Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/UauHCs85YfoW2QzEiw17HgStEX8.roa
File: UauHCs85YfoW2QzEiw17HgStEX8.roa (raw, json)
Hash identifier: /JC5CkE+63Aex2RHkGFdW+8rexIsBXw1ljwxx/ky+Zo=
Subject key identifier: 51:AB:87:0A:CF:39:61:FA:16:D9:0C:C4:8B:0D:7B:1E:04:AD:11:7F
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018847DFF4241AD4C68F7E3CAFD10E2A5343
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/UauHCs85YfoW2QzEiw17HgStEX8.roa
Signing time: Tue 23 May 2023 09:10:39 +0000
ROA not before: Tue 23 May 2023 09:10:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:47:df:f4:24:1a:d4:c6:8f:7e:3c:af:d1:0e:2a:53:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 23 09:10:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51ab870acf3961fa16d90cc48b0d7b1e04ad117f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:16:eb:8c:5a:d1:89:14:17:8b:13:97:a1:d1:
9e:ac:d9:ee:05:eb:4a:73:8c:89:1f:ce:48:5d:87:
3a:a9:43:09:50:f6:f0:92:01:74:42:a3:0c:1d:0c:
da:3f:12:ac:9c:3b:7b:18:19:aa:56:7b:bf:74:9d:
b6:b0:9b:c9:3b:13:9a:27:51:d6:87:6a:d3:6d:a7:
44:4b:83:63:d9:ce:9f:ef:a1:df:52:32:e9:5f:ef:
dc:24:a2:ae:1c:b0:ae:1f:cd:58:8e:2f:df:28:98:
47:be:41:9d:59:c4:a5:4e:4a:cd:03:bb:89:4e:7e:
1d:f9:69:c2:63:ae:bc:2a:d8:54:86:f4:c3:ca:08:
36:19:eb:dd:86:52:26:e8:7c:d2:69:02:ef:4d:70:
4b:59:3a:7f:ab:76:ec:21:27:40:f7:e2:b4:6f:fe:
32:f6:d6:79:89:cf:53:22:b0:6d:50:fe:54:5f:a0:
ce:51:2e:1e:22:b1:7c:4d:e5:aa:9f:31:ae:49:5a:
f8:d8:f8:98:0b:ac:26:e3:a0:c8:9b:21:43:37:fd:
08:10:6e:17:95:9d:0c:c7:65:92:76:34:01:4b:68:
e5:13:82:38:09:c9:c4:cd:86:64:50:fd:f4:d9:b1:
57:39:e0:dd:5f:89:db:7d:d2:ef:f5:2b:b0:93:61:
2c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:AB:87:0A:CF:39:61:FA:16:D9:0C:C4:8B:0D:7B:1E:04:AD:11:7F
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/UauHCs85YfoW2QzEiw17HgStEX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7a:60:3a:a9:fe:46:02:d1:dd:14:12:36:a2:38:59:25:78:08:
28:15:51:21:7f:c5:ed:50:3d:fd:7d:82:09:38:1b:12:b2:5c:
3b:a0:99:97:d9:18:20:d4:c4:cd:a1:1a:bc:0f:67:77:cb:8b:
ba:e6:77:95:66:cb:55:87:b5:7f:ad:ee:8b:35:48:43:f4:c0:
b2:d2:3c:e1:76:7d:55:96:9c:be:ca:5f:a7:7b:72:18:7b:ab:
ff:52:e5:93:39:e5:df:0a:39:68:16:3a:c2:db:a6:6f:13:07:
1e:5f:46:24:32:9a:a6:cc:8d:35:2e:68:4c:01:1b:18:be:5b:
26:31:04:8c:e8:81:9f:2b:4a:cd:13:6e:dc:d7:ec:f5:0a:41:
59:a0:4d:fc:76:35:19:74:5c:a1:70:e9:03:38:aa:f6:a7:2e:
ef:a9:b8:b0:b7:5c:35:dc:41:3b:50:78:ee:7e:52:70:ad:62:
16:f5:5a:12:a6:17:3c:f3:ed:bd:45:3b:90:ac:14:1d:f2:29:
0e:b5:3f:b3:b9:eb:c4:a3:fa:e2:dd:3d:e0:6f:da:a5:60:cc:
3e:97:d1:48:89:34:1f:f1:87:09:51:90:73:59:07:8f:ae:a4:
f3:b7:da:5a:e9:a1:f4:81:5b:d3:d4:e9:fe:d2:a6:04:dd:0a:
47:4b:be:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 02:09:18 2025 by rpki-client