Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ZiIDAA1SSqAdwFTbCTKDgQpR3wE.roa
File: ZiIDAA1SSqAdwFTbCTKDgQpR3wE.roa (raw, json)
Hash identifier: fXSP3zZRR/JH7IgtG+HW9hI3TdkBc0pxHBievS+2URU=
Subject key identifier: 66:22:03:00:0D:52:4A:A0:1D:C0:54:DB:09:32:83:81:0A:51:DF:01
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 7799E660
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ZiIDAA1SSqAdwFTbCTKDgQpR3wE.roa
Signing time: Fri 01 Apr 2022 20:09:24 +0000
ROA not before: Fri 01 Apr 2022 20:09:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2006574688 (0x7799e660)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 1 20:09:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=662203000d524aa01dc054db093283810a51df01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4f:0d:d1:22:bc:9f:de:93:0a:78:d2:3a:96:
f9:be:ad:c7:70:e8:25:ae:64:48:17:23:b5:d2:b0:
2a:c7:3b:00:21:67:92:c8:5c:c0:71:9d:ab:4b:31:
8b:8e:6a:67:d0:fc:2f:e7:df:5d:a8:5a:b1:73:19:
7a:b7:eb:0a:63:fa:02:53:76:a8:0a:c1:b2:00:3a:
42:84:01:cc:18:4d:f5:96:26:df:e4:af:ea:81:43:
3d:d7:58:c7:6e:7d:12:34:66:c9:37:75:4f:cc:31:
ff:a9:ed:02:67:4a:2d:71:a6:8a:ea:d8:cf:35:32:
f9:c1:d0:50:61:bb:32:25:d5:3f:3d:b4:bd:c8:69:
2b:11:48:bf:90:a4:a0:59:f7:8f:70:9e:16:4b:d1:
42:90:fd:21:7f:0d:1d:16:08:9e:b4:e6:51:e8:7a:
e8:fb:73:75:92:65:c0:c0:1a:5b:f9:76:e4:57:b6:
4f:f8:02:b1:36:84:e6:20:c0:e5:08:2d:f2:ae:13:
fc:6d:11:b7:c7:09:6d:f2:5b:51:f6:a6:d5:1a:9d:
1f:5e:dc:38:dc:2a:ff:4a:87:02:41:27:21:e2:c9:
32:e3:8b:12:81:00:e4:1c:e4:c1:60:57:ba:20:51:
e8:80:c0:a3:ae:5b:7e:05:59:17:f7:dd:24:40:76:
3e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:22:03:00:0D:52:4A:A0:1D:C0:54:DB:09:32:83:81:0A:51:DF:01
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ZiIDAA1SSqAdwFTbCTKDgQpR3wE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
b3:08:d2:1a:53:6b:41:14:eb:2b:10:db:7c:96:66:d3:2a:d1:
a7:91:ed:29:9a:59:e3:5a:94:cd:dd:f9:a5:61:10:8f:bf:b3:
b2:e4:a4:86:f7:44:c3:d9:ad:e4:f6:76:81:07:4b:a9:6d:17:
ae:9c:a6:5c:aa:f0:c3:f2:5d:62:1c:36:b8:cf:95:d2:e5:e6:
48:c9:36:c6:90:e4:34:23:de:57:54:d7:35:4d:44:98:13:93:
90:cc:19:e5:ff:60:ac:c7:68:71:e7:ce:aa:7e:ac:25:1e:1f:
86:5a:92:f3:3e:a3:45:3b:66:dc:64:f6:c6:09:04:d9:2d:f4:
13:22:b9:12:71:ba:7c:f9:b0:40:ad:e6:be:29:45:01:a9:6a:
06:13:ee:65:fc:be:27:a4:b3:66:86:98:e4:a6:58:d0:07:0a:
04:c5:02:21:7b:1e:cc:e3:f7:43:92:1f:34:ff:e8:ef:c8:86:
5c:9c:26:ca:e5:dd:b7:b2:b1:97:e3:98:a4:a8:93:22:2d:bf:
49:d2:02:47:cf:08:d4:86:b5:55:34:37:73:39:83:b9:c0:a3:
50:4a:d3:28:60:07:d5:2e:9f:b2:dc:1e:ec:61:7a:29:da:cd:
e3:8a:81:fc:22:75:a6:06:d1:a0:d3:4c:16:ed:0e:59:6f:5f:
4d:1c:c1:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 02:21:16 2025 by rpki-client