Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/dusdK--psD7lSPSCJjOlj2rNPjE.roa
File: dusdK--psD7lSPSCJjOlj2rNPjE.roa (raw, json)
Hash identifier: y30ycGZJSefw/mTMe/THqsX1A9LMGxTh0+glCGujyVM=
Subject key identifier: 76:EB:1D:2B:EF:A9:B0:3E:E5:48:F4:82:26:33:A5:8F:6A:CD:3E:31
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 71EAE756
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/dusdK--psD7lSPSCJjOlj2rNPjE.roa
Signing time: Sat 12 Mar 2022 12:09:49 +0000
ROA not before: Sat 12 Mar 2022 12:09:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:17f:1bf4:40b5/128 maxlen: 128
2001:67c:64:ffff:0:17f:20ac:a2bd/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1911220054 (0x71eae756)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Mar 12 12:09:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76eb1d2befa9b03ee548f4822633a58f6acd3e31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:78:59:73:80:f7:c4:9e:96:5f:d4:cc:28:e5:
a5:90:b5:63:11:f1:1a:89:67:08:7f:a3:c7:bb:29:
d0:1f:f9:a1:0a:13:60:79:b2:88:91:fb:ab:d4:e5:
c7:e3:ce:3f:15:3b:b6:d9:52:79:31:32:e2:c9:ed:
cd:6d:7d:09:c0:36:31:ef:bd:db:c7:6d:f7:ac:6e:
d7:6f:69:1c:3c:63:16:cf:ec:b8:ae:a6:c2:7c:b8:
a9:54:63:4b:06:5d:03:37:43:68:23:7b:97:98:3f:
59:94:47:3f:f1:dc:c4:43:28:3a:c4:09:77:0e:6c:
9f:d0:a8:bc:fd:6e:28:ca:b5:11:e2:6a:f4:a2:36:
90:79:fd:31:11:0d:49:3f:d2:0d:71:d9:9e:cf:0d:
e8:06:ac:7c:9d:58:db:0a:fd:1d:3f:73:e4:28:00:
c7:c3:d3:f2:bc:e5:40:0f:6f:63:19:4e:07:ee:2d:
35:1c:d5:83:0f:70:c6:42:47:8e:0d:3d:c1:69:70:
8f:3f:61:45:e5:4e:c9:33:71:06:1e:fb:30:24:7b:
a6:ca:62:51:82:86:48:32:a8:23:38:40:d3:df:cd:
a0:c1:da:3a:91:6b:17:e6:b5:5b:15:d4:92:03:ff:
01:3c:10:65:ea:8f:a6:28:fd:44:ce:91:dd:4f:50:
25:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:EB:1D:2B:EF:A9:B0:3E:E5:48:F4:82:26:33:A5:8F:6A:CD:3E:31
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/dusdK--psD7lSPSCJjOlj2rNPjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
74:c5:1a:bc:d0:8a:70:f6:d4:83:e0:7b:ea:64:d4:d7:0a:a0:
a3:94:43:ff:a0:55:8f:b6:c1:6d:0e:98:e9:41:40:66:1a:00:
74:12:25:24:da:b7:44:0a:bb:1b:cf:51:02:56:d4:73:e0:b4:
51:c4:2c:46:2d:b5:30:c1:8f:94:5e:f1:35:13:6d:2c:d2:31:
30:34:02:d9:5e:d5:49:f2:f9:9b:0a:43:69:18:7e:8d:0f:d7:
f8:4f:a6:77:83:8a:21:9b:a7:ed:8b:14:7f:f0:53:58:52:de:
60:c4:9d:86:e1:ef:85:df:e8:94:23:69:bb:84:b6:21:60:96:
35:d7:d5:e8:c3:65:c9:b4:85:81:e1:61:4e:80:1d:ba:2a:c5:
2d:69:41:c3:ce:68:3b:fe:af:75:6a:37:ec:c8:0b:3d:6e:d2:
22:e4:f2:93:a3:f1:03:53:3e:27:46:39:03:05:ff:ff:fe:0f:
f6:4c:9f:33:4e:9c:c8:ff:ae:70:51:16:d8:6a:7d:0b:9d:c2:
15:1b:e8:2f:bb:ba:07:68:86:b8:57:32:f0:6e:76:90:ac:3d:
c9:60:fb:44:71:11:67:10:10:e7:fc:59:ff:0e:85:4d:a1:0e:
49:cb:d5:5e:9d:9c:87:2a:11:45:b8:c8:2d:2a:16:9a:50:87:
df:73:08:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 07:17:43 2025 by rpki-client