Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/fEGJrNsf4jAreBGCZRFij-OAudw.roa
File: fEGJrNsf4jAreBGCZRFij-OAudw.roa (raw, json)
Hash identifier: Gt7Zn845NmMVqaxQPsFBTH/KeS7EpsnjT+fwYZdDJXg=
Subject key identifier: 7C:41:89:AC:DB:1F:E2:30:2B:78:11:82:65:11:62:8F:E3:80:B9:DC
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018552D83E2CDE7B1F5FE6B721B665A47A26
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/fEGJrNsf4jAreBGCZRFij-OAudw.roa
Signing time: Tue 27 Dec 2022 09:09:41 +0000
ROA not before: Tue 27 Dec 2022 09:09:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:185:3dcc:d8f/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:52:d8:3e:2c:de:7b:1f:5f:e6:b7:21:b6:65:a4:7a:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Dec 27 09:09:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c4189acdb1fe2302b7811826511628fe380b9dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:62:08:d0:d7:60:b7:ca:72:74:81:de:24:c3:
b5:ba:b1:8b:48:10:e5:c5:82:56:b2:44:d8:2a:0a:
07:95:4c:33:85:ae:42:41:64:8d:ba:d0:7b:58:46:
aa:11:de:19:b0:59:26:9d:f2:e5:4b:fc:4a:fa:4a:
d1:d0:64:8a:12:22:28:3f:49:ca:a0:65:9f:ad:fd:
e4:ce:f0:e3:70:55:13:65:a6:92:77:84:c5:65:05:
cc:70:d8:b8:e3:3b:ad:a8:11:82:2d:63:7f:26:c9:
09:3f:d8:32:c8:04:51:2b:a7:ec:40:42:69:2e:d0:
f6:ec:8e:b9:38:16:c9:d9:3d:b1:7e:dd:03:77:fb:
9d:46:0f:90:22:ca:72:85:b6:12:30:0a:1d:a3:19:
e4:03:64:80:16:2d:6f:d5:74:63:06:f4:ed:c5:f5:
2a:76:01:26:f0:ff:9f:fd:25:13:25:64:ca:68:86:
d4:17:58:00:a1:34:ac:e9:26:d2:e2:50:26:6c:13:
9f:e7:16:35:c1:95:94:bf:8d:53:9b:c3:60:d1:d4:
38:b0:d9:38:bc:1f:ae:af:3c:49:f3:eb:9c:4d:36:
f6:0b:c4:07:9b:4a:14:27:ed:de:63:82:c3:37:90:
00:87:a6:f4:66:92:b8:72:0a:58:a9:ed:c4:d7:25:
f1:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:41:89:AC:DB:1F:E2:30:2B:78:11:82:65:11:62:8F:E3:80:B9:DC
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/fEGJrNsf4jAreBGCZRFij-OAudw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
96:77:f0:9c:09:90:7e:12:d2:c7:fb:06:0d:48:a4:e6:f1:65:
88:e3:e5:04:49:1c:19:db:d9:cb:6e:c7:7a:58:bd:13:16:26:
bc:62:78:de:e6:00:61:4a:b2:c6:82:2e:f9:33:ec:89:04:50:
11:2b:50:77:35:75:20:07:e6:3e:7f:70:45:c7:d1:f1:99:6d:
8d:dc:d0:aa:cf:2b:da:54:f7:9c:2a:ad:bd:03:5d:3f:1e:d3:
1a:3d:4d:93:dd:fe:62:ea:4d:be:8a:84:fc:e8:8e:36:03:35:
24:cc:11:a4:e2:ce:85:07:e8:f1:c0:1e:90:16:83:0f:76:a7:
6d:dd:b4:19:6e:2e:0f:a5:c8:c4:f2:ce:80:76:ee:ba:e6:68:
86:db:d1:10:e9:43:29:71:d1:ae:8b:65:2e:ef:01:0d:a2:44:
10:d7:47:61:b5:e4:47:f9:03:0c:21:6b:b3:81:85:aa:59:a6:
74:ce:57:80:fa:cd:78:73:8d:ab:18:5e:ab:15:e2:14:61:3f:
3d:64:be:a0:b7:33:27:6b:06:bf:52:44:b2:5e:20:08:45:35:
c5:5e:20:58:76:89:fc:29:62:17:20:bb:ef:d2:25:b9:f0:99:
94:27:44:00:ea:81:61:3c:1b:bf:cf:45:9d:1a:a7:20:bb:5e:
e5:64:5d:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:36:18 2025 by rpki-client