Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/dQTTvLSXL1jBeleNrp5dooCctrA.roa
File: dQTTvLSXL1jBeleNrp5dooCctrA.roa (raw, json)
Hash identifier: ArSEDDg7ckeM59iMLsJhwetA+h5pkCW5BE1r1PV9FTw=
Subject key identifier: 75:04:D3:BC:B4:97:2F:58:C1:7A:57:8D:AE:9E:5D:A2:80:9C:B6:B0
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 6A14E25E
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/dQTTvLSXL1jBeleNrp5dooCctrA.roa
Signing time: Sat 12 Feb 2022 23:09:30 +0000
ROA not before: Sat 12 Feb 2022 23:09:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1779753566 (0x6a14e25e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 12 23:09:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7504d3bcb4972f58c17a578dae9e5da2809cb6b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4c:e5:b6:bf:3e:49:c3:b7:c2:60:a9:2d:71:
e0:e6:7b:1c:69:5b:6f:24:f1:0b:15:d0:f5:b0:83:
4a:e1:96:b9:d6:43:c7:aa:b3:79:99:79:c0:c1:72:
91:1b:12:ec:03:d2:a9:5a:57:ef:f9:5d:40:d8:df:
cb:c8:77:2b:be:2e:06:51:77:50:b8:88:9e:ea:bf:
28:39:e0:38:7d:9a:8f:31:69:e4:cc:12:50:39:95:
07:bf:4f:84:29:78:a1:fa:1b:eb:b1:57:4d:b2:ad:
68:de:c2:b8:b8:2c:d1:e9:2f:23:ef:30:a1:da:97:
66:d7:2b:69:47:e4:66:c5:0b:c1:5a:78:df:a9:48:
5f:3a:83:a3:a8:f7:96:ad:64:b8:0c:a0:3b:de:84:
34:3f:42:82:14:e3:56:b5:36:2f:7c:1c:1c:14:b5:
12:76:58:ad:79:4a:55:9c:da:29:98:4d:bc:dc:99:
e6:66:fc:b4:a9:9b:7b:c9:3c:22:59:f4:ed:a5:04:
5e:b5:e6:40:70:0b:89:cd:ae:e1:73:f9:1d:e2:c6:
a7:26:b2:57:60:ea:6b:bd:32:a1:e4:96:fc:93:31:
75:b2:65:68:ea:fe:48:95:72:e1:6f:b1:4e:7b:cc:
f9:55:e3:59:ce:d6:d6:3f:42:a3:89:85:3a:af:90:
67:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:04:D3:BC:B4:97:2F:58:C1:7A:57:8D:AE:9E:5D:A2:80:9C:B6:B0
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/dQTTvLSXL1jBeleNrp5dooCctrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
10:65:6f:57:aa:2f:d5:f7:22:38:ce:83:1f:3c:a2:51:8b:c0:
57:3d:ad:bb:8d:2f:6c:c0:64:ad:3d:b8:bf:6a:25:bb:44:7c:
f8:1b:6b:00:7f:3d:e1:23:79:89:bc:85:b4:ff:4c:60:36:42:
eb:c1:ca:a4:f0:0d:cb:44:4c:df:4b:6d:44:ad:c8:0a:b3:55:
b0:05:cd:fd:e5:bb:f9:d5:2d:aa:06:bb:59:90:50:eb:8b:4c:
7d:56:53:a3:32:39:36:c0:75:8e:80:d9:ed:41:ae:10:63:4f:
a4:c4:58:28:0f:e6:c7:19:ce:3e:82:52:8d:ae:c4:2d:d7:9d:
e8:b8:43:d8:be:e3:11:a8:a5:38:94:37:7d:c3:3c:45:41:71:
e0:98:93:e8:36:e3:a6:77:1b:ef:b5:77:df:d7:13:2e:e5:ae:
56:72:31:7c:ff:88:77:b5:27:07:08:c1:bf:58:ea:ca:77:21:
b2:3a:40:31:e8:b6:65:2d:19:37:e6:2c:48:ff:04:13:f7:a1:
81:be:ee:e3:dc:ec:fd:14:0e:1b:76:44:cc:74:8e:20:1b:c2:
10:85:0b:ad:fc:53:fe:24:75:9f:06:98:84:81:50:d1:76:39:
b6:8b:44:d9:08:ac:45:d8:a7:31:ff:35:59:3b:2c:98:ad:4b:
91:d4:d7:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:36:17 2025 by rpki-client