Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ZxrpDYf-jYt9Xa8FIc8CCKToiR8.roa
File: ZxrpDYf-jYt9Xa8FIc8CCKToiR8.roa (raw, json)
Hash identifier: fsbpQuRTIw7+mT0QgsNHD5GFd4+p67JbQxcM6GGQDl8=
Subject key identifier: 67:1A:E9:0D:87:FE:8D:8B:7D:5D:AF:05:21:CF:02:08:A4:E8:89:1F
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0187921FF984080ECC72F52B713E6B461866
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ZxrpDYf-jYt9Xa8FIc8CCKToiR8.roa
Signing time: Tue 18 Apr 2023 02:09:41 +0000
ROA not before: Tue 18 Apr 2023 02:09:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:92:1f:f9:84:08:0e:cc:72:f5:2b:71:3e:6b:46:18:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 18 02:09:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=671ae90d87fe8d8b7d5daf0521cf0208a4e8891f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:bb:1a:20:d5:a9:fe:5f:b1:0b:22:ed:bb:d8:
15:e7:55:9e:27:2f:cd:b8:4f:9d:67:89:74:0c:3d:
b5:46:21:27:87:d5:6e:6e:62:14:85:5f:eb:24:ea:
1b:20:06:db:b9:93:d1:72:55:1c:5e:67:e9:62:15:
f8:5b:8a:14:72:d5:ea:e4:a5:c6:45:c2:8b:8b:a0:
2f:fe:bf:49:f8:1f:3f:92:4e:c8:94:d1:f2:8b:c2:
9c:c2:1b:a2:98:44:d0:71:2d:16:04:ee:0a:f0:35:
cc:a7:cf:b3:1f:34:1b:bc:79:8f:b2:35:c7:bf:d4:
c9:f1:b0:3c:39:9e:d0:aa:f3:fc:08:90:e1:66:06:
f6:cd:e1:1b:27:90:92:bb:03:75:d6:e4:3e:d9:d0:
b0:4e:72:33:de:30:81:6c:67:7b:7e:ac:ee:34:2b:
77:85:9d:af:1c:fa:59:b6:cb:41:44:34:cf:79:3a:
90:e2:b6:c4:da:f0:40:dd:18:41:6a:ad:cb:0e:1c:
29:e7:08:86:43:b7:08:d1:70:fe:87:2d:45:94:80:
03:c5:4b:bf:f5:0e:2e:0a:5c:05:df:cb:51:22:c0:
fa:22:af:e5:cb:a2:29:6e:3e:b3:fb:d1:a0:36:57:
8a:61:2b:f7:f2:d8:82:42:fb:f9:24:54:5e:d9:e1:
a8:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:1A:E9:0D:87:FE:8D:8B:7D:5D:AF:05:21:CF:02:08:A4:E8:89:1F
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ZxrpDYf-jYt9Xa8FIc8CCKToiR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
b0:cd:2c:b9:1d:3e:e2:f7:de:92:bf:e0:fd:e6:1a:d7:46:03:
45:c2:69:e3:bf:9c:02:bd:eb:8a:94:a3:b2:02:a4:2d:8b:2a:
56:71:c4:fe:3b:9b:21:df:4f:75:8c:82:14:71:87:d7:be:66:
0b:1e:7c:ba:f6:3a:3c:a9:66:95:7f:c7:5e:c1:13:43:aa:8c:
80:aa:a3:01:ff:ca:f1:45:3c:67:2b:1b:7b:d3:c8:3a:21:b7:
11:a1:0e:a5:ee:67:02:c0:5a:2e:20:40:3e:0d:88:0e:9a:25:
34:cc:e8:81:fe:d5:c9:96:1a:b5:90:08:ad:45:4d:14:c7:12:
ec:18:60:ae:10:42:e2:e8:f5:75:47:af:45:a5:a2:bd:91:44:
46:4b:a1:58:23:cb:34:4b:5a:99:e3:50:ab:3b:d2:15:8b:a7:
4a:d8:82:03:96:c0:04:9e:e7:e7:b2:a4:ec:81:9a:d3:2c:af:
b8:2b:23:e5:84:0f:ab:6b:99:a4:c9:ad:e8:a5:61:8f:72:41:
bb:0c:d9:6e:89:34:71:00:bb:c7:4a:f4:19:4a:f3:69:59:a4:
80:e5:35:dd:60:bc:6f:f2:ed:7a:6e:57:fc:9b:51:5f:d5:ee:
63:43:59:18:75:f2:12:b0:de:68:44:7c:c7:3b:bb:e8:30:d5:
57:80:a2:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 01:58:32 2025 by rpki-client