Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/VwebRRUIZhrM-3f8blbsNl5hUH0.roa
File: VwebRRUIZhrM-3f8blbsNl5hUH0.roa (raw, json)
Hash identifier: 8IiivgKxjBEDfNtuP+LeblFyutMaQ7qnjJQ9tzivqPM=
Subject key identifier: 57:07:9B:45:15:08:66:1A:CC:FB:77:FC:6E:56:EC:36:5E:61:50:7D
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0189631FBF528B5856AFE2A9F51D042E081A
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/VwebRRUIZhrM-3f8blbsNl5hUH0.roa
Signing time: Mon 17 Jul 2023 09:12:52 +0000
ROA not before: Mon 17 Jul 2023 09:12:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:63:1f:bf:52:8b:58:56:af:e2:a9:f5:1d:04:2e:08:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 17 09:12:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=57079b451508661accfb77fc6e56ec365e61507d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ac:a7:19:77:a2:43:8c:d4:f8:7b:57:cf:cd:
d4:e8:26:74:05:42:e7:71:53:4f:e2:49:d9:46:9c:
21:9e:36:a4:6f:70:ce:ec:9a:d0:9f:4a:53:5d:8a:
75:56:b2:7e:2d:2a:f9:88:fd:de:72:29:ea:2d:fa:
6c:35:27:cc:86:16:9e:67:6f:59:27:26:b5:c5:85:
6c:1c:3e:45:c5:0e:37:ed:9a:ce:0b:2e:78:65:2d:
d5:67:aa:68:11:43:60:53:3b:30:43:fd:0f:7a:4b:
1d:b9:26:15:73:97:d6:30:a7:7e:7e:26:fe:6d:b8:
5a:d3:e5:cc:60:f5:c3:51:11:da:6d:0e:06:2b:88:
9e:30:a3:da:ca:c2:65:25:4b:f4:18:cf:b2:4e:e1:
b1:6f:b8:a9:3a:f8:18:3d:ae:9a:21:44:25:20:c1:
52:d2:b0:2d:4c:6a:a4:1c:ad:6c:53:2e:bd:6c:35:
8e:28:3f:b8:a9:c4:fd:9a:e1:33:fb:e9:bc:a3:5d:
65:1e:df:9c:05:b7:4e:6c:9d:28:ae:48:16:a5:43:
90:51:8c:8a:10:cb:a0:bc:aa:74:57:94:45:bf:58:
b8:31:4a:b0:24:14:d4:88:df:bc:b9:88:f4:a1:30:
80:ac:2f:18:39:5e:11:5e:a2:52:24:bf:39:59:75:
8d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:07:9B:45:15:08:66:1A:CC:FB:77:FC:6E:56:EC:36:5E:61:50:7D
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/VwebRRUIZhrM-3f8blbsNl5hUH0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
29:48:0d:68:35:98:28:ee:e5:88:d3:9b:6e:11:dc:30:34:26:
15:99:59:83:a5:9d:25:88:c5:d9:90:5a:37:4f:6a:b4:ba:a5:
60:0d:b4:81:e8:c6:ab:fa:b4:b1:89:04:cf:c9:df:e4:91:41:
2d:a3:86:e9:ab:20:d2:26:ce:07:9a:b9:13:17:f5:07:c4:be:
70:ef:3d:f9:ba:74:47:b6:ab:dc:c2:4e:65:99:e5:ff:ab:55:
44:92:2f:51:a5:3a:75:5f:cd:52:c6:d0:e4:58:ba:c2:3a:b6:
d3:d8:b6:d0:bd:5d:41:fb:06:f2:68:b6:a5:c1:98:b8:54:c3:
61:e2:15:98:5c:22:70:e4:68:cd:49:ce:32:6a:f4:ce:77:47:
73:d2:0c:3f:50:91:d1:e3:0e:4c:7d:e7:b2:6d:87:17:62:65:
c4:25:96:8c:96:5e:de:63:08:8f:14:53:c5:b7:e2:90:4a:df:
c2:13:d5:af:f9:12:0e:08:a8:d7:de:86:56:4c:ae:3a:fe:13:
a1:89:d1:ef:79:57:02:66:59:36:e2:43:6f:46:fe:4b:5c:87:
00:1f:bb:a9:85:c1:2e:0d:8a:91:88:9a:4f:01:c2:45:6c:83:
8f:43:94:18:36:80:af:c8:ac:53:c4:3f:b5:4b:2c:6f:40:88:
0a:75:02:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 21:25:19 2025 by rpki-client