Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/d0SKnJt2dhHlFLhv1K5Pz6cXiio.roa
File: d0SKnJt2dhHlFLhv1K5Pz6cXiio.roa (raw, json)
Hash identifier: 2i3qdDomFCL1qWrKzYOUQskKNkHWEIdfVOH0ZA08qIg=
Subject key identifier: 77:44:8A:9C:9B:76:76:11:E5:14:B8:6F:D4:AE:4F:CF:A7:17:8A:2A
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 69AF5CC5
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/d0SKnJt2dhHlFLhv1K5Pz6cXiio.roa
Signing time: Fri 11 Feb 2022 11:08:32 +0000
ROA not before: Fri 11 Feb 2022 11:08:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:17e:d600:60b0/128 maxlen: 128
2001:67c:64:ffff:0:17e:d524:ead9/128 maxlen: 128
2001:67c:64:ffff:0:17e:d9a6:5e4a/128 maxlen: 128
2001:67c:64:ffff:0:17e:ddba:7b5e/128 maxlen: 128
2001:67c:64:ffff:0:17e:db26:e5c4/128 maxlen: 128
2001:67c:64:ffff:0:17e:dab9:26f6/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:17e:da82:41aa/128 maxlen: 128
2001:67c:64:ffff:0:17e:dd83:3b9e/128 maxlen: 128
2001:67c:64:ffff:0:17e:dcde:5809/128 maxlen: 128
2001:67c:64:ffff:0:17e:d938:ba2e/128 maxlen: 128
2001:67c:64:ffff:0:17e:d85c:d348/128 maxlen: 128
2001:67c:64:ffff:0:17e:daf0:4034/128 maxlen: 128
2001:67c:64:ffff:0:17e:dc02:dc22/128 maxlen: 128
2001:67c:64:ffff:0:17e:d592:92a4/128 maxlen: 128
2001:67c:64:ffff:0:17e:d7ee:e040/128 maxlen: 128
2001:67c:64:ffff:0:17e:d6a5:23ae/128 maxlen: 128
2001:67c:64:ffff:0:17e:d901:fecb/128 maxlen: 128
2001:67c:64:ffff:0:17e:d7b8:3101/128 maxlen: 128
2001:67c:64:ffff:0:17e:a0dd:2f5b/128 maxlen: 128
2001:67c:64:ffff:0:17e:d826:2565/128 maxlen: 128
2001:67c:64:ffff:0:17e:dc39:b603/128 maxlen: 128
2001:67c:64:ffff:0:17e:db5e:7e8/128 maxlen: 128
2001:67c:64:ffff:0:17e:d713:9aeb/128 maxlen: 128
2001:67c:64:ffff:0:17e:d55b:c264/128 maxlen: 128
2001:67c:64:ffff:0:17e:d66e:8559/128 maxlen: 128
2001:67c:64:ffff:0:17e:d96f:7a13/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1773100229 (0x69af5cc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 11 11:08:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77448a9c9b767611e514b86fd4ae4fcfa7178a2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4c:b8:76:4e:9e:9a:35:4f:e3:b9:bf:26:80:
d7:a9:95:7c:5f:f5:80:45:2f:7e:80:6e:ef:67:ad:
bd:99:f9:d8:01:a1:2f:24:be:a7:ca:e5:a3:f5:c8:
91:da:d8:e7:1a:9e:f6:c2:47:16:bc:85:37:14:12:
cb:5f:ae:14:ea:74:4e:70:2f:d1:d2:5b:ad:66:e5:
dc:70:96:b4:6c:fc:32:9f:48:1f:98:90:7a:9b:61:
72:a6:d0:34:e3:50:e1:68:2f:bc:84:4e:c6:c5:b1:
6d:f4:e7:6d:c0:5a:a9:d9:2d:8e:2f:da:f9:59:2c:
aa:ea:c1:dc:bb:45:e3:24:38:4e:fb:a7:d2:b4:ef:
21:0b:b7:fb:7f:5c:4e:20:8c:19:90:eb:9f:38:fc:
9f:69:d6:36:81:4a:ce:d8:66:a2:09:52:70:b8:e9:
55:07:3b:99:22:6c:46:be:63:8c:7a:7f:fa:e4:6f:
ee:e6:ed:f1:1c:25:af:96:89:2b:6c:f7:90:cc:1d:
68:51:1b:b5:5b:55:41:5d:d8:ca:d5:65:f0:49:6e:
d6:0b:2b:f6:46:08:17:c1:d0:c1:91:1a:f5:b2:01:
25:ab:93:d6:43:b7:36:e6:28:1f:46:e6:5c:3c:e9:
c8:6e:95:6e:14:e8:9f:a1:03:d9:ce:7c:f7:cf:cc:
69:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:44:8A:9C:9B:76:76:11:E5:14:B8:6F:D4:AE:4F:CF:A7:17:8A:2A
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/d0SKnJt2dhHlFLhv1K5Pz6cXiio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
89:0e:d4:a5:16:b8:2f:a7:fe:9e:85:e6:de:85:59:7e:e3:31:
bf:f5:00:72:44:53:54:06:52:1d:6c:07:80:f7:00:7c:7b:4a:
8b:b1:29:84:32:09:ba:2a:97:77:ec:ff:b8:74:2e:dd:25:05:
0b:44:e8:88:16:cf:ce:ed:75:4d:92:db:97:05:4c:6a:de:fc:
7e:65:32:2c:41:ea:99:ba:7f:1a:c3:36:4a:6e:c1:d5:af:43:
d4:ef:7d:df:72:9b:46:0a:c4:01:f0:b6:e8:d1:af:c8:b0:52:
2b:ee:44:6d:47:87:ad:73:f6:54:cd:90:0a:4a:f5:00:0e:81:
c2:17:f8:9d:08:61:1c:2c:07:92:47:86:b4:92:63:50:a9:95:
f5:ef:d6:4d:c3:13:54:f2:e1:89:8b:47:6d:30:ef:5d:b7:d0:
8e:7e:ab:63:7f:d7:cd:cc:87:9f:62:b6:b6:ee:70:cf:7a:21:
66:89:96:03:f9:49:64:d2:5f:f8:3c:10:7d:32:40:e6:c2:47:
82:2f:84:47:a6:95:af:81:d8:b2:62:39:eb:ef:ba:26:79:db:
a8:d1:91:24:70:6d:db:a1:20:3e:a0:fe:c3:0f:bc:8f:49:a8:
d0:3d:f4:d7:df:00:92:30:d5:b6:81:40:22:f3:67:12:ef:29:
86:f0:a9:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:35:48 2025 by rpki-client