Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/bKijv27JlKwQg238jfKs7dUEum8.roa
File: bKijv27JlKwQg238jfKs7dUEum8.roa (raw, json)
Hash identifier: t/EHP+l/cn279QASo8FRkNp1NypyLJuz5XQ2NeD0u+s=
Subject key identifier: 6C:A8:A3:BF:6E:C9:94:AC:10:83:6D:FC:8D:F2:AC:ED:D5:04:BA:6F
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 6B55BB6A
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/bKijv27JlKwQg238jfKs7dUEum8.roa
Signing time: Thu 17 Feb 2022 10:16:36 +0000
ROA not before: Thu 17 Feb 2022 10:16:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1800780650 (0x6b55bb6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 17 10:16:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ca8a3bf6ec994ac10836dfc8df2acedd504ba6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:dc:5b:89:86:1f:89:ab:ae:7a:52:5c:5f:21:
3e:8e:ee:e0:fb:7f:9b:be:b7:3b:5e:58:a3:77:f3:
be:be:db:05:8c:a5:c9:16:d5:ca:b8:a6:13:54:cc:
d7:0a:18:7a:fd:a0:fb:5e:72:c6:a3:19:76:b1:1d:
d3:a3:64:6f:1d:e2:5f:bb:a8:e5:06:aa:ee:c3:a3:
9c:62:30:0d:1a:b0:2d:47:71:1a:bc:67:e9:db:d6:
cd:e0:64:97:31:63:47:69:61:01:d3:a4:a0:93:f8:
b1:d2:38:8d:c4:89:b7:5f:52:28:20:bf:f2:91:c3:
4d:46:d4:9b:0d:16:67:a7:ad:f8:c9:34:cf:28:40:
25:48:da:c3:93:b3:08:fa:5c:45:34:d2:05:52:18:
5f:de:80:fe:dc:7a:26:e6:b7:8d:f1:67:e9:92:12:
fa:19:73:5c:59:54:4e:d2:d4:91:39:df:ce:dc:77:
77:0a:9f:e3:2d:01:20:95:d9:1d:16:96:89:63:b3:
71:66:dd:42:4b:48:14:10:d7:8c:95:2d:e7:09:b4:
0c:af:7f:08:c1:17:ad:11:82:cd:1b:c3:08:97:ca:
1e:fb:63:cd:c9:56:79:77:56:c8:07:7f:ab:05:a5:
74:18:91:9d:9a:6a:0e:51:7f:3f:cd:c2:c5:25:a8:
ba:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:A8:A3:BF:6E:C9:94:AC:10:83:6D:FC:8D:F2:AC:ED:D5:04:BA:6F
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/bKijv27JlKwQg238jfKs7dUEum8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a0:11:b7:1a:56:a9:19:fb:f1:03:b7:48:7e:5e:87:18:35:02:
a1:68:3a:49:78:bc:a4:6d:97:93:b8:d1:f3:d5:90:1c:c6:eb:
08:02:ca:8a:64:84:9d:8e:b9:17:7f:ac:b5:e5:71:e1:bd:02:
d6:7c:0f:47:cf:b9:62:88:92:82:e6:72:de:26:a4:bc:cb:08:
25:19:58:59:fe:c9:e1:88:91:ca:17:d3:22:94:22:1d:12:75:
ae:d4:3d:1d:5e:73:22:5f:86:a1:6e:c2:9b:3a:1e:73:ff:97:
64:ea:2d:91:76:e0:b4:c7:7c:c6:10:ee:d2:b4:77:c4:93:ee:
3f:6d:08:4e:ea:ee:fd:5f:a5:3f:74:9d:8c:63:fd:92:96:d2:
44:1a:93:ec:ec:9d:a2:8d:9f:08:4e:14:06:32:dd:23:4c:00:
b3:38:84:ad:7d:b0:92:e5:b8:dd:95:5b:b7:c8:ba:94:5a:c0:
6f:56:70:bd:4c:44:7a:25:6a:50:04:be:04:16:83:51:3e:2d:
ba:52:4b:0f:c9:c0:1a:de:87:37:f1:19:dc:70:ec:6b:d1:74:
11:79:3f:17:13:f9:ef:0c:15:22:02:f9:50:53:74:68:66:06:
8d:bf:94:95:d6:d4:cf:c1:0d:78:20:cc:1f:1f:39:ac:7b:d6:
db:42:1c:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 16:08:05 2025 by rpki-client