Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/WM8xJf2L6ZaOIih6_pAvqKW8AcM.roa
File: WM8xJf2L6ZaOIih6_pAvqKW8AcM.roa (raw, json)
Hash identifier: bVnSkfP3dXnfXBgXg8aougHD2+Du+kEkwpY/qBtT/hU=
Subject key identifier: 58:CF:31:25:FD:8B:E9:96:8E:22:28:7A:FE:90:2F:A8:A5:BC:01:C3
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0187E1F501D8D98CE77F143E981063D18D52
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/WM8xJf2L6ZaOIih6_pAvqKW8AcM.roa
Signing time: Wed 03 May 2023 14:12:23 +0000
ROA not before: Wed 03 May 2023 14:12:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e1:f5:01:d8:d9:8c:e7:7f:14:3e:98:10:63:d1:8d:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 3 14:12:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58cf3125fd8be9968e22287afe902fa8a5bc01c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ee:ff:e1:ee:77:17:e6:4c:d2:ba:7b:b9:c6:
c5:1d:7c:44:21:9c:67:49:70:6b:37:af:98:95:b8:
22:14:2b:bc:a2:ff:58:20:e1:f9:74:e8:d2:67:6c:
7d:06:e3:ed:d4:7e:a0:08:44:5e:c0:2e:f7:7e:58:
fe:f0:cd:8e:40:ce:5e:05:98:e5:49:20:38:22:87:
a0:d6:dd:79:70:c3:de:ef:45:df:c3:be:46:16:eb:
6f:87:e4:ab:6e:5a:97:61:be:52:4a:6c:b6:d1:d2:
48:60:75:37:72:21:f9:8d:4f:f1:5b:0e:03:50:1e:
23:2b:1d:cd:00:83:e2:d5:ee:fe:0e:54:d9:60:c1:
87:9d:73:fd:84:3f:f9:8e:30:31:51:07:73:8f:01:
3f:3e:3e:61:41:cc:5a:fc:27:21:3b:08:dd:9a:e7:
2c:9f:61:8f:cb:d9:3c:e4:d3:85:9c:78:f9:4b:09:
79:a0:8f:23:85:99:4d:2d:90:05:d0:ca:bf:e5:ed:
92:08:17:ff:70:84:90:5a:72:e5:9c:47:cc:df:6c:
19:4c:c3:d6:0c:1f:aa:bd:d4:6d:84:26:91:00:21:
a4:5a:62:46:ca:ea:be:c3:ed:06:1c:4b:04:61:ef:
c4:8a:ec:48:6c:b6:04:84:11:f1:af:3f:4c:10:7b:
b1:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:CF:31:25:FD:8B:E9:96:8E:22:28:7A:FE:90:2F:A8:A5:BC:01:C3
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/WM8xJf2L6ZaOIih6_pAvqKW8AcM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
b0:08:2c:62:b7:35:72:7d:7c:88:cb:63:45:f0:1d:31:45:35:
c9:0b:c9:f3:52:50:9d:e4:94:97:35:83:2b:b1:55:64:c0:fe:
1c:e2:74:06:12:ab:db:fd:13:98:7b:16:c5:35:c4:d2:33:2a:
03:e7:2e:75:8b:26:9f:40:46:09:cd:b6:d5:cf:ee:c7:79:40:
0b:d2:ad:f5:ae:c8:3b:df:22:2c:f7:8b:ad:13:ad:6a:0e:97:
59:27:b5:d1:8f:50:10:5b:3e:66:46:ce:89:3e:ac:f7:a2:23:
a3:ee:3c:66:bd:e2:4e:10:10:07:35:a6:4c:34:16:b1:f5:89:
69:3d:8b:01:d2:4e:13:89:ff:9e:13:5f:ac:63:73:4a:08:96:
d8:5f:35:cb:5d:26:ed:db:87:57:40:3f:2b:bc:94:6e:78:20:
ba:d6:e4:9a:79:45:8d:f4:12:f7:77:5d:57:4d:56:f2:eb:88:
f8:0a:b5:22:94:a8:b9:e2:d6:13:66:33:65:b1:3b:76:b3:c2:
83:e2:d0:64:29:06:bb:99:88:06:46:a4:54:81:19:c3:0d:76:
7b:82:da:19:78:55:10:4a:64:b8:e9:30:a2:33:f1:17:12:da:
0a:bd:83:7a:71:05:95:ba:88:07:23:3d:ee:af:b9:05:96:b8:
7c:7c:c7:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 07:00:04 2025 by rpki-client