Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/UwFNcRYwiHzIY7bmcm7672T6TsI.roa
File: UwFNcRYwiHzIY7bmcm7672T6TsI.roa (raw, json)
Hash identifier: bFaYE+mUQqxWqxtm9jiQnNg9mSta33w+B79YVWdtAk8=
Subject key identifier: 53:01:4D:71:16:30:88:7C:C8:63:B6:E6:72:6E:FA:EF:64:FA:4E:C2
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 7D37EF2C
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/UwFNcRYwiHzIY7bmcm7672T6TsI.roa
Signing time: Thu 21 Apr 2022 10:22:55 +0000
ROA not before: Thu 21 Apr 2022 10:22:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:180:466e:42dd/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:180:457:1e3f/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2100817708 (0x7d37ef2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 21 10:22:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53014d711630887cc863b6e6726efaef64fa4ec2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:4c:2d:a5:52:c0:3a:3d:2c:b6:87:ef:92:dc:
68:e2:cb:0a:44:96:21:c8:8f:04:cb:18:4b:f3:98:
e1:a2:ee:66:9a:45:5b:34:40:30:2c:4c:a7:12:5c:
37:c9:e2:c0:74:a2:70:ec:6b:71:c9:b6:ba:40:ce:
20:47:62:c1:f7:64:1a:d2:19:8f:7a:0b:5c:7e:3d:
d9:00:c7:59:94:1d:30:81:1b:4c:4c:1b:9e:31:9a:
fc:d4:5a:fe:2a:2d:cf:9c:67:cb:ec:09:14:b3:01:
1f:3b:5f:ec:9d:07:e3:e4:98:39:ea:3b:e7:43:24:
e1:2c:78:a7:65:ef:ab:89:5e:05:b0:f5:24:8d:4d:
f9:e6:3d:6a:5d:63:ff:e4:ac:0d:29:97:a7:a8:4f:
49:fc:af:6c:b1:dc:72:b2:01:ef:c3:a2:56:c3:3a:
f6:19:af:64:26:41:2f:bb:5d:16:b3:26:9e:0f:ce:
cd:42:99:3f:95:3c:6f:42:93:52:5c:34:62:06:0e:
20:92:ad:3a:d9:c4:62:06:a8:19:73:05:81:71:ef:
30:57:a1:df:80:de:bd:44:d7:16:e1:db:0b:3e:02:
82:b3:22:a2:6a:ac:74:d4:ce:70:6f:14:25:f7:ff:
78:2a:8b:32:af:c3:fe:8a:84:e5:60:b3:97:c5:4b:
0f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:01:4D:71:16:30:88:7C:C8:63:B6:E6:72:6E:FA:EF:64:FA:4E:C2
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/UwFNcRYwiHzIY7bmcm7672T6TsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
59:a2:fc:03:85:8f:e0:f6:67:bb:5e:81:7e:89:4f:f9:fb:6e:
20:7c:bd:c3:3e:dc:33:25:1f:d3:d9:97:3c:54:d1:3f:f5:63:
a2:5b:06:a2:c7:10:33:a0:da:d2:59:20:6f:1b:01:4f:76:53:
9e:c0:5c:81:5d:15:9e:1a:ad:d1:9a:aa:df:6a:82:eb:68:68:
11:e3:50:ee:a9:0a:b3:59:fe:e2:9b:24:c3:9d:8d:6a:d2:71:
61:7a:13:1e:0e:4a:ec:d3:30:0f:36:a1:a5:8d:6c:02:30:dd:
f0:e6:4e:0b:8f:1f:5d:6f:93:0b:8a:39:b3:12:d6:e5:f2:ac:
b1:ba:f3:4b:ce:84:75:94:1e:57:2c:9c:a6:44:ff:31:4e:00:
7b:0d:28:9b:23:06:b6:a8:9e:42:ea:31:37:75:93:c1:4a:29:
ea:72:58:9f:e2:2b:75:da:f8:d6:38:fc:ce:ca:93:16:1e:15:
b3:c0:4e:c9:9d:2f:ff:0f:a8:09:0b:44:49:6b:02:cc:9c:58:
15:1c:7a:05:da:b3:0b:71:e3:eb:25:3f:1c:be:fe:50:1c:1c:
7e:d7:63:7c:e8:c2:7e:b5:16:97:a4:18:ce:ce:61:8d:9b:30:
94:b9:ce:39:16:f8:7e:42:d0:9e:84:62:61:cf:9b:b8:c9:7d:
33:c3:20:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 11:14:39 2025 by rpki-client