Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Yxo_xLT4sYVLoR2ldDXMBnnEs0o.roa
File: Yxo_xLT4sYVLoR2ldDXMBnnEs0o.roa (raw, json)
Hash identifier: iOZXKnh+fxrLoKGMnWvlthE9G4mJpOmOn7ybu5HOP4s=
Subject key identifier: 63:1A:3F:C4:B4:F8:B1:85:4B:A1:1D:A5:74:35:CC:06:79:C4:B3:4A
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018A2B55368D0AB3D150492286BD43749156
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Yxo_xLT4sYVLoR2ldDXMBnnEs0o.roa
Signing time: Fri 25 Aug 2023 06:15:19 +0000
ROA not before: Fri 25 Aug 2023 06:15:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2b:55:36:8d:0a:b3:d1:50:49:22:86:bd:43:74:91:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 25 06:15:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=631a3fc4b4f8b1854ba11da57435cc0679c4b34a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:42:b4:6d:cf:21:dd:d9:34:b9:f8:ba:71:1e:
9b:dc:04:27:a6:3a:04:8b:72:7e:26:a9:bd:a5:f0:
c0:30:4a:77:b4:49:76:1b:a8:86:de:5c:06:6d:96:
24:14:00:b2:7e:0a:ef:67:01:8e:f0:ac:e4:e4:f5:
07:e7:87:b6:34:e9:fa:b5:23:e2:1e:b7:da:b8:67:
5e:58:2b:b6:66:34:45:2d:ad:7f:e6:3d:ab:1a:dc:
3d:4f:bd:c3:c8:c1:de:a1:d6:9b:81:fb:e8:71:f3:
f1:5f:0a:46:e5:c9:50:64:cd:0e:e9:d6:83:90:bf:
1f:3a:ca:18:b7:41:b6:00:4d:9c:57:90:ce:a7:78:
fc:87:a7:bb:d4:f5:fd:e0:09:8c:ff:1c:9a:ec:71:
dd:ad:56:bb:ff:70:2d:e9:10:1f:df:87:cb:19:eb:
b6:93:db:85:b9:76:98:d2:5e:1a:e1:2c:91:76:fa:
ea:84:5a:f0:75:a3:49:cb:7b:40:2c:a5:2c:5c:ec:
6e:88:46:52:ea:ff:c5:8e:27:55:75:7a:7a:9e:b3:
e2:0a:27:b3:10:3b:a2:44:25:16:79:05:9a:fa:2e:
6e:2c:54:07:cb:e2:52:8a:96:85:4d:b7:00:b4:04:
58:31:c6:ae:17:a6:01:56:85:9d:32:a7:3f:72:0f:
fd:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:1A:3F:C4:B4:F8:B1:85:4B:A1:1D:A5:74:35:CC:06:79:C4:B3:4A
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Yxo_xLT4sYVLoR2ldDXMBnnEs0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
1a:d2:a9:d3:87:a6:3f:5d:22:c8:b5:b0:05:01:67:2c:6f:9b:
99:8d:3a:50:5c:a2:4f:0c:34:6a:e2:46:0e:76:d1:aa:35:30:
ae:f1:4e:ee:31:81:84:97:b8:06:59:de:c0:46:5e:4c:63:18:
e9:89:d8:84:73:2a:30:10:48:b1:15:44:9a:8a:bd:a5:4c:b3:
a2:55:06:59:ad:cf:f2:94:21:ce:fd:c5:fc:95:4d:cb:58:16:
ee:35:2f:00:b9:ad:f6:5c:d4:c5:50:c3:4e:b0:79:09:ea:29:
88:51:71:89:73:1d:9b:09:2c:6a:20:40:c6:ed:40:d0:e0:9b:
f9:18:f1:9a:e7:2a:6b:b6:a7:f9:24:5d:f4:3c:27:20:a4:77:
3d:eb:61:4f:32:da:af:74:f9:e7:c9:86:58:1f:30:e2:a3:ef:
a8:d0:01:c6:dd:e9:62:c7:99:5c:44:c3:22:24:a9:14:4b:32:
15:f6:c9:53:cb:05:c2:da:0a:27:e3:90:39:31:d6:86:f2:e8:
e2:a2:3a:f4:6f:49:96:b4:d6:91:1b:ad:4b:83:7f:a0:28:97:
9a:53:45:5c:73:9a:6c:10:80:ba:12:33:8a:26:ba:5a:24:67:
72:5f:df:4c:40:fe:bc:8e:e9:d5:1e:99:31:ac:b1:00:d9:87:
44:25:e7:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 18:29:13 2025 by rpki-client