Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/_oKcjfZA_H7Ssnxik8_x0pvm2fE.roa
File: _oKcjfZA_H7Ssnxik8_x0pvm2fE.roa (raw, json)
Hash identifier: kYtNry3oTJxGRWiHXWwVpgB1nbQDnbyrl6JZXjjbNlU=
Subject key identifier: FE:82:9C:8D:F6:40:FC:7E:D2:B2:7C:62:93:CF:F1:D2:9B:E6:D9:F1
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0186C378B7ECFF4582F576170EF2735945E1
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/_oKcjfZA_H7Ssnxik8_x0pvm2fE.roa
Signing time: Wed 08 Mar 2023 23:05:13 +0000
ROA not before: Wed 08 Mar 2023 23:05:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c377:cc8c/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c3:78:b7:ec:ff:45:82:f5:76:17:0e:f2:73:59:45:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Mar 8 23:05:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe829c8df640fc7ed2b27c6293cff1d29be6d9f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:14:03:19:c2:92:7f:8f:71:d4:01:39:30:fa:
29:b0:9c:33:c4:94:70:fe:b4:6b:4a:d0:68:99:8f:
c1:4f:9b:40:52:b3:11:49:e5:19:92:26:2f:56:64:
ce:af:2e:5c:50:9a:ed:97:5a:e7:e7:45:ed:3b:f3:
8c:2f:f6:23:45:71:ff:8b:e1:85:f9:4e:21:b0:0a:
24:a3:d6:aa:cd:1c:94:5a:3b:cf:7f:c1:5a:d9:c9:
6c:db:63:5d:ea:b0:83:24:8d:d2:5b:88:8e:c3:dc:
7b:f0:94:0a:46:78:2c:10:a5:3e:3a:c8:94:cd:75:
70:97:95:91:12:01:3d:3b:ae:34:42:50:07:93:46:
76:df:bd:48:a7:b4:10:83:ae:90:d6:40:ee:9e:3d:
cb:9e:47:3f:2c:f7:a1:53:7d:57:49:46:dc:8e:ae:
e9:d6:6b:19:f6:b6:1b:7b:68:e2:84:21:4a:09:48:
f1:2c:b0:1d:9e:5f:53:15:04:b1:e7:30:09:d7:6b:
44:49:cf:67:a3:d5:18:20:da:43:39:b1:77:92:dd:
4c:44:8a:f0:e7:00:d3:dc:9c:77:fb:9c:a2:ce:c8:
ff:34:d1:c6:5d:1b:47:f4:21:a7:89:27:f9:f5:ef:
54:d0:a7:43:90:25:b0:94:f0:fb:6c:6c:13:bb:7a:
35:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:82:9C:8D:F6:40:FC:7E:D2:B2:7C:62:93:CF:F1:D2:9B:E6:D9:F1
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/_oKcjfZA_H7Ssnxik8_x0pvm2fE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
70:c6:85:2d:ef:73:3a:f7:9a:1d:c4:3f:ce:78:4d:63:3a:0e:
69:8e:ab:9c:c7:09:e7:55:5e:28:8f:fd:9e:aa:27:17:26:a9:
09:f7:a7:a3:13:99:af:c9:cd:b4:e4:c1:db:d4:ba:b3:55:fa:
da:c7:18:be:0b:af:c3:c1:26:c7:aa:e8:d3:3c:00:51:df:b6:
85:d0:6d:8f:2b:7b:79:58:c7:dd:8c:e0:30:ec:fb:da:83:13:
84:39:83:12:e1:df:48:ff:ba:d0:2c:5b:6a:c1:31:50:8d:09:
3e:1c:73:c0:7e:cd:73:4f:6e:aa:7f:97:94:01:37:fb:36:35:
fe:42:73:06:ba:04:22:a6:d0:6f:32:60:ac:e4:b6:78:0d:87:
a8:b8:0d:65:fc:e7:c9:9b:14:ad:3a:33:3b:89:c6:09:c3:94:
c4:19:92:07:e5:58:11:de:08:51:59:28:c2:49:3b:f7:24:7b:
da:4d:97:b2:e2:6a:d9:eb:b5:8f:bf:6b:91:2a:53:9c:19:77:
3a:4c:71:03:a8:98:16:80:3d:7f:82:45:b6:b6:17:d8:9f:66:
7d:56:a8:bf:84:44:33:02:28:59:5d:76:79:a8:0b:c7:c6:d7:
c4:4d:79:36:4b:68:b0:e9:e0:34:8d:bd:5f:1e:2e:fe:07:2c:
db:24:96:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 10:16:13 2025 by rpki-client