Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ea5aYrK7HacUNqgxHf9QyfI5Zww.roa
File: ea5aYrK7HacUNqgxHf9QyfI5Zww.roa (raw, json)
Hash identifier: foFtBNNNi16gjuVkG4dmhAbkfjhhm0WlS7uygjlYFlU=
Subject key identifier: 79:AE:5A:62:B2:BB:1D:A7:14:36:A8:31:1D:FF:50:C9:F2:39:67:0C
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018608CE223D1009363813C73937E030376E
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ea5aYrK7HacUNqgxHf9QyfI5Zww.roa
Signing time: Tue 31 Jan 2023 17:09:32 +0000
ROA not before: Tue 31 Jan 2023 17:09:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:08:ce:22:3d:10:09:36:38:13:c7:39:37:e0:30:37:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jan 31 17:09:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79ae5a62b2bb1da71436a8311dff50c9f239670c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6e:b3:da:48:4b:d9:8f:76:a7:97:ed:7a:db:
6e:86:33:8c:7c:29:92:d0:a7:55:e3:31:88:8c:a9:
1a:70:48:f1:59:1b:36:e5:fc:96:41:37:c3:68:12:
7a:79:34:0e:0e:a5:3f:a6:ea:4f:66:4b:f4:5e:0d:
78:60:57:d7:59:a3:00:55:9b:88:29:b7:6b:33:aa:
c4:20:62:c5:f7:c0:b7:18:dd:fa:0d:20:5a:3b:bb:
3d:9e:fb:12:9c:31:07:cd:81:b6:e6:8e:e9:6a:4b:
1e:cd:fd:c1:2f:ee:35:33:12:9c:48:d7:00:f4:a3:
3c:2e:69:c4:7c:6b:b1:99:ea:4b:64:14:70:da:9f:
e1:c6:5d:6e:03:34:a2:c8:2c:14:fb:95:bc:c8:ec:
d3:f2:83:16:e9:0a:9c:5e:0d:f4:3d:4c:98:33:4e:
0e:0d:fa:41:39:e9:80:87:db:d9:ca:9e:c7:de:4b:
21:b5:0a:e3:ee:20:a0:09:96:aa:3e:e5:3b:9f:af:
0f:76:d7:a6:f7:ab:16:8f:89:c2:3e:6d:da:8f:c8:
07:4a:2a:0e:1d:81:36:5b:f5:ff:02:73:75:c9:16:
ea:19:43:6b:a4:e9:c4:20:cb:64:d2:19:15:72:85:
e7:9c:6d:d2:2a:40:ea:27:c9:f0:b1:7c:56:ac:97:
d4:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:AE:5A:62:B2:BB:1D:A7:14:36:A8:31:1D:FF:50:C9:F2:39:67:0C
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ea5aYrK7HacUNqgxHf9QyfI5Zww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
26:fe:86:50:0c:1b:f7:1d:2c:b0:ee:59:16:45:7b:71:37:a6:
05:81:8f:12:9e:96:28:9e:e4:b3:8e:6c:92:31:74:f4:92:a5:
e2:f0:73:f6:62:09:21:9d:4a:f8:84:0f:77:d8:35:3c:c1:52:
a0:06:b1:1b:b5:93:fa:28:25:50:b8:aa:4b:d3:6f:3e:4e:1b:
c7:5e:56:d0:42:18:96:c7:2d:9c:61:4e:f4:2e:99:65:45:3f:
23:d2:f7:ef:9f:2d:ed:f9:8d:f7:05:e5:f8:1f:35:2b:b7:9c:
c4:13:96:04:45:3e:21:15:e9:69:f3:2a:17:87:61:38:f8:d6:
dd:f2:22:fb:e9:8f:af:4a:c8:2d:b9:4d:76:61:d9:18:0c:11:
51:d9:b6:c0:ef:be:7b:96:e1:3b:81:e2:96:22:48:1a:10:b8:
a7:7c:0f:24:74:17:21:bf:02:d5:67:7c:38:d2:08:60:76:8e:
4d:53:c8:fa:9e:2f:41:75:6e:47:7d:5e:61:34:be:17:5a:4f:
1e:89:d6:fe:21:2e:7a:39:5c:40:94:c8:2d:a0:07:d6:a8:ac:
b7:1b:ff:c0:61:d4:d6:4b:c3:0a:25:3f:d6:60:e1:1c:5f:56:
56:0d:1c:16:4d:ea:45:b1:68:e7:d4:9a:dd:9c:1f:7e:d8:8c:
fb:d0:19:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 03:34:07 2025 by rpki-client