Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/iBw3qwN5Y6VSwS5qVkOLgdij1UI.roa
File: iBw3qwN5Y6VSwS5qVkOLgdij1UI.roa (raw, json)
Hash identifier: Pl7R4W8GBLCzBhLLWHAYnnN4v9JEaKcEhsgOtOyEFHE=
Subject key identifier: 88:1C:37:AB:03:79:63:A5:52:C1:2E:6A:56:43:8B:81:D8:A3:D5:42
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018A37244915C08D9C3AB0E17EF2C60DE50F
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/iBw3qwN5Y6VSwS5qVkOLgdij1UI.roa
Signing time: Sun 27 Aug 2023 13:17:19 +0000
ROA not before: Sun 27 Aug 2023 13:17:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:37:24:49:15:c0:8d:9c:3a:b0:e1:7e:f2:c6:0d:e5:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 27 13:17:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=881c37ab037963a552c12e6a56438b81d8a3d542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:8e:1c:87:dd:49:57:c3:28:50:29:e6:1a:69:
1d:91:70:57:e0:f8:40:d2:78:da:8e:c7:30:bc:c5:
f3:c2:89:d9:f4:1d:81:a5:65:ac:7b:cb:fa:9a:6b:
a4:79:8e:94:03:7b:d8:27:44:30:73:d1:99:cf:83:
de:c0:1c:55:20:8b:4e:7a:9d:fd:d4:d7:90:eb:77:
58:48:8d:55:ba:90:02:cc:a2:87:b8:c2:03:a5:ca:
76:a9:7e:a6:af:3c:fa:d1:70:5a:03:93:a2:11:af:
40:2e:b6:00:b5:5a:24:65:ef:92:13:4b:70:dc:e1:
23:5d:a5:02:03:10:db:a8:25:a3:b6:f3:70:4a:57:
24:46:ff:97:5d:cc:41:9e:69:5e:71:07:46:6e:87:
c6:68:dc:38:bb:47:43:ed:85:8b:de:4b:73:8c:5b:
14:06:89:a8:44:a1:f6:ae:d0:cd:72:97:9f:bd:90:
ca:6d:d1:fe:21:f9:28:34:d6:a1:4b:4b:aa:01:80:
d5:87:8a:3c:2f:de:7a:b3:10:9f:53:56:26:ec:21:
9e:eb:0a:7e:d5:41:22:eb:b5:0b:39:31:36:c3:54:
92:45:79:1a:cd:d3:ef:41:f4:12:3d:e5:40:63:5e:
2e:58:79:9b:40:15:72:92:84:e9:35:f5:b2:ab:18:
e0:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:1C:37:AB:03:79:63:A5:52:C1:2E:6A:56:43:8B:81:D8:A3:D5:42
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/iBw3qwN5Y6VSwS5qVkOLgdij1UI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
b0:89:a7:d2:57:9a:ce:e2:b1:13:cc:a7:9c:ab:0b:3a:f8:cb:
80:3d:e9:da:6a:65:77:e0:dc:88:b7:23:84:90:dd:e6:be:cb:
6f:2f:6b:57:47:be:0b:af:8b:a9:33:b6:f0:b1:a0:16:77:a3:
6f:f2:fb:f7:00:a7:5a:6a:14:91:7b:a7:dd:7f:32:38:44:17:
d9:f8:cb:03:9b:75:41:c4:7b:0a:6a:21:80:dd:0e:99:8a:42:
b1:01:60:8a:a8:32:8c:8f:55:31:5a:43:9f:10:5d:af:61:60:
09:79:0f:5f:98:f5:ae:ae:c1:dc:7e:78:86:04:91:69:2e:5f:
e4:24:91:80:74:80:1a:be:33:76:c5:56:16:a0:dc:28:a1:b4:
08:1e:26:04:04:fc:50:f9:d5:b9:45:ba:4b:82:71:3d:f0:6b:
25:34:e2:7c:55:19:21:26:72:2e:9b:a6:2a:39:3c:d3:51:ec:
26:af:83:f5:e8:c4:02:a0:3e:1d:7b:bc:fa:da:da:7e:da:17:
76:34:54:ee:30:dd:82:86:03:58:fa:c2:8c:c5:38:20:e2:fc:
4d:d8:d4:f9:c7:51:fb:3c:53:b8:fd:5b:cc:90:0f:40:39:89:
60:1d:c5:cf:88:29:04:18:ce:95:51:ed:61:7c:b7:a8:1e:40:
3f:db:c2:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 01:17:07 2025 by rpki-client