Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/fADSZlhJUCvnwaR2lgxhHC6NItk.roa
File: fADSZlhJUCvnwaR2lgxhHC6NItk.roa (raw, json)
Hash identifier: z5IbAQHatgD8qXiyxtSO54BRfaJu3qFRAkFKt4hqMF0=
Subject key identifier: 7C:00:D2:66:58:49:50:2B:E7:C1:A4:76:96:0C:61:1C:2E:8D:22:D9
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01882966F967DD11A9F1B195482270071E10
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/fADSZlhJUCvnwaR2lgxhHC6NItk.roa
Signing time: Wed 17 May 2023 11:09:54 +0000
ROA not before: Wed 17 May 2023 11:09:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:29:66:f9:67:dd:11:a9:f1:b1:95:48:22:70:07:1e:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 17 11:09:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c00d2665849502be7c1a476960c611c2e8d22d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:cb:03:4c:38:a5:9d:7f:67:66:be:2d:12:0e:
90:17:1a:7e:dc:3e:61:22:19:1c:95:bb:3d:dd:3c:
23:48:e0:ea:82:5a:f4:49:80:9c:03:b1:c0:78:33:
2f:00:4c:c8:46:3c:56:82:2e:c1:ac:d4:a6:f6:a3:
a1:35:7f:05:c6:63:7f:ae:dd:e8:0b:dd:af:f7:ad:
70:25:9a:5c:6d:cf:f3:92:6c:3f:fb:51:83:c0:33:
11:84:02:77:7e:87:92:d5:1f:19:87:a5:2a:52:f1:
f5:83:c0:bd:e6:32:43:e3:3d:83:90:6c:ed:6b:cf:
17:7e:a7:ba:41:7a:17:af:ab:22:aa:ca:25:86:a7:
5d:a3:af:08:ca:8d:e1:a0:23:2a:31:16:a6:29:0a:
18:c1:81:74:a0:99:e1:98:9e:d6:3a:02:12:28:10:
55:e4:2f:9f:07:91:03:46:fc:44:47:d0:f3:a3:33:
7e:dd:26:0a:34:37:62:e3:72:81:ec:fe:b6:b6:fb:
4c:e4:cc:e9:56:cd:8b:7e:b3:44:31:b2:9b:a6:50:
a0:94:e4:5d:e7:6b:3a:02:b2:6e:1b:cc:52:c5:de:
47:0c:3c:81:6e:69:ba:d1:a9:f5:28:5a:10:15:1a:
0f:25:8b:1a:62:27:d7:83:c2:e0:53:c4:b8:0d:98:
e8:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:00:D2:66:58:49:50:2B:E7:C1:A4:76:96:0C:61:1C:2E:8D:22:D9
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/fADSZlhJUCvnwaR2lgxhHC6NItk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
56:4f:f7:17:3a:3c:8d:04:1f:8b:4a:ec:67:2e:6d:44:f9:40:
1e:9a:5b:4a:51:6a:a6:dd:65:5d:63:a9:04:bd:7e:3d:69:34:
6c:69:eb:5c:2b:36:81:8a:97:f7:17:64:66:a2:7d:ab:c6:02:
ac:d8:88:1b:52:0b:aa:87:04:6a:b2:9b:e5:d5:e9:66:a4:57:
0d:1a:f1:c0:7d:c6:42:c6:07:81:af:5d:12:0b:f0:8c:f3:5f:
36:a2:db:1b:e2:5d:a5:a7:d2:88:7f:fd:32:1c:3c:ad:3c:37:
ad:e9:b7:cc:79:aa:c5:b4:f9:15:aa:8c:7f:ce:d9:61:93:72:
8e:cd:9b:6b:72:a7:5b:f7:6e:df:0b:97:46:7b:32:3b:2c:b5:
b0:a9:66:20:26:1a:c8:e4:b9:70:17:1e:98:85:d4:ce:ea:9b:
1a:0d:9f:3b:81:e1:b1:d4:e6:d8:eb:d7:ab:a1:10:58:37:bd:
ff:af:86:8b:c2:2b:8e:ec:ad:12:da:88:2b:1b:a1:ac:f7:0e:
75:d7:9c:cf:62:3b:e5:e8:35:76:68:a9:19:6f:1e:e6:3a:16:
16:c7:64:62:cb:cf:fe:16:39:23:96:03:8b:cd:1b:66:a9:37:
10:8d:71:2e:f9:ff:97:3e:23:d6:eb:ed:2c:68:5f:42:74:af:
23:0e:1e:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 00:48:29 2025 by rpki-client