Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cmvtK_bqD724CvGqttmXtqUYTKU.roa
File: cmvtK_bqD724CvGqttmXtqUYTKU.roa (raw, json)
Hash identifier: TiC3Mv2Kzqdg6Cvv2YfB8grxjBk/06ik2BZRCwGmlts=
Subject key identifier: 72:6B:ED:2B:F6:EA:0F:BD:B8:0A:F1:AA:B6:D9:97:B6:A5:18:4C:A5
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 874791A9
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cmvtK_bqD724CvGqttmXtqUYTKU.roa
Signing time: Thu 26 May 2022 05:09:13 +0000
ROA not before: Thu 26 May 2022 05:09:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2269614505 (0x874791a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 26 05:09:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=726bed2bf6ea0fbdb80af1aab6d997b6a5184ca5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:54:89:c5:3d:09:01:ec:76:ec:17:bb:50:4e:
3f:0a:32:f4:02:3d:d6:64:18:dd:e8:38:28:71:6d:
3e:91:f7:c7:e6:6c:65:74:b6:8d:fe:3d:8d:98:1b:
99:c0:4e:be:40:b8:fe:5b:13:f9:74:37:7e:49:e4:
95:03:62:5c:af:ec:f0:fb:c4:54:5b:0d:ea:b5:16:
d0:34:2d:b6:c8:f3:0b:40:60:ed:e4:5c:53:3f:7b:
30:87:92:4a:8d:4e:72:1f:d4:00:e4:9c:e7:8a:5c:
91:03:b7:98:17:45:42:b7:26:ec:2f:69:2a:a4:90:
fb:94:df:e3:39:a2:7e:f8:81:51:62:47:0e:7b:9b:
54:04:99:a0:e2:ee:49:ca:3c:bd:80:3d:96:1d:77:
74:6e:26:c7:09:54:30:3d:e5:2c:24:41:47:e0:ee:
e1:93:da:72:a5:cb:a1:02:a2:c8:2b:e5:2e:be:f1:
b5:a7:5f:f3:4c:45:91:9c:31:cc:7c:45:c8:d0:68:
13:68:62:14:f8:cd:a3:b8:df:47:eb:37:2c:0e:f3:
b5:53:32:c7:ef:f9:ba:7a:25:8f:a0:a6:f6:22:5d:
fa:21:61:7e:af:8d:c0:9d:13:52:4e:bd:1c:21:6b:
2a:ec:92:8e:a7:bb:95:b8:bc:50:94:dc:a8:6c:3c:
d2:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:6B:ED:2B:F6:EA:0F:BD:B8:0A:F1:AA:B6:D9:97:B6:A5:18:4C:A5
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cmvtK_bqD724CvGqttmXtqUYTKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
31:bb:46:d9:28:2f:59:62:9a:b9:19:a8:a7:44:85:98:1d:b4:
15:ef:c2:c1:5c:01:19:fa:bc:7c:43:3c:37:4d:c6:b9:e7:66:
d6:ef:8b:03:d2:ef:88:6d:8f:2e:27:3a:39:bf:4d:1e:90:bb:
7a:e5:ba:f3:1a:12:de:40:ad:ec:67:91:b7:5b:24:91:0b:ba:
e5:e0:0c:60:dc:71:05:88:93:7c:b2:9b:7c:51:bc:d9:3b:78:
8a:df:69:3a:a5:6f:8d:a2:16:06:a0:07:43:08:d6:7e:1e:98:
a6:90:f0:6f:86:64:32:65:54:28:e0:23:ba:57:f5:3e:81:32:
ee:13:fa:99:e7:d8:e7:e5:b1:ed:9c:39:65:6e:4f:62:23:78:
20:ab:5e:10:f4:78:c4:39:bb:ad:05:ae:0b:0a:06:c8:27:ae:
88:5e:62:c6:6f:8d:85:32:92:91:43:ea:cf:5b:4e:e1:54:a9:
5b:0f:86:b4:ba:8b:6f:bd:b6:cb:77:56:65:0c:af:4f:d9:d7:
9e:c1:cb:42:de:61:94:d4:6d:2c:4e:d0:07:91:03:6c:d9:4c:
47:73:26:07:6f:02:d2:02:98:62:eb:ab:6b:90:95:39:01:dd:
3b:6c:d9:ea:c6:5d:64:f3:81:88:c0:ff:8f:b4:84:ac:e1:0e:
79:69:e0:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 18:49:53 2025 by rpki-client