Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/g2GPopRzCG70ve7Sjwz4vKvaeeg.roa
File: g2GPopRzCG70ve7Sjwz4vKvaeeg.roa (raw, json)
Hash identifier: Z7RpbRDCCbZiMdee+rPUEy2r7DJjmvfAUxs+OzvCxGA=
Subject key identifier: 83:61:8F:A2:94:73:08:6E:F4:BD:EE:D2:8F:0C:F8:BC:AB:DA:79:E8
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01822D58FE6DA80ACC3AF7A491D44B60E5EC
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/g2GPopRzCG70ve7Sjwz4vKvaeeg.roa
Signing time: Sat 23 Jul 2022 23:16:23 +0000
ROA not before: Sat 23 Jul 2022 23:16:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:2d:58:fe:6d:a8:0a:cc:3a:f7:a4:91:d4:4b:60:e5:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 23 23:16:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83618fa29473086ef4bdeed28f0cf8bcabda79e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:72:a3:96:00:19:b8:48:0b:4d:64:07:29:04:
5e:56:f8:f4:28:18:0d:de:cd:1c:cc:7d:80:c8:60:
f6:df:8e:2c:42:8a:24:17:55:93:db:ee:e1:1e:cf:
c9:eb:0b:1a:08:31:b7:0b:70:c5:2a:4d:52:4d:a8:
3b:81:ca:4e:29:d9:47:99:d3:6d:6c:05:1a:1a:20:
71:dc:6c:8e:31:06:58:04:4a:d8:15:df:a9:e3:7f:
e2:05:5e:e7:76:47:20:73:87:a2:31:19:28:92:38:
d8:ac:b2:fb:31:ee:56:77:c8:6b:22:7b:19:e3:a0:
4e:74:7d:0c:db:cb:37:ca:46:2f:fc:e9:8d:00:03:
56:7d:44:78:77:0e:d4:10:42:72:61:fa:3f:27:95:
06:88:98:7d:60:db:d0:39:81:89:af:ab:23:27:8b:
21:fb:4e:ff:8c:ce:51:30:84:e0:4b:99:30:c9:e4:
6e:b0:5d:90:42:d7:c2:98:1a:ff:71:1d:67:5a:f8:
f2:be:28:f2:e5:d1:8b:eb:50:ca:e7:0c:5d:ff:76:
e0:41:85:e1:96:d0:9f:38:7b:a8:89:44:62:1d:93:
1f:7c:16:12:85:3c:f5:c9:ae:8d:01:c3:34:78:8e:
e5:8a:c2:ba:c7:02:55:67:17:4b:d1:f0:6c:90:ad:
2e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:61:8F:A2:94:73:08:6E:F4:BD:EE:D2:8F:0C:F8:BC:AB:DA:79:E8
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/g2GPopRzCG70ve7Sjwz4vKvaeeg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
63:53:8d:b7:bf:a0:2e:8d:64:1a:c3:f8:e4:6e:46:b5:13:06:
ab:1b:f4:c2:b4:de:96:b9:47:c3:b1:e8:9b:25:7d:54:08:de:
88:48:f7:64:40:27:68:16:60:ee:98:e6:eb:dd:13:a5:49:73:
3b:06:24:6a:cf:56:5f:dd:1b:3d:dc:d4:a4:f3:1d:74:dc:33:
db:8e:d6:e3:e0:e6:c8:23:f8:f4:e0:f0:42:f9:cd:e7:70:a3:
7b:bc:45:e8:93:de:57:70:8a:c0:ec:89:e6:61:52:cc:1c:20:
43:59:2a:89:2a:16:b7:5b:6f:c0:ea:8a:83:b7:d2:6b:a1:b0:
bc:91:ba:d0:4a:bf:09:3b:30:46:14:33:9b:f7:8c:63:7f:95:
26:a5:25:36:c9:99:5e:13:d0:5d:20:53:56:f1:8f:c4:25:3f:
dc:9b:2c:a1:ac:06:08:d3:aa:e4:4f:89:c8:5e:c4:c7:10:a7:
0f:a6:e7:25:28:00:29:e8:dd:3b:fe:67:24:1b:0f:74:8f:65:
91:c5:28:78:ee:86:66:40:fd:8b:0c:33:47:5f:f3:20:3a:91:
f9:a3:99:33:f9:a8:8d:5c:38:57:1b:ff:3f:7b:14:56:7d:3a:
cf:2d:7d:f6:06:1a:7f:81:b4:da:90:0b:df:ba:b3:c4:eb:e0:
a4:7c:ad:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:38:02 2025 by rpki-client