Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/b5uhdoAU33YTgUwUJRysa82jViQ.roa
File: b5uhdoAU33YTgUwUJRysa82jViQ.roa (raw, json)
Hash identifier: //OdNSXBBj1Roz3/rLxRMDc1JyfmtRfpQxoSUX2AZH4=
Subject key identifier: 6F:9B:A1:76:80:14:DF:76:13:81:4C:14:25:1C:AC:6B:CD:A3:56:24
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018A30048E19F182A295BC3F507BFF207F24
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/b5uhdoAU33YTgUwUJRysa82jViQ.roa
Signing time: Sat 26 Aug 2023 04:05:19 +0000
ROA not before: Sat 26 Aug 2023 04:05:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18a:3003:ad85/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:30:04:8e:19:f1:82:a2:95:bc:3f:50:7b:ff:20:7f:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 26 04:05:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f9ba1768014df7613814c14251cac6bcda35624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:4b:14:98:1f:a7:95:f5:f3:75:8f:2b:16:7a:
88:e4:31:a0:22:ec:5a:92:1c:2d:82:52:36:13:ca:
b0:bb:34:de:f3:da:df:7f:35:a3:b1:26:ff:55:cf:
60:12:d1:12:d5:9f:9e:4f:63:20:17:51:1c:d3:b4:
e5:e8:4f:4d:3e:b5:e1:b7:95:32:8c:aa:b5:69:50:
23:7f:2c:dc:fb:dc:d3:ba:84:f6:1e:5d:24:de:3e:
e4:f7:23:b5:78:86:fe:23:62:15:40:17:3f:ac:29:
bb:25:65:2f:50:66:bd:59:4b:bd:af:00:d3:06:b0:
83:d7:97:e0:25:71:84:61:cc:0c:04:50:3e:9b:36:
d1:64:01:21:f9:8e:5c:57:e5:36:bb:11:af:27:ad:
78:38:cb:fb:f9:a5:5a:f3:b6:0f:1e:11:60:70:22:
8d:86:2c:e8:95:b1:78:d2:4e:4f:06:2c:a6:cb:91:
bf:bf:26:6a:82:a2:10:db:a5:8e:41:dd:ff:ce:e6:
95:e3:6c:de:4a:57:80:8c:78:cc:a7:b1:0e:d0:9c:
37:1c:38:f8:39:5b:24:14:ae:d7:5a:5b:e7:25:55:
1b:14:25:8a:d8:d3:37:15:55:39:d8:d1:75:fc:9e:
aa:db:7b:cf:05:06:95:c8:51:a3:c3:18:bb:41:23:
07:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:9B:A1:76:80:14:DF:76:13:81:4C:14:25:1C:AC:6B:CD:A3:56:24
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/b5uhdoAU33YTgUwUJRysa82jViQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
73:d8:30:cf:72:ef:e0:10:ae:7d:3b:42:cc:d7:a1:57:2a:5e:
f7:0b:55:cf:d3:91:d0:d5:6a:13:f3:4e:91:5a:e4:98:4f:29:
10:f3:c7:5e:1b:cd:e9:94:40:90:f9:a3:52:3e:57:bc:c9:7c:
30:8b:f1:e4:6c:91:72:fd:a2:6c:c2:6d:80:72:ba:ef:d1:63:
be:61:b9:cd:ba:a4:25:2a:16:28:20:cb:39:ed:09:54:61:2f:
5f:01:d0:82:60:73:fc:72:0d:b2:8b:d7:b6:6a:3e:85:97:57:
c4:3d:4e:a7:90:34:48:c8:c7:03:84:fb:43:f5:b3:c3:c8:1d:
1b:e1:cc:ad:29:65:9f:8c:bc:1b:af:80:a0:1b:1f:99:9c:83:
2f:f8:75:fe:e6:24:93:55:00:dd:29:24:7d:9f:0e:02:35:79:
1d:1c:73:9a:83:57:db:d2:f0:5a:a2:f2:0d:5d:3e:a8:34:43:
b8:4c:48:45:9b:29:47:36:87:34:81:66:88:95:62:bf:a9:ab:
5d:ef:2b:16:22:33:e3:b1:ff:20:74:f4:d7:89:52:d1:ef:60:
03:df:08:2d:33:66:40:f1:5b:11:0f:0c:75:4a:e0:3e:c2:b6:
9a:b5:81:1d:c1:e9:c6:18:c5:70:d6:4b:91:7a:73:2e:27:d8:
fe:66:7e:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 17:31:14 2025 by rpki-client