Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Tnga1EmQmPj6fmGWbZN0rvfmhSo.roa
File: Tnga1EmQmPj6fmGWbZN0rvfmhSo.roa (raw, json)
Hash identifier: Bu2dcS37mfwIsyzCG+Oq4KUFO1UoH5d/vQ4aaDxowaI=
Subject key identifier: 4E:78:1A:D4:49:90:98:F8:FA:7E:61:96:6D:93:74:AE:F7:E6:85:2A
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01877D868906DAA91FDFFA63A4147C413A12
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Tnga1EmQmPj6fmGWbZN0rvfmhSo.roa
Signing time: Fri 14 Apr 2023 02:09:41 +0000
ROA not before: Fri 14 Apr 2023 02:09:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7d:86:89:06:da:a9:1f:df:fa:63:a4:14:7c:41:3a:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 14 02:09:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e781ad4499098f8fa7e61966d9374aef7e6852a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:08:26:9b:12:08:95:78:14:e4:0d:8f:25:ac:
51:d2:ff:c0:47:50:72:6e:81:e1:6b:b3:31:1c:5e:
cd:31:fa:2a:f5:3d:5d:3c:ae:63:e6:75:eb:8f:1a:
3d:be:b0:f8:a0:54:65:84:1a:7d:9f:4b:3c:3b:1c:
83:15:0a:6b:75:8a:1f:e2:8d:e1:c5:0a:ed:3e:e1:
cd:52:7d:fa:e5:c7:f4:39:fe:88:fe:34:30:64:4c:
b2:04:e7:8d:c2:3b:be:09:24:08:f2:30:82:fb:f4:
b1:b5:71:32:56:50:e0:54:70:e6:24:e3:89:5e:1e:
63:d9:22:c4:cb:79:a9:16:26:69:11:50:43:19:ba:
48:ff:0a:ea:2f:7e:3a:14:b9:1a:8d:08:d6:f4:f5:
3e:2a:bc:23:b1:74:3f:ee:56:d1:17:3c:cc:e7:49:
7a:c4:fb:de:e5:b4:13:58:24:2f:23:ba:ca:40:0e:
81:7a:6e:fa:17:c0:c2:7d:ff:3f:8d:aa:e5:e4:18:
3a:21:e5:f0:89:75:e8:32:72:4c:29:5e:51:d8:19:
85:05:00:7f:e8:22:1a:83:3b:4e:a8:92:db:b3:5e:
8b:d9:43:99:8b:e9:b3:da:d0:7a:05:c1:07:9c:af:
dd:4f:7c:27:c7:cf:a5:1d:58:63:5a:bc:6e:40:a2:
d2:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:78:1A:D4:49:90:98:F8:FA:7E:61:96:6D:93:74:AE:F7:E6:85:2A
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Tnga1EmQmPj6fmGWbZN0rvfmhSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
92:ab:7e:31:e0:df:d0:6a:66:6a:9a:31:bb:53:02:61:a3:d2:
ed:77:f6:76:7c:77:01:41:a4:ce:51:67:84:32:fd:8b:74:cb:
26:cd:59:7c:36:e1:6c:90:07:15:d2:42:ef:28:30:e4:7d:cb:
81:80:e7:7a:ef:00:66:95:13:fb:46:a0:34:da:59:d7:c3:b2:
ed:2e:62:bc:25:b8:9f:cd:67:d1:ea:0d:ea:36:84:77:4e:6d:
40:6e:73:00:e3:3c:b6:06:6a:5b:f6:6f:8a:21:25:5a:55:f7:
06:23:4e:42:d5:ab:aa:c2:45:ee:6c:62:9d:16:fb:e1:62:94:
c2:01:6d:21:68:80:91:38:ec:a6:f9:3e:56:99:9d:d9:75:9b:
f8:06:83:fe:c2:8a:28:3c:29:91:8b:53:82:62:ed:ba:7c:40:
31:96:60:6f:55:3a:e0:58:9f:db:cb:ba:23:31:5b:88:68:a8:
10:6a:79:72:28:c5:5c:88:27:d5:dc:74:83:82:68:5c:dd:75:
c4:bf:1c:f7:e9:97:89:c0:42:89:4c:19:ce:e1:bd:61:41:5f:
0f:70:4a:c6:10:ab:bc:21:5d:05:0f:cc:07:36:6a:8d:44:b6:
c1:40:82:03:92:e2:9f:07:97:12:18:67:15:c6:df:93:9e:4c:
cf:8a:bc:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:40:44 2025 by rpki-client