Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/U9y4OmRJepfYXNb2QRvdCKpx0q4.roa
File: U9y4OmRJepfYXNb2QRvdCKpx0q4.roa (raw, json)
Hash identifier: ZMWQSN06Ks5c/qbMctooo97axXscvAGM55iFUZo2nDc=
Subject key identifier: 53:DC:B8:3A:64:49:7A:97:D8:5C:D6:F6:41:1B:DD:08:AA:71:D2:AE
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01889EC631B2AA9F784705079D7276413A5D
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/U9y4OmRJepfYXNb2QRvdCKpx0q4.roa
Signing time: Fri 09 Jun 2023 06:09:28 +0000
ROA not before: Fri 09 Jun 2023 06:09:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9e:c6:31:b2:aa:9f:78:47:05:07:9d:72:76:41:3a:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jun 9 06:09:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53dcb83a64497a97d85cd6f6411bdd08aa71d2ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:15:f9:15:c8:7f:24:7c:b0:e1:e0:a5:d7:7f:
ef:c0:d8:08:dd:d1:b3:98:bd:df:49:0f:34:0c:e8:
83:17:e3:81:be:bb:5f:bc:6c:28:e7:ce:a3:0a:89:
30:98:78:0c:f3:67:65:5b:56:55:fa:c7:af:4f:e2:
94:82:f5:88:d8:aa:89:ac:5f:16:39:76:20:d5:52:
da:de:a5:58:07:a6:76:4f:1a:5a:81:32:29:0f:6e:
e6:a9:18:75:85:67:84:2f:22:38:24:1c:4d:0a:7e:
00:13:6f:aa:99:1b:61:e1:e6:b2:f9:73:ae:2f:98:
f8:48:76:41:d8:0b:7a:0f:56:e5:83:4c:d4:dd:d7:
88:40:43:cc:48:71:3f:a5:e1:46:94:e9:e5:79:d3:
f5:45:f2:ea:a5:d0:ed:3f:73:88:d6:41:b0:57:d4:
b3:4c:d2:08:63:fb:de:d9:76:5f:12:c5:83:1c:af:
ad:6a:c0:66:17:6b:89:db:d5:5f:57:a4:bd:ee:08:
99:53:ba:71:89:da:56:0b:a8:09:3d:0a:5d:68:c1:
22:b7:0d:28:69:9f:93:36:08:ca:c1:04:a4:bc:d1:
0f:c3:03:5a:ae:c3:6c:89:e4:d8:77:21:0e:10:91:
ad:90:ff:7b:4e:7e:4e:68:67:e4:80:a7:ad:2f:ac:
cb:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:DC:B8:3A:64:49:7A:97:D8:5C:D6:F6:41:1B:DD:08:AA:71:D2:AE
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/U9y4OmRJepfYXNb2QRvdCKpx0q4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
58:b4:7d:64:e4:23:13:da:e1:7a:06:41:5d:05:b4:1e:09:97:
11:ed:4e:be:43:f1:e5:47:45:ad:5b:22:fc:4f:88:5b:eb:78:
9a:03:64:da:4b:63:e2:3a:b6:1a:b0:1d:ce:75:3e:7e:c5:c5:
4f:fd:83:6d:fc:ae:42:64:07:af:57:ca:b6:13:28:07:4e:16:
5b:92:ab:1e:58:2f:3b:f3:76:5b:19:82:16:82:49:93:c4:76:
99:3b:68:87:96:93:1d:6a:59:8e:7a:27:e9:77:ba:b3:d4:8a:
1f:0d:d5:b0:71:18:f4:01:f5:55:d5:51:fc:ff:bb:89:f8:46:
8e:6e:4d:33:87:10:61:7a:37:b0:72:d0:fb:10:f4:99:6d:16:
b7:15:34:59:47:5e:77:84:05:30:eb:78:2a:eb:b7:2a:0e:76:
a0:d5:d3:95:38:df:26:50:11:53:9a:c6:e6:7e:28:32:86:f0:
46:2b:a6:8d:72:c5:89:98:c6:09:3f:60:f2:26:a0:8d:3c:bc:
2a:76:56:16:6d:1d:01:9c:6e:73:6f:3d:60:d8:07:cb:4c:f1:
3f:a0:49:18:3c:c3:7b:46:2f:38:0d:82:9a:18:90:da:a2:1b:
ba:9f:ea:53:07:0b:9b:56:5f:04:8d:11:e2:bb:d8:ab:55:63:
5c:a6:01:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 19:49:40 2025 by rpki-client