maxlen: 128
2001:67c:64:ffff:0:17e:dab9:26f6/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:17e:da82:41aa/128 maxlen: 128
2001:67c:64:ffff:0:17e:dd83:3b9e/128 maxlen: 128
2001:67c:64:ffff:0:17e:dcde:5809/128 maxlen: 128
2001:67c:64:ffff:0:17e:d938:ba2e/128 maxlen: 128
2001:67c:64:ffff:0:17e:d85c:d348/128 maxlen: 128
2001:67c:64:ffff:0:17e:daf0:4034/128 maxlen: 128
2001:67c:64:ffff:0:17e:dc02:dc22/128 maxlen: 128
2001:67c:64:ffff:0:17e:d592:92a4/128 maxlen: 128
2001:67c:64:ffff:0:17e:d7ee:e040/128 maxlen: 128
2001:67c:64:ffff:0:17e:d6a5:23ae/128 maxlen: 128
2001:67c:64:ffff:0:17e:d901:fecb/128 maxlen: 128
2001:67c:64:ffff:0:17e:d7b8:3101/128 maxlen: 128
2001:67c:64:ffff:0:17e:a0dd:2f5b/128 maxlen: 128
2001:67c:64:ffff:0:17e:d826:2565/128 maxlen: 128
2001:67c:64:ffff:0:17e:dc39:b603/128 maxlen: 128
2001:67c:64:ffff:0:17e:db5e:7e8/128 maxlen: 128
2001:67c:64:ffff:0:17e:d713:9aeb/128 maxlen: 128
2001:67c:64:ffff:0:17e:d55b:c264/128 maxlen: 128
2001:67c:64:ffff:0:17e:d66e:8559/128 maxlen: 128
2001:67c:64:ffff:0:17e:d96f:7a13/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1765903129 (0x69418b19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 9 23:08:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c5f20ccd3cec6f74cb48d2d3abe14f450785e7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fb:78:0a:35:b4:b8:6d:0e:d5:d5:14:f1:11:
41:ac:bf:9b:c4:03:06:5e:08:ba:c3:94:97:77:b9:
4e:93:4c:ed:58:c5:25:da:0e:c5:ea:2d:a9:15:f4:
04:f3:22:70:30:d9:57:bf:ab:fc:25:cb:0d:da:86:
79:89:4a:77:2a:78:3f:b4:85:eb:3b:05:16:e8:5d:
00:eb:71:63:6f:42:f5:2e:ee:60:2a:df:07:20:cc:
a7:cc:42:bc:d3:e1:95:90:ce:f9:8c:23:81:24:a6:
aa:4c:80:55:dc:4f:c1:46:0e:bb:80:e4:99:95:d6:
dc:03:b1:f9:d7:e1:3e:2e:e7:29:a2:6c:8b:44:eb:
44:fe:1d:32:9e:37:cd:95:cf:1a:d4:a8:9d:36:bd:
ad:a0:09:45:45:ef:2f:4d:2a:9a:17:32:dc:51:74:
6a:a7:6d:e6:f9:44:22:a3:69:60:ea:12:02:d1:e6:
fc:11:fe:8a:83:db:54:1c:5e:4f:89:dc:3f:ee:11:
a1:26:ce:e3:cd:3d:19:91:0d:30:33:af:74:79:17:
70:b0:5a:5b:87:a8:19:c9:1e:d1:19:87:27:cd:47:
56:9f:12:d0:ed:6b:29:51:a7:00:c1:53:59:b0:a8:
92:1c:45:0d:da:02:88:2e:d3:21:33:b1:46:b4:81:
9c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:5F:20:CC:D3:CE:C6:F7:4C:B4:8D:2D:3A:BE:14:F4:50:78:5E:7A
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/TF8gzNPOxvdMtI0tOr4U9FB4Xno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
86:36:4e:02:0e:29:b0:95:27:b3:43:28:1e:2c:bb:93:f7:1d:
2b:a4:a1:6c:4c:b6:75:1e:62:ce:a1:9b:0c:60:07:7b:69:f1:
30:61:8e:6c:ee:47:50:5a:51:32:32:3d:27:3c:71:37:67:cc:
76:31:6b:22:91:df:71:76:2e:ee:7c:b5:25:61:ab:d7:45:fa:
4e:61:e7:ec:50:27:cf:2c:b6:92:1c:17:6d:be:29:a6:bf:9c:
36:c1:e9:78:cc:12:67:b7:0d:50:5a:9a:6f:3c:82:b1:db:d8:
8f:d7:da:32:61:6f:57:54:2f:1e:8a:9d:d7:f9:f2:1f:c1:78:
1d:c5:37:70:25:81:04:35:46:c2:9e:2a:53:5f:19:ff:cf:22:
0b:8c:d0:b2:d4:08:26:c7:41:84:5d:93:6e:31:e4:8f:26:a2:
c1:fe:8f:17:7d:f6:9b:a2:47:3a:09:f6:b9:7b:d8:1f:94:b8:
66:16:39:6e:62:fd:66:b2:29:e8:38:a9:cf:ff:b9:2c:db:e4:
e1:2b:5f:6f:f2:3a:45:2a:84:ae:5a:b5:17:55:5d:21:b9:4a:
ad:3e:a0:60:a7:96:0b:20:d9:64:e5:00:77:4a:a8:1c:69:69:
73:17:b4:b7:76:9a:f4:13:f1:69:d2:dd:4b:e9:26:cc:47:78:
b5:6a:10:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 07:46:06 2025 by rpki-client