Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/edArohCfLm6wVG5FISZRCFdXUsQ.roa
File: edArohCfLm6wVG5FISZRCFdXUsQ.roa (raw, json)
Hash identifier: 6Lt/6v72uGa5LRIv+rfbddW6xfPDxrIMjtsaNu71Xt4=
Subject key identifier: 79:D0:2B:A2:10:9F:2E:6E:B0:54:6E:45:21:26:51:08:57:57:52:C4
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01878127CB9A7C817E5A6F4371CC7B921209
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/edArohCfLm6wVG5FISZRCFdXUsQ.roa
Signing time: Fri 14 Apr 2023 19:04:41 +0000
ROA not before: Fri 14 Apr 2023 19:04:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:187:8127:9938/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:81:27:cb:9a:7c:81:7e:5a:6f:43:71:cc:7b:92:12:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 14 19:04:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79d02ba2109f2e6eb0546e4521265108575752c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:90:5c:c3:e5:0f:40:00:d8:d8:29:6b:fe:9a:
6d:20:eb:3f:b7:fd:97:98:ac:0e:9c:6b:84:d0:ea:
8b:c5:2f:cd:88:a3:2e:b1:2c:2e:61:48:6b:c8:cc:
64:1b:f5:53:d8:27:cb:48:e5:92:1f:7f:14:6f:7d:
72:11:82:52:2b:9f:44:29:fb:1e:76:66:e0:06:c2:
bb:f8:35:40:4d:9e:84:4a:bb:d4:ef:7e:c1:80:08:
73:8b:ef:36:c8:df:00:80:2a:b9:78:2d:3f:7c:00:
db:64:df:12:5d:06:ac:d5:74:d0:d2:e0:38:cf:63:
f8:c4:eb:3d:02:64:a0:4f:f8:02:23:38:c2:ac:42:
db:f5:aa:5a:1b:94:9d:30:19:20:42:9d:89:af:90:
e5:17:8b:97:a2:cb:b0:2a:a9:66:76:6c:ad:4c:3a:
fb:10:dd:d1:d6:9a:37:55:0b:bf:38:1e:81:0a:fc:
36:dd:35:00:04:61:73:d7:3d:8b:2f:66:05:dd:10:
99:87:4c:40:8e:84:77:a0:52:fa:0c:92:9b:14:ea:
32:51:a0:b8:33:9d:d7:5b:a7:4c:cb:f7:64:97:f7:
ee:9a:2f:ea:1e:77:f5:3f:8e:bb:d7:c2:af:f3:ef:
0e:1b:5e:fe:26:e1:fc:40:f7:e4:cd:e2:69:ed:65:
7b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:D0:2B:A2:10:9F:2E:6E:B0:54:6E:45:21:26:51:08:57:57:52:C4
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/edArohCfLm6wVG5FISZRCFdXUsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
64:21:5f:19:ad:37:52:4c:9a:fb:97:f2:ee:0c:9c:19:fa:83:
eb:b9:57:6d:f6:1e:78:de:34:74:b0:cf:69:30:86:9c:0d:ea:
ec:ec:2a:7b:06:f4:f6:e4:ba:69:98:11:3e:4c:ab:b5:f9:f1:
23:ec:a5:3c:f9:7d:c3:cc:1c:65:11:d0:c5:9e:41:82:04:12:
12:fe:e9:7e:0c:91:02:ab:ec:65:ca:f5:3f:42:18:58:65:af:
cf:ba:f7:04:4b:03:25:e7:56:ee:91:35:4d:fe:9f:e7:cd:d4:
08:f2:38:c1:4c:0b:bb:88:78:af:ae:a0:22:1e:4d:31:c6:37:
a8:ab:0a:09:21:84:a4:18:17:64:5c:03:de:18:d3:cc:59:2f:
38:b9:14:a5:e1:d3:c2:2d:f7:73:6d:0f:d8:cd:eb:cd:c8:48:
b0:18:de:ab:91:c4:43:36:e2:e2:5b:3c:c2:3e:65:7d:59:81:
3d:a4:53:78:b6:22:da:9e:eb:d6:c0:93:29:10:b3:a2:43:e5:
e4:9d:de:a3:db:16:e1:1d:67:70:00:cc:5d:a0:01:86:0b:40:
50:f5:a0:fd:c3:10:85:cd:1a:3e:36:be:13:56:d8:7b:ff:99:
6b:5f:8d:30:b2:4c:30:51:73:57:4b:af:86:62:19:27:77:d9:
72:46:cf:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 03:08:12 2025 by rpki-client