Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/TPUswqpNoOAw73g-oUldOJLWBsY.roa
File: TPUswqpNoOAw73g-oUldOJLWBsY.roa (raw, json)
Hash identifier: HCpzy/FcOIPpV7byCCxV9dE+C8KApyDh8AWpSMhbHnA=
Subject key identifier: 4C:F5:2C:C2:AA:4D:A0:E0:30:EF:78:3E:A1:49:5D:38:92:D6:06:C6
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01878276E0B7B3694ACC8B5F4079B3DF5AAB
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/TPUswqpNoOAw73g-oUldOJLWBsY.roa
Signing time: Sat 15 Apr 2023 01:10:41 +0000
ROA not before: Sat 15 Apr 2023 01:10:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:82:76:e0:b7:b3:69:4a:cc:8b:5f:40:79:b3:df:5a:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 15 01:10:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4cf52cc2aa4da0e030ef783ea1495d3892d606c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:50:bd:8c:25:ae:50:92:23:2b:30:74:c3:88:
34:c6:fb:d4:18:92:f4:6d:8f:51:ef:f9:3f:1b:40:
73:19:7b:13:33:d0:36:49:9c:c3:c3:40:48:72:f0:
78:60:38:80:b2:58:d4:91:aa:68:30:a1:3e:cf:3c:
6f:2a:85:a1:2c:17:69:a9:e5:99:84:b8:e7:15:73:
1b:98:a1:57:67:6e:5c:ec:1e:c4:69:81:0f:b8:77:
62:bf:42:89:c5:b7:3a:73:b1:d7:8e:d7:10:a8:f1:
c7:94:6e:eb:56:f0:b0:c8:0e:ad:7e:de:c7:7e:f6:
be:6d:09:af:b0:c9:a9:62:91:92:69:a0:1f:0a:bc:
a5:74:10:68:27:dc:9f:9c:b7:a6:ab:8b:4a:63:54:
2e:39:9c:a4:86:97:e6:4c:77:cb:c7:05:7d:1b:29:
e0:e1:d1:13:7d:6e:cb:87:98:ad:f4:7c:ad:9a:4e:
7e:28:3c:24:5d:5e:40:bf:96:76:e4:fc:fe:40:fe:
62:d7:1a:80:5d:a4:7f:6a:8c:3b:92:56:0b:06:3d:
4f:e4:65:84:e2:6e:3e:81:4e:b0:bc:c3:34:50:e1:
1b:33:9b:0b:62:09:9c:5a:95:2c:d0:94:4e:ff:f7:
d8:02:6f:46:97:ae:5a:39:e0:50:d5:09:c9:c9:ab:
2b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:F5:2C:C2:AA:4D:A0:E0:30:EF:78:3E:A1:49:5D:38:92:D6:06:C6
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/TPUswqpNoOAw73g-oUldOJLWBsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
08:82:bf:10:b1:c9:bc:a4:ae:3a:45:72:60:3b:c6:6c:48:fd:
41:0a:50:f1:31:26:94:a4:82:fe:fd:e6:2c:e6:d4:39:4c:5f:
c6:f9:4a:9f:8a:71:be:b9:ae:a7:9e:41:8b:3f:fd:c4:a6:8d:
85:98:8e:3f:8c:71:c2:77:ee:2a:63:d1:b8:12:d8:97:18:84:
26:01:55:c4:6d:9c:b7:29:98:66:f7:c8:49:d3:50:7f:c9:d9:
b9:15:da:a7:a3:46:58:b5:3e:a3:b9:44:59:0a:3d:3d:a7:8c:
a1:26:ab:c6:15:6b:61:43:af:4d:f0:e3:6a:40:15:13:64:8f:
33:74:f8:0b:bd:b7:da:fb:15:82:2f:b4:0a:ca:b3:7d:eb:55:
d8:0d:9f:13:df:d4:3e:b0:07:86:1f:7c:2f:f2:6c:3f:29:89:
4d:92:37:36:dd:0c:a6:8f:5b:38:68:ec:45:a3:41:b7:1a:1e:
db:33:dd:d4:98:6b:6c:f9:18:17:c7:4c:a7:64:7c:45:78:9b:
ed:c6:75:08:0c:1f:4d:8c:a3:01:4d:9e:36:22:00:13:28:32:
b1:38:77:c6:02:87:29:87:6e:b0:d3:82:8a:ce:03:55:91:10:
1e:bb:14:de:ba:53:32:cc:d6:24:7a:98:4c:12:71:31:1e:63:
30:da:9e:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 21:06:54 2025 by rpki-client