Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ZuvHFYtHalauG_GajxgaW8NPw3A.roa
File: ZuvHFYtHalauG_GajxgaW8NPw3A.roa (raw, json)
Hash identifier: ptbulcZSsxiGB0d0hnGOzPQMhO8CwobNH9cWhZlHAyw=
Subject key identifier: 66:EB:C7:15:8B:47:6A:56:AE:1B:F1:9A:8F:18:1A:5B:C3:4F:C3:70
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018522F9D0BC7A6E356DD64151EE08FB7BE4
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ZuvHFYtHalauG_GajxgaW8NPw3A.roa
Signing time: Sun 18 Dec 2022 02:04:35 +0000
ROA not before: Sun 18 Dec 2022 02:04:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:185:22f9:503a/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:22:f9:d0:bc:7a:6e:35:6d:d6:41:51:ee:08:fb:7b:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Dec 18 02:04:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66ebc7158b476a56ae1bf19a8f181a5bc34fc370
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:02:0b:36:80:39:4e:01:b9:1a:8c:84:37:1d:
52:a2:a0:96:18:77:25:ee:83:ee:49:43:09:ac:80:
9e:04:05:90:aa:1d:07:f7:79:5b:54:02:14:15:9d:
9e:3e:95:74:11:cd:17:9d:87:ee:68:a9:c5:e8:07:
e0:5e:b2:e5:90:ce:6f:fa:ae:a3:93:09:d5:f6:dc:
e2:32:f3:15:89:66:ee:7f:67:b1:bb:fe:c6:b2:69:
04:fe:85:f2:ea:b4:f2:bf:d0:e6:9f:f6:1b:a6:18:
90:08:cb:cb:1d:85:c5:f2:38:7c:d3:94:07:a5:f8:
9d:aa:a5:ed:ee:58:f2:9b:4b:e2:46:2a:7c:fb:ab:
59:79:1c:ee:58:72:f9:d8:aa:77:e6:37:af:e0:e6:
1d:cd:e2:56:b3:a8:79:55:53:56:af:96:3f:77:fc:
bd:14:43:24:81:37:66:f2:8d:d6:df:cc:ab:b3:96:
83:49:d3:92:52:9f:be:8c:11:ca:a8:0a:de:0b:e0:
1c:b4:3f:44:ea:e1:35:17:37:b5:eb:b9:47:49:f3:
f2:ee:ae:ac:5e:81:10:30:2a:f2:c7:46:37:c8:15:
33:7f:57:96:4e:c2:fd:a1:18:ef:6e:46:6a:38:4b:
02:d4:4b:ce:07:db:47:38:1a:0a:db:06:91:40:07:
e0:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:EB:C7:15:8B:47:6A:56:AE:1B:F1:9A:8F:18:1A:5B:C3:4F:C3:70
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ZuvHFYtHalauG_GajxgaW8NPw3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a6:ea:5a:fd:fc:52:ff:87:c7:c8:72:69:fe:a0:f7:7a:c5:ba:
5a:38:3b:53:51:3e:02:29:aa:21:ca:66:54:e6:6d:ea:aa:cf:
4d:09:96:de:59:83:27:bd:46:0a:3f:57:e3:c6:74:ca:e6:31:
97:12:8b:b6:3b:49:2b:36:09:0e:3d:c4:e9:02:40:01:30:e1:
83:99:19:f7:cb:e5:b5:9f:42:67:0a:69:7c:2b:48:f1:06:5f:
0f:6a:37:16:55:74:60:fd:65:45:0b:c5:5e:dd:f7:37:6e:71:
0b:0b:f7:21:e6:ba:fe:37:21:05:a9:a2:f9:3d:e4:13:07:0f:
ee:7c:33:0b:37:fc:84:78:bc:fa:70:cd:bf:9a:4f:de:16:1b:
4c:72:8f:b4:6d:b3:dc:12:e9:59:e7:20:32:57:16:bb:83:d7:
84:d0:40:eb:43:31:aa:1f:f4:13:08:d8:17:58:78:62:ca:4a:
98:b6:6c:cd:91:09:b9:5a:26:10:9d:9a:09:e3:43:0e:68:f7:
41:3e:fc:29:20:bd:1f:c8:f2:23:bb:20:4b:a0:cf:48:91:82:
26:58:6e:80:df:cb:8f:60:b5:35:f9:8a:48:bf:46:de:9f:1d:
7e:7c:8e:c9:d9:5b:8a:7a:59:60:79:40:7b:ff:90:6c:dc:00:
92:1b:a8:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:49:40 2025 by rpki-client