Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ZcVvIVLMJrn9oTlAQ36IQA-TuWg.roa
File: ZcVvIVLMJrn9oTlAQ36IQA-TuWg.roa (raw, json)
Hash identifier: ocPfpGwAxkkcQ9snEhEpFI4joKtxGHsyjlcb8gPSg9I=
Subject key identifier: 65:C5:6F:21:52:CC:26:B9:FD:A1:39:40:43:7E:88:40:0F:93:B9:68
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01851B0DEB5344A156C8C7A8D2067D59BAD6
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ZcVvIVLMJrn9oTlAQ36IQA-TuWg.roa
Signing time: Fri 16 Dec 2022 13:09:34 +0000
ROA not before: Fri 16 Dec 2022 13:09:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1b:0d:eb:53:44:a1:56:c8:c7:a8:d2:06:7d:59:ba:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Dec 16 13:09:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65c56f2152cc26b9fda13940437e88400f93b968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:71:40:3b:f1:ae:99:44:b3:d2:30:c7:96:13:
80:4c:f6:f9:e7:0b:2a:e6:12:f6:3b:c7:6d:c5:1d:
99:af:63:fb:98:b8:dc:a7:11:93:7b:35:8c:aa:db:
a9:68:d1:91:8a:50:c9:d4:7b:de:83:fd:6b:1a:aa:
d3:63:aa:3f:01:55:28:5f:2e:2b:88:e3:8f:82:11:
02:d1:2f:86:7f:90:92:2a:53:35:ba:23:18:51:32:
f6:0b:07:13:3c:78:d1:0e:21:dd:83:ac:d0:90:8a:
bb:24:e3:1c:1d:ce:ef:27:ce:75:b3:e5:13:bd:06:
62:a2:8a:bf:92:bd:68:54:73:0b:9f:0c:d9:89:17:
64:7f:e7:1f:2c:f9:47:97:e9:51:77:74:0d:66:d3:
6b:08:e6:f2:8c:76:5a:23:7d:67:7e:a1:85:33:fe:
f2:8f:ea:74:8e:df:32:d1:c0:d7:3d:16:20:b5:9b:
54:48:fc:18:a3:d4:48:10:98:3f:83:17:4f:7a:77:
4b:c2:f5:db:a6:a2:44:b7:d2:4d:20:a2:45:95:0e:
89:de:5f:18:aa:0a:ab:dc:e2:dd:f8:be:23:92:c7:
e6:48:4c:ab:4e:22:29:8a:50:91:4e:69:03:e5:7d:
f3:58:1e:31:77:0d:66:c0:cc:96:20:1f:03:9c:25:
c5:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:C5:6F:21:52:CC:26:B9:FD:A1:39:40:43:7E:88:40:0F:93:B9:68
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ZcVvIVLMJrn9oTlAQ36IQA-TuWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5c:0e:24:20:4e:9b:27:6b:93:df:a4:0f:45:cc:46:40:f5:77:
b5:66:25:ce:ca:40:18:cb:1d:e0:fb:8b:58:13:41:73:93:06:
6b:23:ec:99:83:e0:ce:f3:b4:23:49:dd:93:e4:63:22:ec:24:
b1:88:5a:18:ed:74:ec:76:0b:71:a2:85:08:52:c0:40:10:2c:
14:c9:2d:06:76:98:5f:03:7c:59:20:03:a2:24:16:b9:6a:7e:
c9:a9:bc:c2:f1:5e:21:69:6b:a7:0b:8d:26:a5:8b:9e:9a:28:
12:35:be:12:5e:50:38:fa:b3:de:a6:d0:cc:5a:41:aa:4f:ab:
47:d4:b0:4d:c3:73:e8:50:e9:af:3e:53:dc:e5:a8:90:fd:08:
1c:b6:22:cf:64:6d:0e:38:3e:d6:9d:c7:f5:b3:64:b5:29:9d:
a2:83:c4:f4:c0:28:cb:3e:ec:5e:5e:66:63:da:0e:7b:a2:a3:
57:68:bf:f5:2c:ff:b2:37:52:1b:f1:01:49:11:68:9f:f9:fe:
1c:c0:a2:69:31:3c:32:c7:28:20:8e:4b:2e:07:9d:51:97:b2:
02:b3:7e:c9:e5:c0:a5:bd:aa:bc:ba:f0:3a:a7:f0:d5:77:8c:
23:cc:cc:f4:10:38:5c:57:e5:46:9b:de:33:b2:84:43:0f:de:
6f:4d:8a:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 02:36:09 2025 by rpki-client