Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/dwhblZUvLbti7PQYIADOqJMnTxo.roa
File: dwhblZUvLbti7PQYIADOqJMnTxo.roa (raw, json)
Hash identifier: a+SQnhYBIAu6NwqtdaBrq5AvE44LIi58kT4AB3OsBSU=
Subject key identifier: 77:08:5B:95:95:2F:2D:BB:62:EC:F4:18:20:00:CE:A8:93:27:4F:1A
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 7FB18606
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/dwhblZUvLbti7PQYIADOqJMnTxo.roa
Signing time: Fri 29 Apr 2022 23:08:40 +0000
ROA not before: Fri 29 Apr 2022 23:08:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:180:466e:42dd/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:180:457:1e3f/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2142340614 (0x7fb18606)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 29 23:08:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77085b95952f2dbb62ecf4182000cea893274f1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:53:2f:f1:b6:01:cb:f2:5e:06:e9:a1:25:82:
54:53:d2:46:5d:15:7c:3e:45:5f:8e:2f:67:ba:31:
75:55:aa:c9:3c:6c:20:38:31:ee:6e:9d:38:0d:d0:
78:6e:33:9c:91:f0:97:e2:f0:0e:ee:49:be:bc:4d:
67:f4:5f:5f:14:47:fd:2e:2c:4a:0a:df:3a:15:31:
b4:42:e9:a8:8e:8e:e7:d5:2b:23:97:6a:be:2c:ce:
36:23:01:45:2b:e7:81:8e:9e:bf:79:59:63:95:44:
01:dd:70:4a:bb:6c:82:d9:a8:3c:c3:9e:13:fd:2e:
22:21:eb:85:52:da:cb:52:b7:fc:27:94:8a:1c:c9:
fd:3b:79:22:d5:03:be:49:70:9f:42:a3:0e:7e:dd:
63:e2:86:c8:d9:c1:03:41:77:22:fb:67:20:de:4a:
4f:2f:2b:09:6f:77:fe:94:d8:cd:3b:92:b9:b3:1b:
d9:c3:3c:63:ac:c7:a5:b2:49:93:d6:40:5b:b2:92:
01:b7:14:92:89:7a:cb:91:97:4e:ad:b4:79:b5:c6:
28:72:ea:00:d4:e5:c9:20:51:69:9b:06:48:ab:d7:
dd:81:d9:8c:08:0f:2f:6d:40:1f:6f:d4:12:b1:1f:
c2:14:ff:a7:46:ae:38:b3:93:1a:f1:4c:cd:9a:56:
cf:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:08:5B:95:95:2F:2D:BB:62:EC:F4:18:20:00:CE:A8:93:27:4F:1A
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/dwhblZUvLbti7PQYIADOqJMnTxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
8b:49:ae:10:a9:66:89:51:14:e1:b5:ad:28:d9:6d:62:fd:de:
d2:05:de:a4:c9:c6:e1:10:42:09:b7:3c:30:f7:d6:2d:ab:4d:
80:d9:09:6c:eb:bf:c3:a1:48:83:b6:c2:2e:e6:b2:93:8a:4c:
1b:f9:d8:5c:9b:2f:0d:ea:c0:a8:7b:6d:2b:d2:46:46:19:b5:
2c:d2:df:7f:eb:6c:f9:4b:c7:04:4b:4c:ad:4c:9c:be:4d:fc:
ad:b6:df:89:83:f0:bb:eb:7f:ba:1d:d5:c0:fc:41:59:a7:cd:
05:e0:d4:56:67:f1:e7:5f:70:a9:1f:48:0c:2d:ca:2c:39:1b:
af:46:80:57:cc:2a:3e:f9:95:bf:21:89:93:1d:e6:0a:d5:c0:
0c:9a:cc:40:93:9c:fd:c7:eb:82:1c:f1:d4:ac:7f:b1:c5:84:
c0:7a:48:35:18:bd:c7:5b:eb:18:1d:84:ec:41:b5:39:23:19:
f8:22:d1:61:4e:c5:6b:cf:e6:73:be:79:a7:6f:c1:c0:6a:37:
b8:d5:2f:98:0a:08:84:ae:5a:42:fe:ce:e5:11:b7:40:79:95:
de:45:7d:b2:33:2b:e5:aa:cb:1a:af:15:88:de:3c:9b:6c:a7:
c2:39:7b:b8:9e:dc:0e:b5:bf:aa:f5:6a:db:4c:89:bc:e1:5a:
15:37:30:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 21:35:17 2025 by rpki-client