Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Xs7j6OxlAdliJlXI5JKrD93N_Sk.roa
File: Xs7j6OxlAdliJlXI5JKrD93N_Sk.roa (raw, json)
Hash identifier: hI0SGrbnmaILioeu5IXdT8SuaauspJC10gphQ1iORJk=
Subject key identifier: 5E:CE:E3:E8:EC:65:01:D9:62:26:55:C8:E4:92:AB:0F:DD:CD:FD:29
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018A3E790E40937CB41628DDB480E7A17C98
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Xs7j6OxlAdliJlXI5JKrD93N_Sk.roa
Signing time: Mon 28 Aug 2023 23:27:15 +0000
ROA not before: Mon 28 Aug 2023 23:27:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:3e:79:0e:40:93:7c:b4:16:28:dd:b4:80:e7:a1:7c:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 28 23:27:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ecee3e8ec6501d9622655c8e492ab0fddcdfd29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ca:5c:1d:d2:0d:bc:05:84:12:d0:59:56:a1:
9a:8f:d3:a4:ba:fc:ee:e9:ad:cd:8d:30:3c:67:91:
e4:6e:c8:20:6f:ed:08:7a:a6:39:16:78:02:88:ec:
98:40:a7:9d:86:24:65:8c:93:27:83:23:7b:af:d2:
89:ac:4b:5d:43:07:f6:8c:54:e6:41:0b:3d:cb:dc:
97:e9:4e:34:81:31:56:2c:45:84:c1:6b:1a:80:4a:
7f:e0:b3:c6:f7:06:34:37:fc:99:a6:75:ab:92:3e:
18:db:12:87:72:7f:83:aa:6f:28:16:40:1b:b9:f4:
c3:6b:40:a0:88:f4:c8:07:64:96:f6:11:6f:ec:3d:
66:dc:96:da:60:59:70:eb:b6:a0:d2:52:ba:27:27:
d7:07:10:04:ea:74:3c:94:b1:e8:69:98:e4:60:d9:
3c:a8:11:ab:6c:39:3a:fb:47:f1:7e:55:1e:c9:df:
76:f4:2c:c9:2a:0a:9a:f2:ff:17:cb:9f:6e:56:75:
22:86:bc:57:db:64:30:5f:ed:c9:de:56:48:ee:67:
64:d0:eb:cc:b9:30:50:93:5b:4a:bc:c5:0e:45:c4:
ca:5f:5b:83:d9:e4:53:8d:82:28:90:1d:50:cf:9b:
61:2e:08:03:71:44:d0:1b:72:86:c5:81:5e:ee:2e:
c3:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:CE:E3:E8:EC:65:01:D9:62:26:55:C8:E4:92:AB:0F:DD:CD:FD:29
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Xs7j6OxlAdliJlXI5JKrD93N_Sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
04:8a:81:05:31:3c:62:72:87:8d:61:c7:5f:3f:2f:4e:3f:a6:
2f:61:77:0a:ed:35:ed:a9:71:e1:15:45:7c:50:39:ad:8d:8c:
8d:4a:dc:60:fc:b6:d4:08:8d:9b:52:67:5d:2d:b4:b5:e2:de:
e2:e5:70:1a:d3:65:fe:19:b0:98:81:52:b7:35:d3:11:84:97:
2a:1b:be:54:9b:82:74:6f:e8:32:fa:90:57:b8:16:7e:e6:a4:
12:47:e6:e3:8d:ff:a4:3c:95:94:67:ad:60:b9:53:b1:83:9f:
98:57:76:85:59:59:8a:e0:6b:2e:9d:18:44:29:67:86:09:3a:
8b:fe:62:09:8c:e1:7d:2d:91:6e:25:a4:6b:6a:ca:32:5a:53:
f0:77:f9:8a:f1:ce:7f:89:be:fa:1e:63:d3:54:b5:bc:20:a7:
ee:22:40:19:58:8d:f6:8a:87:fd:85:2e:6c:3f:2e:f6:de:45:
e0:47:3c:0b:60:58:7c:25:59:ba:de:6b:f7:24:53:61:c9:15:
e0:ff:f1:4d:b9:bf:87:49:9d:16:99:46:18:28:9e:9c:58:10:
a2:1c:15:23:47:e0:ad:b9:cc:4d:35:86:81:37:b4:24:24:6f:
de:9f:c4:bc:42:a8:b7:f4:ed:58:5f:65:61:fe:dc:f6:fb:17:
14:2f:c3:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 05:06:04 2025 by rpki-client