Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/UzIrby2xhYwMKzvIDmFXR_tvwCc.roa
File: UzIrby2xhYwMKzvIDmFXR_tvwCc.roa (raw, json)
Hash identifier: w2cP9nd4kVbM6cdv5zlnC8jk3kpB8YKUJoCTigXMApg=
Subject key identifier: 53:32:2B:6F:2D:B1:85:8C:0C:2B:3B:C8:0E:61:57:47:FB:6F:C0:27
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0189D27E499703808BDBB0C735CDAF9EEB11
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/UzIrby2xhYwMKzvIDmFXR_tvwCc.roa
Signing time: Tue 08 Aug 2023 00:13:58 +0000
ROA not before: Tue 08 Aug 2023 00:13:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:189:a0e4:5c7d/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d2:7e:49:97:03:80:8b:db:b0:c7:35:cd:af:9e:eb:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 8 00:13:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53322b6f2db1858c0c2b3bc80e615747fb6fc027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:55:84:3e:42:b2:da:60:33:a8:ee:70:a7:dc:
59:e6:1b:ae:ae:f7:a7:85:13:86:e6:90:90:96:31:
fb:15:e1:b4:0d:b7:e2:98:68:46:fe:00:77:30:4d:
80:e8:be:9b:9e:b2:8c:c6:5f:46:68:8d:c4:ba:07:
8e:e4:34:5c:17:d5:c6:f0:0c:bc:11:54:1c:91:15:
3d:ac:55:0b:39:d8:0f:46:9b:23:f5:55:e2:fd:a9:
ef:79:67:d0:bd:9c:d4:2b:f5:a8:cb:7b:97:56:f0:
f4:27:74:87:03:1d:66:f7:b6:25:62:77:f1:8f:6a:
b1:d4:8b:6b:22:58:2a:ef:a8:a5:1a:42:5a:40:b3:
0d:6b:71:60:07:41:5a:89:23:04:00:c5:57:ee:63:
0f:d6:bf:da:19:3b:51:04:dc:fc:3b:c0:ed:ee:9c:
c3:1c:0d:26:0b:55:0d:ba:94:97:37:26:a7:51:12:
50:60:fc:2c:20:f3:56:b4:50:48:d6:52:c5:7f:73:
08:4c:83:ed:a5:9d:a0:ff:6e:51:e9:82:98:e9:45:
0b:89:8c:cd:18:1a:35:31:b5:08:c8:19:93:5e:6b:
f9:fc:e8:3e:7b:79:e9:ee:a1:39:fe:b6:21:19:07:
17:d8:fa:61:d2:75:55:f6:01:3c:af:1a:ae:b7:80:
81:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:32:2B:6F:2D:B1:85:8C:0C:2B:3B:C8:0E:61:57:47:FB:6F:C0:27
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/UzIrby2xhYwMKzvIDmFXR_tvwCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
26:b8:71:aa:e5:1d:05:9e:b0:97:12:3b:61:8d:87:24:89:76:
48:ff:5d:4f:42:af:ff:ff:e7:1e:ff:3e:76:2b:43:e6:05:8d:
e1:6b:c1:3b:29:38:b0:8c:b1:f8:11:9a:71:1e:d5:85:b0:0d:
d7:d2:7b:6b:27:5b:8f:c7:f1:63:b5:2e:12:8b:e2:99:e5:f8:
ee:9b:8b:12:f0:a7:23:dd:af:cd:e8:7a:97:a4:d2:63:eb:93:
89:c0:ae:20:d7:b7:7c:c0:e4:3c:7f:71:3c:80:57:59:a5:60:
da:f1:b0:8d:1d:ba:6c:3c:09:c8:98:be:0b:17:70:14:d7:c6:
52:05:ed:7a:b6:39:9d:64:aa:cf:d8:a1:6b:8e:cf:16:05:01:
2e:1b:e9:cc:53:2e:2a:ca:1f:b6:da:58:17:29:a9:6c:ec:51:
55:ce:7c:a0:9f:6e:b1:7a:3a:8d:a8:9d:9f:2e:4c:e4:c6:49:
e1:f0:e7:01:2e:84:46:b2:08:95:d0:57:a3:65:da:ca:d7:51:
12:ac:d5:99:11:85:e7:a1:99:6f:05:1a:98:cb:b4:bf:5b:3b:
21:d3:91:2a:60:24:4e:9d:7d:dc:69:27:4a:12:f0:7e:53:c7:
87:46:e3:68:8a:b0:cd:74:10:de:37:1e:07:17:64:4b:32:93:
48:a6:9e:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 02:15:02 2025 by rpki-client