Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/blbG1_J4SxV0DiRwS4ISJpM8aXI.roa
File: blbG1_J4SxV0DiRwS4ISJpM8aXI.roa (raw, json)
Hash identifier: 0VlbfIAZQPHE3X/0YrlkasWFVoHIutzt6ZpU4jOqtmI=
Subject key identifier: 6E:56:C6:D7:F2:78:4B:15:74:0E:24:70:4B:82:12:26:93:3C:69:72
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0187DAA7806420865CB5FCD9A7B179BCDC81
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/blbG1_J4SxV0DiRwS4ISJpM8aXI.roa
Signing time: Tue 02 May 2023 04:10:23 +0000
ROA not before: Tue 02 May 2023 04:10:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:da:a7:80:64:20:86:5c:b5:fc:d9:a7:b1:79:bc:dc:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 2 04:10:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e56c6d7f2784b15740e24704b821226933c6972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:34:fb:d4:1f:d5:ed:19:2b:fe:bd:a9:15:a1:
4f:aa:29:f3:63:7b:e9:24:b1:be:e9:d7:12:89:1a:
7e:a8:79:9d:af:78:a1:55:5a:f9:10:5a:94:72:69:
5e:7b:d8:8a:ce:fe:d2:9c:db:64:ba:e7:5a:ed:4b:
f0:e6:5d:77:06:b9:7d:95:10:67:63:a7:2d:7a:31:
10:11:2b:54:64:7a:6c:50:e7:a0:76:c3:c0:27:74:
56:c2:0e:ec:dd:13:16:a0:c2:9f:d5:70:fb:1d:5c:
fc:c9:6f:d3:eb:35:db:fd:74:0d:38:bd:56:22:98:
b7:90:85:6f:9e:52:bb:51:4c:8d:5e:dc:4a:1c:77:
dd:0d:ad:2e:fc:b6:9a:9d:f2:fb:e4:95:18:95:ea:
b1:5f:35:53:3c:01:59:45:a0:d9:f0:e5:f6:3e:f6:
18:cd:db:9c:67:6b:10:1d:2a:21:d3:9c:ab:9c:56:
81:a0:d3:ad:57:b5:21:a5:28:78:7d:da:fb:6f:43:
ed:3c:fb:d3:f7:cb:86:af:ed:d9:29:cd:2a:7c:fe:
5c:98:09:e6:1d:9c:a1:df:64:f6:f3:84:8f:0e:de:
13:a6:97:68:7f:19:53:46:1b:2c:2b:48:80:be:77:
c0:ab:7f:22:e9:d8:56:ad:d1:aa:69:91:fc:04:ec:
68:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:56:C6:D7:F2:78:4B:15:74:0E:24:70:4B:82:12:26:93:3C:69:72
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/blbG1_J4SxV0DiRwS4ISJpM8aXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
82:4b:79:dc:1c:28:cd:82:28:d7:a5:b5:31:46:6d:62:1f:33:
a6:6d:29:07:dc:b6:be:e8:0d:80:ea:b9:b0:0e:b9:a9:13:f9:
2f:e1:d2:d3:08:de:e9:3a:8a:4a:8a:97:09:ad:99:32:5b:bf:
82:ad:01:a4:30:8f:f8:7e:3f:1f:35:75:b8:f3:c2:b7:07:69:
5e:6a:b9:b7:32:6a:02:99:32:c6:df:79:38:dc:6b:cd:05:11:
d9:99:36:92:0f:72:89:fd:3a:3b:2a:af:4b:b7:ff:e6:82:54:
5e:58:27:99:67:1e:f3:19:df:76:96:81:3c:73:24:2f:36:7d:
ce:09:c2:50:94:e2:3e:92:08:9e:d5:41:db:e4:7e:40:3e:55:
41:15:a5:c2:9e:c6:0c:c4:52:ee:cc:e8:b4:39:13:a6:24:17:
12:5d:37:31:b2:47:0d:e5:58:e2:77:8c:92:03:e3:9a:aa:60:
5e:5d:57:bd:5e:9e:58:c8:81:af:8b:69:b9:a6:e4:7f:04:29:
82:83:b7:56:a2:32:a7:83:90:c2:d7:04:23:45:c6:bf:82:21:
2d:89:83:e3:92:f7:d7:21:8d:60:7d:af:10:6b:32:7c:a0:2a:
a6:e6:3d:4a:4b:99:71:61:c7:a1:a5:c7:9c:79:34:36:93:a7:
c8:8c:34:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 08:25:08 2025 by rpki-client