Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/goy9gTYSxGlKtzOXveOjmUkBaqw.roa
File: goy9gTYSxGlKtzOXveOjmUkBaqw.roa (raw, json)
Hash identifier: n65M8KIEvFGATjIGQXYr5geVF9rGZxhKJLS6d9KQVlQ=
Subject key identifier: 82:8C:BD:81:36:12:C4:69:4A:B7:33:97:BD:E3:A3:99:49:01:6A:AC
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018A06A22892178AF5845DBB3042DED1AB63
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/goy9gTYSxGlKtzOXveOjmUkBaqw.roa
Signing time: Fri 18 Aug 2023 03:13:24 +0000
ROA not before: Fri 18 Aug 2023 03:13:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:189:a0e4:5c7d/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:06:a2:28:92:17:8a:f5:84:5d:bb:30:42:de:d1:ab:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 18 03:13:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=828cbd813612c4694ab73397bde3a39949016aac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:fe:a7:ff:3a:14:21:0a:d9:f3:5e:1b:f9:38:
7b:9e:89:93:be:29:87:60:cc:55:19:ca:dc:dc:d0:
69:a0:98:ae:da:98:b9:18:a9:c1:1e:48:1b:04:fe:
f6:5a:5d:d8:79:86:20:46:15:c6:4c:60:e5:00:ad:
b0:11:39:f0:1a:57:20:f0:61:e0:a0:f8:10:30:8f:
bb:25:47:1e:35:f6:20:66:77:8a:cc:e4:1c:38:d6:
59:4f:21:0d:b6:d8:f5:3f:62:bf:50:ff:de:ca:78:
97:14:c1:15:b5:5c:90:1e:a5:cd:8f:2a:69:7b:1d:
d2:46:c8:e3:ff:7f:50:d5:d5:03:0c:b7:d5:e1:8d:
59:11:23:36:ea:3e:eb:d9:2e:b0:28:74:df:b7:8d:
f0:ea:8a:c3:1f:15:e2:9a:65:71:1d:88:d3:97:4c:
7c:d3:44:cd:89:f2:5a:be:43:40:58:08:b1:6a:90:
27:29:ef:cb:b4:b8:52:98:e9:3b:79:f7:a3:7f:2a:
cc:7c:ba:ee:04:8d:f8:7e:4f:6a:7d:ea:61:91:1b:
d7:62:a6:2f:0d:8d:45:7f:8a:0c:22:74:87:f8:a5:
36:99:b3:45:4a:bc:de:43:fb:70:1f:95:b1:ac:12:
1e:9b:07:07:08:52:fa:a9:0a:7a:ca:8b:1d:74:e9:
08:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:8C:BD:81:36:12:C4:69:4A:B7:33:97:BD:E3:A3:99:49:01:6A:AC
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/goy9gTYSxGlKtzOXveOjmUkBaqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
77:9e:95:72:81:8d:60:da:f8:34:f9:01:91:58:a4:4a:89:f0:
1b:d8:24:96:09:ac:a8:e8:66:ab:40:40:1b:06:7d:ad:0c:bd:
fe:61:e4:cc:d2:06:b8:13:d9:76:5e:c3:5b:cf:f5:43:fa:e8:
f1:1a:3d:78:af:2c:81:b8:a1:d5:7b:1b:8a:e1:14:04:6f:b3:
ec:d6:9e:e8:09:e3:01:ce:b0:da:22:ee:74:c1:5d:9e:d2:0a:
f4:8d:96:f1:fb:87:fc:76:73:5e:5f:9f:54:61:31:46:d9:21:
6a:dd:b4:73:3d:10:09:b3:15:b6:03:60:4d:1b:21:eb:23:cb:
89:86:cf:a3:88:13:e1:7b:e8:5e:4f:93:d8:9a:f4:dc:bf:88:
ac:04:46:97:bc:81:de:ae:7b:16:fa:18:f6:aa:8b:47:4b:93:
27:9f:9d:03:4a:7e:ed:bb:38:d1:24:37:ac:16:79:67:51:36:
59:e4:5a:ae:d6:f0:08:51:70:74:03:64:9b:be:f0:86:39:2c:
17:f7:00:b8:65:92:b0:2b:b1:8d:7c:de:87:fa:24:54:a1:a6:
f3:39:38:8b:08:c9:14:24:c1:43:3c:4b:c6:da:cb:16:fb:50:
73:4d:f6:80:32:21:fd:41:35:3d:07:ac:99:37:35:f5:35:ee:
18:2d:a3:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 11:58:14 2025 by rpki-client