Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/WhJvOsWGBFh6PtDLzPQkuQEEMrE.roa
File: WhJvOsWGBFh6PtDLzPQkuQEEMrE.roa (raw, json)
Hash identifier: 0oQNdBvwcrMOV9BopO+HLAKusC4CSglkpUDxsqh2Ta8=
Subject key identifier: 5A:12:6F:3A:C5:86:04:58:7A:3E:D0:CB:CC:F4:24:B9:01:04:32:B1
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018942EF13002CFE2FF39029091D3266BDFF
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/WhJvOsWGBFh6PtDLzPQkuQEEMrE.roa
Signing time: Tue 11 Jul 2023 03:11:51 +0000
ROA not before: Tue 11 Jul 2023 03:11:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:42:ef:13:00:2c:fe:2f:f3:90:29:09:1d:32:66:bd:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 11 03:11:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a126f3ac58604587a3ed0cbccf424b9010432b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:37:0c:e6:ea:6d:63:ff:bc:4d:f3:08:de:d5:
27:f5:1c:e5:2a:8e:e8:f3:af:60:85:a3:83:17:8a:
ea:dd:d0:64:28:0f:6e:77:e5:3a:b1:11:d4:9d:68:
eb:57:f1:88:17:bf:e5:da:08:35:94:f8:bb:dd:c7:
88:62:a5:a3:99:cd:a1:4e:17:94:4f:b4:7d:c4:10:
bf:81:c3:d3:47:fe:c3:71:fa:3b:08:95:46:37:b6:
81:74:bb:c1:42:db:18:ee:f5:48:c9:4a:12:ec:af:
cd:95:cc:c5:b1:08:68:66:96:c5:9b:7c:83:0c:8b:
26:6c:38:9d:96:9d:ce:80:bf:7d:67:3c:5e:e2:07:
af:c8:20:75:a7:e2:f6:ee:63:26:3a:7b:82:f8:46:
4a:3e:3c:61:17:b1:83:49:73:8b:9f:38:bb:aa:79:
05:61:88:81:07:41:1b:70:ff:b8:40:c8:1c:39:1f:
44:a8:42:30:52:f3:1b:e6:1d:a8:df:b5:0c:48:9a:
c3:c2:07:9d:26:c6:1f:5d:83:81:f9:f6:19:75:95:
cb:10:7f:a8:a9:b6:b7:8f:42:a2:a8:ae:b2:b1:e6:
57:a3:6d:44:2e:9c:2b:7d:7d:0a:40:f5:29:4b:c6:
3b:ad:1f:8e:35:66:bc:41:1c:cb:1c:e6:f3:2a:77:
4d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:12:6F:3A:C5:86:04:58:7A:3E:D0:CB:CC:F4:24:B9:01:04:32:B1
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/WhJvOsWGBFh6PtDLzPQkuQEEMrE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5e:09:48:02:39:5d:99:1a:01:a0:9d:e2:d8:6d:f0:87:8c:25:
1c:2c:6a:09:80:e4:38:f5:07:39:38:a2:8c:9f:44:7d:56:45:
09:05:3a:66:b7:76:22:2c:0f:a8:f6:35:ec:1c:ba:90:9b:2d:
52:f6:90:1a:06:bd:d1:8c:8a:df:70:17:2c:5f:c8:6f:a8:c8:
65:88:24:18:4a:57:d1:d4:76:d7:ba:fa:aa:e8:56:91:37:68:
26:8f:5f:25:8f:af:92:b4:e9:e5:c0:3d:be:4e:76:ba:63:a5:
2a:cc:44:b8:59:15:9f:ed:fd:60:3b:34:89:2f:f6:6f:72:f4:
82:07:91:c5:73:04:38:21:e3:ab:4f:7d:7f:52:40:fc:e0:f9:
f2:85:be:62:02:a5:ad:90:ca:c4:e2:f2:46:c5:9f:0b:3a:47:
4d:16:73:65:75:d0:e2:6a:3e:17:c5:fa:c0:32:cc:2d:17:ba:
d4:4c:13:f9:11:8e:ac:b7:18:61:de:68:e5:da:55:c6:1c:55:
b3:7c:21:76:64:69:96:77:5e:4d:c4:64:db:ba:06:c8:9c:db:
62:43:c3:20:bd:6a:3d:92:e5:bb:ec:c2:cf:6b:1c:0f:7f:13:
ba:73:68:1e:7f:46:e8:13:ae:2b:84:8e:c3:51:96:47:c9:bd:
6e:a4:50:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 12:15:46 2025 by rpki-client