Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/U2Z6czny4tCydD8JEeyQsJf18W8.roa
File: U2Z6czny4tCydD8JEeyQsJf18W8.roa (raw, json)
Hash identifier: cPO1/Zosu2bBtkxpdNCSbyWyRTxjIrIIC8HT5C2BPes=
Subject key identifier: 53:66:7A:73:39:F2:E2:D0:B2:74:3F:09:11:EC:90:B0:97:F5:F1:6F
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0184F13B362DDB5C7CF26166A2C0985E46C4
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/U2Z6czny4tCydD8JEeyQsJf18W8.roa
Signing time: Thu 08 Dec 2022 10:15:00 +0000
ROA not before: Thu 08 Dec 2022 10:15:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:3b:36:2d:db:5c:7c:f2:61:66:a2:c0:98:5e:46:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Dec 8 10:15:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53667a7339f2e2d0b2743f0911ec90b097f5f16f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d7:28:15:dc:54:d9:2b:8b:dc:2e:db:3d:8a:
59:2b:28:41:2e:a5:bf:43:f9:20:ad:15:7f:c6:c4:
c5:1e:d5:48:b1:d1:25:ab:62:59:0f:51:d8:a8:42:
36:a2:2e:1f:e3:e4:ab:2e:8b:f1:ec:a8:9f:93:b7:
3c:e1:92:b1:70:23:62:56:0d:4a:aa:f9:e6:8b:b1:
07:1e:47:06:b5:01:d8:9a:64:d1:1f:9a:60:27:03:
19:56:19:59:27:6a:f4:d6:fd:07:23:ea:12:90:20:
ed:79:c9:3f:76:97:ff:ed:78:11:92:99:81:ef:50:
5b:f6:11:29:b8:fd:54:f4:dc:dc:3a:47:f4:79:eb:
d2:16:1b:31:a3:71:e0:49:dd:ae:fd:48:41:0e:f8:
c5:c2:48:28:1e:29:a2:83:da:23:6f:a3:78:6a:43:
0e:7b:ba:c3:4a:41:d8:47:e2:88:86:a3:59:c5:0c:
61:7a:b4:10:2e:7a:fb:9b:fd:95:12:87:4b:ab:f8:
ad:95:fe:ed:e5:9a:2d:c2:d2:df:04:69:de:97:53:
a4:fd:04:43:72:e6:6a:c7:67:75:e5:30:90:fb:98:
a3:65:f3:f6:88:ff:7e:39:9d:a3:4f:06:79:fe:76:
18:81:8a:cc:a1:de:9f:34:17:70:a7:1c:5f:07:ee:
ea:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:66:7A:73:39:F2:E2:D0:B2:74:3F:09:11:EC:90:B0:97:F5:F1:6F
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/U2Z6czny4tCydD8JEeyQsJf18W8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
51:3f:23:1d:1e:07:f4:ae:2f:58:60:c8:98:51:fd:ee:68:37:
c1:da:8c:78:96:ce:99:66:66:09:8b:6b:f2:98:81:03:fd:02:
87:6c:9d:13:ce:f8:25:ac:66:87:a8:e6:5a:c9:8e:d2:84:02:
9f:bf:ec:cf:61:6c:47:28:e1:6d:12:b1:21:09:98:46:22:7a:
83:a6:81:df:50:09:f8:c9:6a:10:1f:6d:48:38:bd:06:95:df:
b4:3d:84:13:83:43:63:b3:0f:5e:ad:5a:a5:69:13:74:d7:fa:
c1:7b:f3:48:65:6f:50:ca:d6:ce:ad:5d:ed:94:2c:de:6e:a0:
7a:6d:e6:c4:6e:a3:92:4a:b8:be:0c:e0:89:08:11:f9:e7:a6:
90:47:d5:70:e1:84:41:ee:23:11:b1:32:54:85:2d:c9:8f:36:
93:89:99:31:6d:25:70:b2:8c:17:65:0b:61:bf:a5:03:9b:6a:
d7:e6:a1:56:8c:e6:3a:45:fe:00:d2:9c:b5:d6:47:5f:76:df:
c1:00:61:f4:d9:ea:46:cf:32:2b:af:fd:2f:6b:d0:52:52:37:
bb:71:c8:1d:7e:a6:25:3c:39:17:18:15:40:de:85:83:63:5d:
3f:2d:5a:98:15:2d:f9:fb:bb:5a:40:4e:61:63:cb:95:50:04:
e9:b2:5f:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 18:38:46 2025 by rpki-client