Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/bPIbSvRQVcZReRK8K2J37QvF0VM.roa
File: bPIbSvRQVcZReRK8K2J37QvF0VM.roa (raw, json)
Hash identifier: IzPStRDcYZ1aYTL60g7jwUy3y8EEw56SGEAX7li61yk=
Subject key identifier: 6C:F2:1B:4A:F4:50:55:C6:51:79:12:BC:2B:62:77:ED:0B:C5:D1:53
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0189E0A8AD6F3B069F9F80D3225667BE8BB3
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/bPIbSvRQVcZReRK8K2J37QvF0VM.roa
Signing time: Thu 10 Aug 2023 18:14:58 +0000
ROA not before: Thu 10 Aug 2023 18:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:189:a0e4:5c7d/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e0:a8:ad:6f:3b:06:9f:9f:80:d3:22:56:67:be:8b:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 10 18:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cf21b4af45055c6517912bc2b6277ed0bc5d153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:83:06:2f:40:7f:ae:26:01:50:35:8e:72:a2:
4f:6f:1d:2d:0d:02:21:43:71:0a:5b:73:2a:cb:30:
b4:b1:e0:99:8f:a3:05:64:a1:b1:ea:f0:49:2b:e2:
05:9d:f4:82:16:fa:ca:6e:b6:60:eb:64:f1:26:42:
74:b4:c2:9d:cf:81:ad:03:92:42:e1:77:ce:7b:a1:
e0:fe:9b:c2:63:4c:c3:5e:45:d5:a3:1f:de:b5:b4:
53:27:1f:2f:c0:bf:89:91:0c:a6:50:ec:66:02:70:
20:e5:e0:4e:48:a9:45:2a:56:20:a6:fb:b9:91:39:
06:4e:cd:ec:e0:fb:e8:e2:e9:d8:f6:eb:21:ba:44:
14:e2:52:a6:5c:df:30:ca:a2:b8:b1:e8:9b:9e:10:
c1:6e:9e:13:23:98:6c:e1:28:c3:9c:5f:37:89:ab:
30:ca:b9:24:de:e1:a0:78:23:7d:2b:92:9b:7e:5e:
dd:60:eb:63:b2:a7:b7:3f:10:c0:bb:cf:bc:8c:e7:
97:14:40:3e:57:6a:b2:b6:bd:6c:e8:14:32:7f:73:
1c:18:c6:f0:5e:07:c8:b4:3b:35:ee:3d:d1:38:5b:
07:c2:e4:4f:58:7a:2b:3f:e3:bb:a6:b2:fa:3e:38:
70:82:9c:20:53:3a:06:ab:82:79:5b:37:21:ad:cf:
6a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:F2:1B:4A:F4:50:55:C6:51:79:12:BC:2B:62:77:ED:0B:C5:D1:53
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/bPIbSvRQVcZReRK8K2J37QvF0VM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
96:62:60:a1:64:63:fc:67:d1:3f:ee:c0:cf:26:49:a7:31:40:
be:61:e6:18:3b:9f:e5:30:3b:94:69:dc:fd:f7:7b:45:05:c5:
e5:49:72:d9:50:c5:ed:f7:a2:0a:ca:99:cd:ef:84:fa:7e:fa:
d3:b7:ed:a4:c0:8a:3e:31:2c:e3:a4:eb:61:ad:90:dd:d9:b3:
bd:dd:56:8d:2b:dc:09:c2:64:78:7f:03:13:37:ec:98:42:b5:
a1:6d:ce:c5:fe:3e:19:3f:df:9e:5b:b5:c6:bd:82:97:dc:d5:
15:21:dc:0d:80:c0:0d:54:7a:5c:6b:c0:5b:d9:af:2e:ec:b6:
f3:d1:6e:3f:d2:92:5c:7d:e0:10:f7:e7:a4:58:ff:a1:e9:b7:
89:5f:d0:de:ea:b4:b3:aa:bb:24:ab:ff:c7:2a:39:aa:33:72:
85:30:21:b3:bd:b7:3d:82:02:84:4d:21:ba:5d:be:c3:74:fb:
0d:5b:cc:9b:9e:00:13:b9:da:11:d1:98:db:51:5d:2f:98:fa:
32:d4:dd:ae:fc:90:b4:89:f3:08:c5:c6:5b:f4:be:e4:86:0c:
c3:45:71:9e:6d:20:5c:ce:af:fc:92:c0:b5:cd:b2:fe:aa:3a:
47:b1:e4:8f:6a:b9:ec:1c:3a:76:be:4e:d9:ae:03:69:1d:3a:
f8:49:70:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 02:59:08 2025 by rpki-client