Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/hEeKo8PEI8O-xIMyDi-qWzXGcMo.roa
File: hEeKo8PEI8O-xIMyDi-qWzXGcMo.roa (raw, json)
Hash identifier: 9ZLUf3kzk5slJLKS36oCpBrI1Pr4uQLwLUKeHRAC/9s=
Subject key identifier: 84:47:8A:A3:C3:C4:23:C3:BE:C4:83:32:0E:2F:AA:5B:35:C6:70:CA
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0188B96154ED1D5C687C5DB1AB98150340B8
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/hEeKo8PEI8O-xIMyDi-qWzXGcMo.roa
Signing time: Wed 14 Jun 2023 10:09:03 +0000
ROA not before: Wed 14 Jun 2023 10:09:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b9:61:54:ed:1d:5c:68:7c:5d:b1:ab:98:15:03:40:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jun 14 10:09:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84478aa3c3c423c3bec483320e2faa5b35c670ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e5:8f:66:99:7b:27:50:35:76:a4:4e:26:76:
95:48:27:27:34:33:a1:62:ee:b2:65:92:ac:5b:b7:
26:66:1d:d8:39:56:7d:d1:f5:0b:4e:35:b1:3e:3e:
0c:5d:27:e9:b7:a0:01:0f:67:03:43:13:8d:01:a0:
98:cc:53:01:8e:91:98:7b:8d:0e:df:c5:e8:ab:e7:
29:3e:ac:c3:1b:6b:23:e2:65:b1:e6:25:6a:16:e0:
9e:95:46:49:1e:a6:a9:6b:85:d8:b8:69:77:4f:1b:
db:eb:de:14:ff:09:db:06:f5:15:99:d2:27:65:3f:
de:71:bf:4b:f9:be:81:c7:f1:aa:89:de:04:7a:f8:
05:88:6f:52:ea:59:ea:9b:af:3a:67:bb:b8:11:a4:
bf:08:89:ab:0a:1c:1b:11:9c:77:91:38:d3:c3:8c:
9e:a4:66:63:13:1b:0f:02:71:1d:f7:5d:1d:8d:3d:
da:28:84:01:42:5f:af:ca:39:d5:f8:e2:29:a0:66:
85:ef:a3:0e:bf:91:ce:96:99:95:c5:c0:6b:46:42:
6a:c0:e6:d4:29:25:ea:68:52:94:3c:31:7e:e3:31:
b8:79:cb:e6:2b:02:58:a2:fd:58:0c:be:e2:a3:53:
ba:28:c5:e4:c8:8d:4c:b7:27:9b:86:13:3c:ff:55:
c9:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:47:8A:A3:C3:C4:23:C3:BE:C4:83:32:0E:2F:AA:5B:35:C6:70:CA
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/hEeKo8PEI8O-xIMyDi-qWzXGcMo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
77:85:20:5d:21:f1:df:a0:16:fb:2e:c7:89:b5:9e:4d:70:df:
df:a0:a1:f2:e0:23:67:a3:55:5b:4f:62:49:9c:37:43:e3:d7:
8b:35:ec:1f:6b:41:64:44:5e:b2:79:4b:12:7e:7f:c8:c5:72:
27:86:28:7a:1a:e5:a9:93:04:b3:e9:fe:49:68:1a:a0:e0:9e:
f9:1e:92:b6:89:a1:3c:94:a1:95:b7:d5:70:2b:b9:57:49:37:
ef:36:b9:e0:c0:d7:98:51:cc:76:1d:94:e8:f7:78:af:76:7b:
2b:8d:b0:bc:fd:23:51:12:d1:51:76:1b:a7:4f:41:d5:16:10:
7b:28:4e:0b:78:81:e0:cc:dc:56:d5:89:43:c6:b7:f9:ec:12:
d3:17:11:4a:b0:bf:32:20:44:2c:19:7b:92:ff:9e:1c:de:d3:
f2:3b:2b:2f:f1:6e:3a:bc:6f:fa:08:7c:1c:5e:c0:30:bc:e4:
39:24:57:77:a7:54:16:c4:3e:7b:10:b7:0f:45:9e:9a:f1:2d:
68:54:7f:a1:2d:ff:ee:da:e0:05:c8:37:6f:50:c9:b7:d5:d2:
7b:6c:31:c0:89:27:88:51:c5:5f:70:d9:ea:fb:b3:0a:77:e8:
81:d1:0a:b8:91:16:b5:b5:4a:d2:20:40:ad:12:d9:44:78:31:
dc:30:69:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 18:23:49 2025 by rpki-client