Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/UzbCneahm4TgusmWsE46oicg1Vk.roa
File: UzbCneahm4TgusmWsE46oicg1Vk.roa (raw, json)
Hash identifier: BQ9YRfuuKpxtqRflD17IgZC4ABo1QcJvOTJx5YUDb3A=
Subject key identifier: 53:36:C2:9D:E6:A1:9B:84:E0:BA:C9:96:B0:4E:3A:A2:27:20:D5:59
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01869B9F72AAA2ECDD3229AC3951C81E9CEB
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/UzbCneahm4TgusmWsE46oicg1Vk.roa
Signing time: Wed 01 Mar 2023 05:22:43 +0000
ROA not before: Wed 01 Mar 2023 05:22:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9b:9f:72:aa:a2:ec:dd:32:29:ac:39:51:c8:1e:9c:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Mar 1 05:22:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5336c29de6a19b84e0bac996b04e3aa22720d559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b1:c2:ac:05:77:63:3e:37:f8:dc:22:31:17:
42:85:a9:51:98:16:92:79:32:0a:41:26:44:2d:8e:
28:21:01:35:d7:ae:a2:6b:ef:de:b4:d5:98:0f:b9:
c3:53:9c:24:59:e4:68:ef:c5:7a:81:0c:94:1e:05:
8d:e4:61:c9:e5:8a:ea:b9:1e:d2:62:7a:3c:c0:27:
17:ef:42:7f:ad:9a:5b:3a:da:b5:fd:5f:bc:24:a8:
17:c6:84:f1:8a:14:c2:6b:f7:41:52:a2:f8:42:7a:
f8:73:89:f0:83:0c:b2:cc:7f:83:b9:ee:74:87:80:
84:30:b5:4d:cc:c1:77:27:85:0b:ff:9b:21:5c:a3:
b8:54:e6:14:2a:e9:e5:2c:dc:96:92:49:de:66:85:
22:01:d3:eb:80:d5:f1:bc:24:3e:5f:2c:93:39:19:
84:e0:d0:41:23:68:84:9b:23:ad:44:85:7d:72:bf:
cf:ca:36:7e:9d:44:25:a3:73:27:15:0d:01:fa:ef:
4e:67:23:78:0b:f9:30:ec:d3:a0:e2:70:7e:af:bb:
d4:66:0a:11:61:b4:4b:2c:fe:32:6c:fc:52:bf:3d:
6a:33:1a:db:2f:d9:bd:42:63:a0:3d:4a:13:c5:4d:
6b:b6:fe:3a:d3:eb:11:f3:bf:77:c9:ce:b3:54:21:
33:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:36:C2:9D:E6:A1:9B:84:E0:BA:C9:96:B0:4E:3A:A2:27:20:D5:59
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/UzbCneahm4TgusmWsE46oicg1Vk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
23:0f:bb:de:01:a7:14:16:58:9a:14:f9:ba:63:ac:17:6f:d5:
9a:f4:b8:cf:63:b2:a6:ee:50:13:bc:97:bc:44:76:75:5d:b4:
27:23:0b:ee:c7:3e:99:5c:43:aa:36:15:d6:37:e0:08:d2:79:
c7:6b:23:46:23:1a:19:95:bd:bd:b5:53:76:4c:c1:d9:59:b2:
ee:e4:c2:54:05:36:cb:cb:87:73:4a:d5:d9:37:4e:02:d1:51:
5d:8c:ba:75:78:8d:79:a5:69:ed:2d:99:76:60:53:fb:27:26:
19:2d:e4:b3:da:91:9d:9a:93:3d:a7:e5:1f:66:37:9d:1c:08:
0e:32:d7:55:bb:37:37:78:fe:ae:2a:b6:78:a3:5e:54:c0:ec:
ea:c2:60:c5:52:86:63:92:df:03:7f:4d:8d:40:75:4f:62:c3:
25:b5:6f:4b:bf:38:b3:6a:2c:74:d0:a5:4b:03:49:aa:b3:4b:
f7:ac:04:8e:e3:e8:24:48:94:03:41:94:9e:5b:c3:33:60:db:
2e:1f:f3:a2:e4:17:9f:6d:4e:c4:f0:fd:08:6e:3c:c8:01:47:
dd:c6:1d:19:0d:b8:05:cb:8d:ba:c4:07:74:17:5a:55:56:57:
92:eb:6a:71:46:2c:93:03:39:8a:1f:be:35:69:41:11:24:09:
db:64:ba:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 11:37:46 2025 by rpki-client