Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/U-WFqHeYZA3BhdgVRi5hre0o8uM.roa
File: U-WFqHeYZA3BhdgVRi5hre0o8uM.roa (raw, json)
Hash identifier: ffn7FRkjZK0p7qYc4zAiTOOJli2Bwz5jlw8CPV+weLE=
Subject key identifier: 53:E5:85:A8:77:98:64:0D:C1:85:D8:15:46:2E:61:AD:ED:28:F2:E3
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0186E26668050972282408265E43380311DB
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/U-WFqHeYZA3BhdgVRi5hre0o8uM.roa
Signing time: Tue 14 Mar 2023 23:13:27 +0000
ROA not before: Tue 14 Mar 2023 23:13:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e2:66:68:05:09:72:28:24:08:26:5e:43:38:03:11:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Mar 14 23:13:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53e585a87798640dc185d815462e61aded28f2e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:86:8c:62:3c:4c:8f:55:9f:7b:92:9f:a1:21:
53:b7:98:c5:2b:85:ab:81:4f:96:92:7f:35:6d:0b:
4f:fd:c9:95:62:89:b4:cb:85:6b:8a:ea:f1:bd:5d:
d1:c1:b1:8b:ef:8c:4d:6f:9c:9a:79:f0:38:d5:38:
5d:ef:2e:ee:5e:0b:da:ad:0b:52:fb:0e:6d:10:4e:
6d:6d:eb:2e:5e:e3:56:2e:c5:5a:c6:e7:53:a8:ef:
5a:d7:0e:f1:11:71:60:98:55:2d:86:85:72:6a:49:
31:16:95:c4:da:58:d6:48:e7:1b:d5:4a:b0:37:32:
3d:da:97:70:e3:15:ef:9c:70:68:ea:73:35:08:f4:
3f:07:3c:6f:85:19:9c:33:27:ea:f8:df:04:74:6b:
5f:3a:23:71:d4:44:a4:ac:e5:14:f8:e8:e5:d4:16:
3f:f1:d6:3c:61:39:16:81:32:2f:52:9b:5d:83:dc:
c0:22:28:8f:eb:a1:b4:de:fa:30:84:63:b6:5f:7d:
62:0a:e1:a0:d3:f8:02:84:51:01:40:81:79:1f:aa:
59:b6:19:3f:da:04:aa:4d:5c:33:ea:c8:be:01:4f:
d0:bd:0f:77:42:ab:c9:00:12:07:f1:4f:fa:99:8c:
7d:18:93:4b:da:f2:6b:9c:eb:53:2f:bc:f8:54:4b:
31:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:E5:85:A8:77:98:64:0D:C1:85:D8:15:46:2E:61:AD:ED:28:F2:E3
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/U-WFqHeYZA3BhdgVRi5hre0o8uM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
74:aa:85:95:7c:65:9e:d0:10:c2:43:14:cc:27:b0:3f:99:9b:
6a:15:3b:10:82:09:30:2b:71:e4:d7:03:e1:86:60:ec:7b:f1:
d4:2d:e4:4b:9b:17:b9:9a:cf:06:13:03:49:f3:4f:03:e9:44:
ce:50:2b:1f:49:b7:cd:55:7b:10:6d:6e:b0:c7:5c:b8:a4:08:
0e:91:28:1e:d0:35:7f:6d:bc:1a:9d:89:9c:30:7d:7a:89:ea:
f5:40:07:2c:b6:d7:57:cb:ee:33:b7:d9:4b:89:29:2b:82:0e:
3a:a3:fe:a8:ab:95:e9:c8:4d:c1:d5:43:16:3a:f6:9f:d1:c8:
1c:28:c4:6c:41:22:ae:f8:69:5f:69:97:fc:c7:88:54:ea:98:
e1:a4:8d:fa:09:84:3a:5b:f1:2f:e7:49:9e:ec:9f:67:11:fc:
6c:87:85:98:6b:e8:9f:0c:36:c6:e7:45:56:c8:9f:bb:b0:ad:
28:a8:4d:f9:5a:6a:89:4f:b8:52:9e:26:99:49:f8:73:9c:e5:
86:8d:09:86:a6:07:eb:9e:70:c3:15:1c:b5:e2:41:d7:8a:bc:
f1:e3:7b:3b:31:29:94:d6:11:96:8b:f9:cc:d8:ed:b9:63:2e:
b7:14:f5:54:a7:a8:bd:2e:6e:15:3e:e3:41:8e:53:bc:07:d2:
01:23:67:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 15:33:39 2025 by rpki-client