Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/X3SemnZ1Oh588if-Rl89vfevSxE.roa
File: X3SemnZ1Oh588if-Rl89vfevSxE.roa (raw, json)
Hash identifier: ak0vatoG8XVJ1kYkTx0h8wXEqVqg9cb+5m0VMRbvfpc=
Subject key identifier: 5F:74:9E:9A:76:75:3A:1E:7C:F2:27:FE:46:5F:3D:BD:F7:AF:4B:11
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 8A15B79E
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/X3SemnZ1Oh588if-Rl89vfevSxE.roa
Signing time: Sun 05 Jun 2022 08:10:20 +0000
ROA not before: Sun 05 Jun 2022 08:10:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:181:22f:7a99/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2316679070 (0x8a15b79e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jun 5 08:10:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f749e9a76753a1e7cf227fe465f3dbdf7af4b11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:50:6a:6b:a0:6d:ac:52:62:cb:29:fd:73:46:
9a:4f:69:9d:60:e3:dc:f9:bd:5a:da:48:a7:8d:79:
b3:41:69:4b:74:a3:93:d2:08:32:23:32:d7:1f:b9:
78:db:6a:51:db:10:ef:dc:9b:74:fa:9f:10:e1:0e:
ac:0c:5c:0c:b4:8f:64:da:85:16:6e:2b:20:f5:68:
69:6f:2a:c9:e1:e3:c2:72:28:7e:23:84:e3:2d:54:
98:29:9e:44:ce:26:5a:d4:97:56:9b:d9:95:0a:fe:
a0:3e:ff:0a:1c:83:1f:f5:d9:c5:68:4d:3f:12:bf:
09:3d:72:e4:eb:07:45:e9:69:67:77:3c:5a:f3:fc:
31:11:bf:b7:59:59:49:c0:f4:78:f2:75:29:73:3e:
26:bb:a5:9a:c2:a5:ef:c7:ce:47:00:23:00:4b:03:
16:7f:38:db:e5:59:d1:a0:85:5d:5b:37:02:7c:3e:
bb:32:64:d4:7c:08:b3:94:db:bf:3d:1b:0c:38:67:
e5:d2:de:be:24:40:25:2e:1e:39:25:72:50:48:ea:
0e:45:cd:11:2a:1b:cd:dc:94:e6:2f:72:fb:f7:20:
43:e1:20:d1:30:39:d6:05:03:58:08:3f:31:02:9f:
ae:d0:0a:66:a1:b2:db:07:36:21:e9:22:70:7c:00:
45:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:74:9E:9A:76:75:3A:1E:7C:F2:27:FE:46:5F:3D:BD:F7:AF:4B:11
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/X3SemnZ1Oh588if-Rl89vfevSxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
6f:9c:61:1e:ca:7d:36:38:ce:67:5e:12:89:fb:80:82:13:33:
8f:5c:ba:9d:f2:fb:c5:37:a7:66:cd:3c:22:b7:1d:df:ea:ce:
e7:2e:1e:f9:3e:b4:41:ec:a5:37:34:30:0d:2b:69:a7:6c:50:
ab:b7:f4:2a:de:34:4e:ef:93:3d:0a:68:24:4d:04:9b:eb:7c:
a5:45:74:86:54:17:7d:d8:85:ab:6c:68:53:91:dc:5f:d3:d1:
40:09:19:93:82:46:4b:24:ae:84:28:1b:cb:36:b5:63:78:6d:
db:f8:73:77:a9:15:0d:f5:7a:f2:2a:3e:d4:27:79:f0:aa:01:
9f:20:1b:16:17:be:20:ae:84:50:a5:f8:6c:b5:e4:89:c1:71:
f6:f7:9c:72:86:f9:e5:55:f1:af:5d:a2:c4:d8:ed:fc:c1:75:
76:83:b0:31:12:bb:b8:51:24:31:a7:8e:7b:5d:d6:bd:3f:8f:
98:8b:f2:78:8e:28:bc:5c:9c:d1:3c:e9:9c:14:f6:28:82:b8:
b6:e2:63:fa:90:21:49:32:eb:b2:e1:dd:9a:56:4f:c5:d7:40:
ee:e7:a7:3f:18:da:6d:9d:73:b1:f1:22:82:e5:b5:ff:df:9b:
c1:37:5a:2b:f9:44:a9:a3:27:93:91:77:a2:e3:3d:76:30:1e:
e6:b6:9d:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 19:19:45 2025 by rpki-client