Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/i83U3fcKRkE-inTGki6vNrsWf20.roa
File: i83U3fcKRkE-inTGki6vNrsWf20.roa (raw, json)
Hash identifier: 3easOnqRCUAW+Jq6g5ULtfNaAVQC5ujtt/HCNqMzEFM=
Subject key identifier: 8B:CD:D4:DD:F7:0A:46:41:3E:8A:74:C6:92:2E:AF:36:BB:16:7F:6D
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 89A61269
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/i83U3fcKRkE-inTGki6vNrsWf20.roa
Signing time: Fri 03 Jun 2022 19:08:40 +0000
ROA not before: Fri 03 Jun 2022 19:08:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:181:22f:7a99/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2309362281 (0x89a61269)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jun 3 19:08:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8bcdd4ddf70a46413e8a74c6922eaf36bb167f6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:bb:db:5f:a3:f5:31:46:f4:71:cb:59:71:ab:
1e:54:6b:d6:a6:b7:f7:d1:3f:22:c7:94:56:74:ef:
22:cf:b3:a9:6f:e3:2a:c7:1d:85:72:ec:7e:3a:6f:
f0:d9:4b:e5:16:eb:86:19:86:f6:48:9e:f7:fa:46:
0d:f0:9e:fe:ee:1a:14:ad:33:cc:f5:f3:5b:8d:68:
bb:f2:8e:a3:a7:4e:e6:dc:50:47:1d:17:ba:6a:89:
8c:ed:e6:61:84:85:c7:8f:6b:03:96:be:89:a6:84:
b3:72:2c:97:9a:d4:f7:5c:df:bf:e9:3c:1f:12:27:
01:a1:dc:52:81:32:5d:cb:fc:46:e3:5a:fa:5f:fc:
a0:17:e3:d4:75:32:ce:7a:bf:46:32:13:7b:0d:ce:
cd:11:95:8a:f0:cf:85:ae:dc:e9:ac:73:64:4a:f3:
d7:84:9b:3f:b6:83:34:81:96:06:f0:17:27:42:b8:
5d:e5:8a:83:7b:53:97:fc:c1:fd:13:3d:4e:3c:ac:
e6:f6:a9:fe:00:76:f9:b8:60:e7:e7:b4:f8:82:71:
c3:9b:14:90:0c:41:7b:1d:a9:43:e8:1c:a6:40:44:
44:b2:85:55:73:a6:51:fd:d8:e8:fb:39:f7:d1:b4:
03:d7:b0:c5:41:0b:5e:c7:f2:e3:d8:1e:6b:ee:fe:
6d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:CD:D4:DD:F7:0A:46:41:3E:8A:74:C6:92:2E:AF:36:BB:16:7F:6D
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/i83U3fcKRkE-inTGki6vNrsWf20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
9a:c8:e9:2b:46:85:4a:1c:3e:c0:84:5e:9b:24:ad:c9:04:c9:
b2:5d:e8:18:86:c5:d7:90:9c:76:f6:29:78:42:c6:d2:50:66:
99:1f:3a:c8:4e:aa:3b:07:70:e3:10:66:bd:94:5c:e7:4b:78:
b7:ef:15:bc:a7:6b:34:42:2d:ff:f5:dd:ea:ea:4d:d6:d4:0e:
eb:55:86:6d:0d:f4:98:be:78:ce:d0:49:bc:70:61:3e:4e:c6:
bb:ab:89:1b:86:19:f3:77:88:d7:a3:a5:b6:c3:a4:08:c7:f8:
8b:c5:cb:23:4a:95:cd:e5:e1:33:60:c2:0b:c0:23:32:e2:8b:
59:5e:08:ec:92:5a:1a:5d:57:63:a2:96:77:e0:42:7c:d7:8c:
29:17:29:53:fb:27:61:57:f5:c6:a4:f6:b9:ea:cf:23:da:08:
6f:06:2d:43:1e:f6:52:a9:dd:de:b7:9c:43:b5:ec:45:10:bc:
61:43:38:2e:e9:c4:b2:8f:3d:ce:cb:bd:c8:c9:58:d1:0c:b4:
13:4f:3a:4a:f1:8f:4f:ee:ad:e0:95:14:ca:1e:84:b9:0b:a9:
67:98:c0:29:98:59:14:2d:a2:d9:44:6a:c1:41:80:1b:ab:28:
f0:ba:00:f7:14:77:20:bc:31:a7:f1:1d:d6:ec:e2:50:5a:ee:
19:93:4c:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 20:06:59 2025 by rpki-client