Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/WqlD31vrF7r3ZX3EYcjpH_0Wmmg.roa
File: WqlD31vrF7r3ZX3EYcjpH_0Wmmg.roa (raw, json)
Hash identifier: vCFBsSoT4Gh/a1COk6ZxXIOWO3ebs9A99jBtl3wjDwI=
Subject key identifier: 5A:A9:43:DF:5B:EB:17:BA:F7:65:7D:C4:61:C8:E9:1F:FD:16:9A:68
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01865492332DA51ED29889F9EF957F04F026
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/WqlD31vrF7r3ZX3EYcjpH_0Wmmg.roa
Signing time: Wed 15 Feb 2023 10:15:12 +0000
ROA not before: Wed 15 Feb 2023 10:15:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:54:92:33:2d:a5:1e:d2:98:89:f9:ef:95:7f:04:f0:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 15 10:15:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5aa943df5beb17baf7657dc461c8e91ffd169a68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b0:2a:c9:98:c0:f2:fa:ad:c4:52:13:93:28:
83:02:b7:4c:4b:35:d2:c0:9e:38:21:b4:a5:c7:26:
bd:05:4f:c2:a1:72:f1:02:e0:49:07:d1:b4:45:1f:
e6:e9:06:2e:c5:15:7c:30:bb:38:52:f3:6c:a0:9a:
dd:8c:ef:f9:60:39:e6:fd:2e:d6:08:3a:44:0c:7b:
2b:eb:69:18:47:a3:ae:21:27:88:81:8f:1a:1e:bb:
71:4a:8e:80:83:c1:2a:e7:6c:72:e0:fe:c2:15:85:
13:f6:03:01:3d:90:cf:55:76:92:69:ec:e7:a8:12:
12:a8:70:96:de:31:a7:61:69:af:86:ad:e5:72:d2:
bf:d5:83:49:d2:82:05:f6:26:21:d3:51:7c:8b:1b:
d5:a2:1f:6f:c2:66:b7:4e:55:54:af:3a:02:c9:4c:
85:0c:03:8d:ae:5c:f3:87:f8:08:2d:30:3b:20:37:
4c:80:da:0e:45:26:ac:e1:4f:52:ae:b0:51:22:3b:
a3:47:34:47:b6:ff:67:c8:89:1a:a0:92:f7:eb:d7:
66:90:d4:3a:78:49:8c:5d:fd:63:1b:70:6b:11:86:
02:ee:8a:50:97:aa:f0:61:d5:57:f6:40:7e:e5:e1:
49:d6:8b:7f:10:66:a4:7f:39:a2:0a:89:9c:6c:92:
a9:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:A9:43:DF:5B:EB:17:BA:F7:65:7D:C4:61:C8:E9:1F:FD:16:9A:68
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/WqlD31vrF7r3ZX3EYcjpH_0Wmmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
24:e7:72:9a:d5:4b:47:a9:21:85:4e:a2:7c:50:2f:e2:7f:02:
e1:0d:91:2a:39:2d:95:f8:28:7b:78:3f:a8:a0:83:23:20:14:
51:09:3c:68:a0:fc:52:a3:0e:1c:e4:b6:f3:e1:b9:d0:dd:6d:
7c:e3:8a:ad:bb:e2:4d:58:13:87:46:e1:a7:52:1f:48:4b:14:
c7:ad:79:56:f6:e2:6f:be:14:30:43:f3:b8:d6:f7:26:df:ab:
d8:b4:99:ae:b6:f1:5c:e8:bb:cd:e5:be:20:c1:78:41:e0:b0:
82:67:51:c7:43:82:15:21:d4:a7:e3:fa:0b:04:f2:a1:7a:df:
1b:1c:a2:08:30:53:d0:2d:cc:f4:f4:12:86:09:42:c2:4d:48:
69:f1:c8:04:90:f0:13:02:ed:f7:ed:47:25:1b:d0:17:69:1c:
0e:41:b7:bd:c0:5b:30:33:25:a7:ae:b4:74:f8:73:a0:d0:f3:
7a:8e:24:36:b5:8d:8e:df:d1:48:9a:02:0d:e2:11:4f:79:a7:
42:6e:6b:da:c3:82:55:ad:6c:ce:45:0a:52:35:cc:01:72:6d:
91:d8:16:ea:dd:3f:41:46:bb:6f:22:94:da:18:6f:6e:22:14:
96:b9:ba:0f:ff:ce:2e:6a:77:27:e8:72:47:8d:5a:a5:09:08:
d2:81:53:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 00:23:27 2025 by rpki-client