Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ho2dp9mAf6mCBzKvSHeKpg61vsU.roa
File: ho2dp9mAf6mCBzKvSHeKpg61vsU.roa (raw, json)
Hash identifier: zqILwLkKDwOUSyZ/n81liBE9NnA6iz9ROiyUGNwKT/8=
Subject key identifier: 86:8D:9D:A7:D9:80:7F:A9:82:07:32:AF:48:77:8A:A6:0E:B5:BE:C5
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0186FE8272117EBB011903E61CCB20EF248D
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ho2dp9mAf6mCBzKvSHeKpg61vsU.roa
Signing time: Mon 20 Mar 2023 10:13:27 +0000
ROA not before: Mon 20 Mar 2023 10:13:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:fe:82:72:11:7e:bb:01:19:03:e6:1c:cb:20:ef:24:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Mar 20 10:13:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=868d9da7d9807fa9820732af48778aa60eb5bec5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4c:86:56:bc:5f:fe:51:85:44:39:81:7d:80:
da:a3:97:92:2b:93:6f:bf:c0:d0:be:2c:77:d6:7e:
29:e6:c3:5d:45:60:b3:ba:b4:76:c3:09:25:10:ba:
5c:ff:bd:fd:75:e1:ed:54:52:8c:4b:9e:15:6b:ff:
b5:e1:46:54:8b:dc:61:71:dc:e1:5d:fc:00:a2:bb:
0e:db:ca:dd:d7:94:44:fe:26:d1:9c:62:18:13:d8:
35:87:c4:21:c7:0e:a4:33:e0:fd:44:89:b9:76:5e:
83:85:08:5a:fd:53:45:08:4c:48:5c:b3:b1:82:38:
21:89:51:e1:e9:19:1f:c6:9c:ab:6c:a7:cf:07:52:
6b:62:28:45:d9:85:61:63:12:a9:c8:89:34:66:b6:
ea:6f:ca:2c:3b:64:83:af:d4:35:69:5d:30:19:8a:
35:a7:3d:17:9f:ef:60:96:97:ae:d1:28:d8:28:73:
54:34:de:0a:72:77:6b:a8:ee:38:7b:ee:24:e4:ed:
e3:87:4e:60:30:54:42:fd:bf:65:64:8a:bd:80:29:
d9:f3:ac:be:5b:c6:21:0a:4d:2d:6b:1c:5e:7e:38:
e0:db:c8:9b:1f:ab:a7:94:a8:45:fe:b6:bd:2f:20:
80:4d:7e:bb:81:93:39:e7:8f:5a:61:88:b0:40:d2:
02:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:8D:9D:A7:D9:80:7F:A9:82:07:32:AF:48:77:8A:A6:0E:B5:BE:C5
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ho2dp9mAf6mCBzKvSHeKpg61vsU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
08:7d:50:4b:c0:e6:73:85:d2:65:a1:01:0c:8a:2d:9b:36:43:
b3:b5:4c:4d:b2:03:0c:1e:7b:0f:9c:50:4f:58:2f:70:e9:b9:
37:0c:92:a2:43:bd:97:a9:6c:ce:46:50:92:f8:a6:2d:63:32:
bc:83:13:7f:e7:2a:cd:98:eb:8b:b3:5b:89:49:08:6a:e2:02:
03:9e:fa:b5:60:59:2d:9e:20:48:87:8c:bf:f4:37:6b:d6:9a:
68:f8:b6:72:c1:5a:ae:51:d3:11:38:2c:90:f4:6c:de:f2:e9:
6e:7a:0f:1b:ef:1c:33:3a:a4:ac:79:fb:aa:d3:bb:bb:18:f5:
be:4b:e2:ee:7a:fe:c0:d6:51:70:ae:0e:27:b2:46:6c:d6:83:
0f:b5:15:20:65:59:a2:7e:23:db:19:88:70:14:90:14:18:88:
80:01:74:b0:fb:c1:ea:11:34:d2:f0:a8:c2:5d:51:5a:e1:fd:
70:06:1e:4a:34:4d:e4:31:f6:b7:a1:59:a7:d1:a4:c0:3a:50:
3d:a9:cf:78:a4:fc:73:97:c4:53:17:c1:6f:50:f7:5b:90:38:
3d:6c:ac:c8:be:6b:80:6c:07:06:84:4d:d3:25:e1:92:b3:7c:
4c:dc:7c:d2:b3:2a:7c:3b:75:e3:32:96:ab:58:2c:11:de:a4:
8d:24:0c:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 18:21:02 2025 by rpki-client