Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/_4XLilSUj17MSjBWMGbh1B9kJmg.roa
File: _4XLilSUj17MSjBWMGbh1B9kJmg.roa (raw, json)
Hash identifier: GegIwaV1zKGYStSqdjbM8/oZOoFoNShcxvPWOB7v+bA=
Subject key identifier: FF:85:CB:8A:54:94:8F:5E:CC:4A:30:56:30:66:E1:D4:1F:64:26:68
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 66BD18CE
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/_4XLilSUj17MSjBWMGbh1B9kJmg.roa
Signing time: Mon 31 Jan 2022 21:08:39 +0000
ROA not before: Mon 31 Jan 2022 21:08:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:17e:a0dd:2f5b/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1723668686 (0x66bd18ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jan 31 21:08:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff85cb8a54948f5ecc4a30563066e1d41f642668
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:5c:37:48:00:c6:b3:61:2a:71:dd:fd:fd:b9:
ae:03:ee:72:52:e7:9c:f5:84:46:c1:a8:2d:d8:05:
e4:56:2c:2a:fe:d0:b8:77:56:78:27:34:58:fe:aa:
49:73:bd:4a:a1:24:e8:3e:1e:74:c8:ba:a2:6d:94:
1a:07:99:f8:6a:f5:ad:05:6f:fd:3f:cb:c0:7e:ec:
24:1f:48:96:fb:af:4f:db:6f:b0:af:40:50:f7:0e:
e4:18:79:3b:92:6c:93:82:53:12:e9:14:c7:dc:d4:
14:1d:1c:fa:c7:6c:11:19:a0:66:3f:ad:03:d8:b4:
e5:ea:10:86:2a:b7:78:f3:74:a3:e4:cd:ce:ad:4c:
5f:0b:04:b8:4d:b7:53:4b:78:20:b4:bd:3d:41:68:
23:67:ca:a1:e7:8f:8a:5e:26:0e:a7:6b:7c:d0:39:
ef:a8:d8:63:d9:0b:72:55:7a:08:09:04:52:e7:af:
ba:0d:b3:86:d5:7b:54:bc:09:28:05:fd:65:7d:39:
31:fa:71:7c:87:63:99:fd:67:2c:1c:64:a8:08:6f:
98:a4:9e:2c:11:17:6d:ee:9b:32:db:74:db:ba:82:
9d:3c:ea:34:96:37:65:34:1e:31:85:e5:94:67:3f:
1c:97:27:8a:45:76:18:59:f1:ee:61:cb:e2:18:3f:
96:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:85:CB:8A:54:94:8F:5E:CC:4A:30:56:30:66:E1:D4:1F:64:26:68
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/_4XLilSUj17MSjBWMGbh1B9kJmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
8c:52:28:c7:ed:1f:14:68:df:b3:d2:30:3d:56:b5:cf:80:33:
20:41:d3:1d:02:46:91:60:27:e7:11:9e:91:60:d7:b8:5a:18:
ae:d4:15:14:7a:6c:12:c9:93:bb:07:1a:60:1f:96:b8:be:3d:
4a:18:8f:98:cd:b1:7d:7d:49:77:ca:73:8d:82:18:d9:c9:aa:
e3:6b:d3:8c:fb:f1:ba:c5:51:c4:1f:4d:0f:a3:bc:79:16:5d:
aa:b1:f2:46:65:5b:13:1b:8d:27:27:e1:f5:f4:11:11:4f:dd:
c9:eb:11:34:3b:4d:f9:92:08:58:8e:fe:8b:85:40:9a:6a:b7:
0a:b9:10:ee:33:ed:d2:a0:3d:49:f9:e2:51:85:6d:3e:8b:f3:
ee:fc:1e:2c:02:f1:89:ab:aa:14:e1:74:df:0b:58:5b:c5:b8:
19:3e:bf:b9:3f:3a:5a:67:a5:1b:85:f5:6d:0f:0e:49:1c:0c:
94:4e:64:2f:83:f4:44:f5:4d:65:f5:d7:0e:a8:bd:8a:83:3c:
e1:dd:fe:e9:ab:ed:0f:79:df:09:76:7a:4c:89:8f:df:ec:b7:
b9:63:a5:d1:33:ea:ff:5c:68:4d:2b:12:7d:b9:0c:29:96:c3:
9b:e9:67:3a:00:96:f2:18:04:a5:96:94:da:ba:00:00:95:da:
45:5d:e4:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 16:58:43 2025 by rpki-client