Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/XcDwDpWjRKsbSADRreYQAbO-l9w.roa
File: XcDwDpWjRKsbSADRreYQAbO-l9w.roa (raw, json)
Hash identifier: 6VjK1iIHPq9JU5vn6c8MX1aLEOiPZ8hOhTJRvn8dr88=
Subject key identifier: 5D:C0:F0:0E:95:A3:44:AB:1B:48:00:D1:AD:E6:10:01:B3:BE:97:DC
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018764A18FEF3AB55C274C9F0F62427195AA
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/XcDwDpWjRKsbSADRreYQAbO-l9w.roa
Signing time: Sun 09 Apr 2023 06:08:42 +0000
ROA not before: Sun 09 Apr 2023 06:08:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:64:a1:8f:ef:3a:b5:5c:27:4c:9f:0f:62:42:71:95:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 9 06:08:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5dc0f00e95a344ab1b4800d1ade61001b3be97dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1f:11:01:31:e5:81:23:b1:b8:bf:40:58:81:
05:5e:82:2a:29:0f:15:42:51:6a:57:d6:61:b5:dc:
91:99:01:93:e6:0e:07:1d:aa:9c:55:e1:98:de:10:
f2:7f:91:01:4d:04:e2:11:2c:2b:76:52:56:ac:bc:
2f:cb:c9:69:34:a4:6f:05:9b:1b:5e:5a:f9:c1:19:
88:c7:93:32:ed:95:66:7e:f3:7c:da:66:c0:c6:d2:
ac:68:4b:95:cd:94:1c:1e:36:b5:29:04:74:14:11:
1e:dd:00:2e:f3:00:2f:67:cb:3f:d1:da:f1:fa:a7:
86:69:2d:08:d1:c2:80:35:34:91:2d:f4:17:b1:7e:
c9:a2:b0:8c:6b:35:f2:eb:7b:27:45:81:d2:a3:c6:
78:6c:35:22:85:3e:70:2a:31:e1:66:1d:53:6d:0e:
cb:7a:34:bd:a1:9e:39:43:cf:b0:04:68:8b:57:9d:
6b:6f:6b:e7:40:9a:f2:f9:8e:3a:93:fa:a8:ea:e4:
a3:05:c8:da:72:fe:dd:c8:a5:cf:1a:dd:f4:23:2e:
ea:6a:c2:48:f6:56:59:11:2e:b4:fc:0d:fb:29:c0:
d2:b7:a1:b1:f4:0b:d0:2b:07:2e:c4:ce:fd:c5:57:
bd:ac:d3:53:2e:03:1e:f1:9a:a5:99:8d:0d:37:19:
99:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:C0:F0:0E:95:A3:44:AB:1B:48:00:D1:AD:E6:10:01:B3:BE:97:DC
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/XcDwDpWjRKsbSADRreYQAbO-l9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
82:12:1a:87:3b:a0:f1:15:91:85:61:24:02:b9:60:6d:6b:dd:
44:89:7e:07:4a:5d:cf:1c:90:d2:7c:08:fe:44:05:17:34:1f:
7e:a4:31:5a:c3:61:f0:60:b7:e2:60:ce:c6:9c:95:2d:80:30:
72:81:e7:db:ca:9d:e9:2d:0d:af:1b:59:f7:94:71:b9:37:71:
97:7d:2c:04:7a:33:ce:52:a4:be:aa:90:c2:55:1b:4f:ed:08:
a2:d9:a0:ed:a9:d8:10:f8:50:fb:33:38:21:f8:80:fc:6a:cf:
ab:58:7c:60:ba:b7:02:aa:96:45:38:7c:cf:d8:1b:ef:9c:c5:
f0:08:d1:2e:04:90:64:68:e3:27:9b:9f:d6:df:3f:56:45:cb:
db:18:99:e8:e3:cb:02:bc:ba:f7:0d:df:45:d1:95:3a:09:bb:
b4:09:db:53:04:6f:27:35:40:8f:b8:8b:14:8a:ec:ef:82:90:
9a:23:4d:22:8b:74:53:1f:26:90:96:c8:74:4e:a6:3b:15:5a:
19:ee:38:4d:dc:a9:29:cc:02:d0:a0:d1:7f:10:05:6d:ed:1c:
c4:88:bf:e3:f3:20:9c:f7:44:dc:17:d0:52:e4:08:c8:7c:52:
cf:58:63:8d:a8:f9:55:a0:dc:2d:38:7d:66:48:a6:59:e0:c4:
7d:ee:e8:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 12:24:21 2025 by rpki-client