Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/fyhQklbn6M6uKhK3oVQeJ2ae3Mk.roa
File: fyhQklbn6M6uKhK3oVQeJ2ae3Mk.roa (raw, json)
Hash identifier: ebMX7KuUb7wpdYxMdFStPGjBZuheucMO4T6K/+r33DI=
Subject key identifier: 7F:28:50:92:56:E7:E8:CE:AE:2A:12:B7:A1:54:1E:27:66:9E:DC:C9
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018214A8E86B39683381122BC37B50E3D0E3
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/fyhQklbn6M6uKhK3oVQeJ2ae3Mk.roa
Signing time: Tue 19 Jul 2022 04:13:10 +0000
ROA not before: Tue 19 Jul 2022 04:13:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:14:a8:e8:6b:39:68:33:81:12:2b:c3:7b:50:e3:d0:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 19 04:13:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f28509256e7e8ceae2a12b7a1541e27669edcc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b1:2a:70:d2:c0:19:f3:44:24:4e:ce:b1:cd:
1a:48:55:28:e5:43:80:da:32:d3:b1:39:ce:f5:34:
39:82:3d:7b:65:41:7d:ef:90:3e:c1:80:54:30:ee:
dc:c7:f4:40:97:6f:81:e2:0e:86:39:78:9c:15:9f:
b4:a1:4c:9e:45:58:ca:7e:cb:9c:8f:86:61:5c:ff:
9f:72:3e:99:02:5c:39:2e:e1:8c:c7:41:10:1f:9f:
08:e6:75:1b:71:6f:9a:a8:19:05:d5:ec:73:dd:0d:
83:36:30:19:7d:a6:b9:c2:9f:b3:82:be:d4:31:64:
e1:97:da:ba:a3:29:d1:ef:00:18:7e:ec:fa:b2:1b:
60:69:52:62:e6:f9:31:86:76:1b:f2:0c:86:a3:53:
9c:06:88:e2:3c:6a:ec:a3:66:84:ce:a0:90:d2:60:
0f:6d:89:c0:03:cc:76:ce:b5:0a:3f:e7:71:65:01:
e6:78:91:ff:bb:1c:03:fc:31:d6:23:9e:c2:53:3a:
b5:ec:5e:8b:d5:af:0e:61:f3:cc:fb:4b:2b:f2:36:
6e:5d:a3:99:94:fa:56:4c:c7:b0:e2:e9:4d:e3:aa:
41:6d:e0:95:aa:01:68:8e:e3:dd:ca:66:56:fa:c6:
e1:54:f7:96:93:73:06:f8:60:8b:7d:71:2b:96:f7:
6c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:28:50:92:56:E7:E8:CE:AE:2A:12:B7:A1:54:1E:27:66:9E:DC:C9
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/fyhQklbn6M6uKhK3oVQeJ2ae3Mk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
0a:f7:ba:a9:ae:e6:4e:e8:2b:14:4f:91:f9:29:47:8b:4b:37:
d7:57:eb:42:7f:6a:e1:75:df:06:fe:e9:d8:c9:42:bc:75:11:
a9:f3:c7:36:0f:91:f4:e3:76:53:1f:27:fe:87:8a:9a:7f:69:
8a:1c:55:f5:fa:9e:63:cc:ff:c4:6d:d0:da:8b:17:87:98:1a:
a0:e7:7b:93:5f:81:53:ee:1b:bb:05:df:76:f0:b5:35:ec:83:
0a:32:20:5f:ef:fd:f2:81:bc:00:df:a2:cc:0a:40:28:8e:3f:
0a:56:4c:2a:39:48:dc:6d:08:ac:a1:5c:7a:f4:a6:7f:f8:c5:
a0:f7:ae:8a:bc:58:82:f5:21:82:2a:d5:4d:f3:d4:78:3a:d0:
a5:d9:be:4a:38:0d:f5:a7:6d:cc:76:19:70:c0:cb:4c:fa:e2:
6f:cf:24:5e:54:b9:70:57:cf:23:e8:e4:d2:24:32:51:43:e1:
7c:8d:7c:e6:8c:7b:02:7b:ad:85:df:6e:9e:a9:71:34:4f:da:
63:6b:8e:aa:50:01:74:99:11:1c:82:f5:92:0c:d1:9d:63:96:
95:8f:ce:e0:7f:49:a0:e3:f3:1a:73:f7:1b:5b:70:bb:eb:0b:
92:cd:60:e6:a7:3e:92:c6:8b:e3:ff:34:0b:e8:a0:19:61:9d:
da:fe:f8:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 19:58:28 2025 by rpki-client