Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/YnBhkM_k_3WhF6q-RXYg9Qldhr8.roa
File: YnBhkM_k_3WhF6q-RXYg9Qldhr8.roa (raw, json)
Hash identifier: nBvTp8oF2P2ru2uO5pRXvhtnJoLMKSusPXQXEU8bGKA=
Subject key identifier: 62:70:61:90:CF:E4:FF:75:A1:17:AA:BE:45:76:20:F5:09:5D:86:BF
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 8FB7A079
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/YnBhkM_k_3WhF6q-RXYg9Qldhr8.roa
Signing time: Sat 25 Jun 2022 13:12:10 +0000
ROA not before: Sat 25 Jun 2022 13:12:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2411176057 (0x8fb7a079)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jun 25 13:12:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62706190cfe4ff75a117aabe457620f5095d86bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:2f:15:dd:16:c9:31:ec:b0:25:24:d1:56:a9:
e8:fa:f6:e4:20:a1:82:87:71:58:0e:59:eb:4f:7f:
72:01:4a:42:0a:f4:cf:31:a0:7e:30:c5:c2:8f:72:
ba:26:f1:55:b8:0b:0e:ad:ef:63:e8:f2:45:e2:16:
45:a8:5a:34:32:a0:1d:17:dc:a0:6c:9c:69:f1:15:
76:80:01:7e:e2:8e:fb:65:38:7e:af:1b:a4:54:13:
34:5a:27:c6:dd:c8:95:be:60:b8:2d:e9:14:58:e4:
77:59:23:82:44:18:a5:90:0c:27:57:ee:32:b1:dc:
7b:47:13:28:4b:2f:46:ca:93:dd:4e:87:5a:0e:bf:
8c:7d:de:49:53:39:ab:21:89:95:07:56:12:36:1e:
35:76:81:ff:b3:76:1f:41:1f:cf:dc:23:57:27:9e:
06:e7:83:d8:0f:46:6a:6d:f1:a8:a1:9e:52:c0:1d:
6b:2b:2a:00:ed:88:73:42:1d:30:b2:d8:fe:8f:70:
ea:f4:31:ee:18:be:1f:29:bf:81:eb:c9:c9:fd:66:
08:eb:25:39:35:c9:09:6a:91:08:f3:cf:e8:8b:81:
6d:53:09:69:2a:e4:df:26:4f:1e:3a:c8:e6:42:bc:
f6:e3:8e:3a:cc:86:c4:ab:a0:5c:8a:ef:a2:6a:45:
f0:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:70:61:90:CF:E4:FF:75:A1:17:AA:BE:45:76:20:F5:09:5D:86:BF
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/YnBhkM_k_3WhF6q-RXYg9Qldhr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7f:2b:ac:a1:df:83:63:e9:88:da:49:41:57:db:b4:37:17:86:
1c:2a:84:7e:91:68:8a:14:54:3c:f8:3c:05:9c:4c:c0:73:c7:
75:29:e6:98:e0:21:fd:a6:18:77:95:5d:13:11:96:5b:55:6f:
7a:f2:85:97:40:af:2a:14:96:38:e1:3b:73:e1:3a:f9:a7:5d:
3a:7b:71:a2:d2:2b:1e:b4:fb:02:b4:5a:67:0a:c8:53:43:98:
cf:30:6e:48:60:9b:e7:cc:fb:63:32:90:8a:e7:c7:43:1e:89:
49:ec:d0:9a:86:10:67:46:65:73:64:37:cc:95:6a:d4:d0:14:
fe:86:0b:d4:16:84:55:93:c6:1d:2d:c5:16:71:ed:34:13:0a:
5c:b8:be:1a:78:f4:76:86:43:51:e5:3b:2e:e8:2f:9f:82:1e:
df:d7:55:88:56:96:4e:88:e1:07:01:c3:83:52:ee:f6:5a:20:
ad:d6:4c:ce:8b:60:29:2c:39:79:4b:b4:d2:48:a1:95:e6:d0:
b5:e6:d9:5f:29:71:b0:61:99:44:0d:4d:69:39:2c:50:62:0e:
e1:66:aa:60:f2:8e:37:9b:4d:ba:f9:f6:04:20:6d:a1:6c:87:
f0:83:24:dd:a6:27:ac:f2:c4:33:02:63:7b:90:9c:33:2f:57:
43:17:6e:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 02:09:04 2025 by rpki-client