Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ieJe5fWlgV2ghUPFHDUz1vLLavU.roa
File: ieJe5fWlgV2ghUPFHDUz1vLLavU.roa (raw, json)
Hash identifier: wFl30a0ECiAdOOO1i3UCGPl6GQw7s8g67KBYmV9jmqM=
Subject key identifier: 89:E2:5E:E5:F5:A5:81:5D:A0:85:43:C5:1C:35:33:D6:F2:CB:6A:F5
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 6BCE4835
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ieJe5fWlgV2ghUPFHDUz1vLLavU.roa
Signing time: Sat 19 Feb 2022 00:13:39 +0000
ROA not before: Sat 19 Feb 2022 00:13:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1808681013 (0x6bce4835)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 19 00:13:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89e25ee5f5a5815da08543c51c3533d6f2cb6af5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:f7:27:05:f6:ce:aa:48:c4:e5:31:6f:b2:5a:
24:70:06:57:73:b1:32:c3:a2:81:05:85:ff:7f:e3:
8b:30:1b:72:56:2d:42:c1:17:23:04:a9:a2:94:28:
af:21:56:bb:fa:68:31:f0:1d:70:f4:d0:5d:12:53:
dc:d5:67:61:49:c1:be:65:3e:a9:4c:97:29:9b:af:
71:66:7e:4c:b1:37:f2:24:10:31:29:f8:97:25:a1:
b2:86:27:09:dd:3c:e7:a1:6a:0d:49:71:50:06:53:
af:9d:15:fc:12:ca:ae:71:88:47:00:cc:bf:d2:49:
74:07:fc:78:f5:94:be:d3:55:7f:18:bf:df:1c:59:
45:f9:ac:e5:34:f3:1a:fa:cb:54:8e:92:c2:e1:db:
a1:56:38:fa:5c:70:15:bc:7c:d7:31:e9:a2:bf:92:
b5:7f:91:fa:80:d1:dd:d0:a9:65:49:ef:15:36:07:
a5:b4:af:c2:c7:3c:96:0c:bb:59:26:d2:84:2e:e9:
58:cf:4f:19:55:91:dc:89:fe:d0:d4:dc:3c:31:16:
56:72:64:71:bc:d7:25:a1:9c:f2:e7:d3:3b:c0:2e:
10:e4:f6:f5:20:7e:df:22:9a:bb:b2:af:78:2c:e5:
bd:ea:2b:ee:ec:34:3a:4b:ba:4e:42:6c:99:01:c6:
aa:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:E2:5E:E5:F5:A5:81:5D:A0:85:43:C5:1C:35:33:D6:F2:CB:6A:F5
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ieJe5fWlgV2ghUPFHDUz1vLLavU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5f:95:b3:48:64:3e:d6:64:c5:a4:0b:0b:4f:7c:39:5b:48:47:
f1:16:5c:31:f0:69:9f:6c:d2:45:7f:b3:b8:87:b1:8a:84:70:
26:7b:d8:55:f8:38:c8:f1:82:fe:b4:5f:7b:fd:aa:13:fe:2f:
25:13:3b:0b:26:69:2f:aa:f4:57:1a:7f:96:a0:8d:3e:69:b3:
d1:01:e6:aa:95:a5:b1:23:31:48:2e:4a:1f:2a:45:a6:ed:0a:
f3:d8:15:e6:04:95:97:62:7d:37:a9:df:b1:75:9e:b9:4c:b4:
86:78:79:0c:00:a3:96:83:1b:75:c3:6a:27:ce:a6:0c:d6:e9:
65:d3:ad:2d:54:d3:bb:d3:f2:40:10:92:94:91:d5:47:50:81:
a2:3e:c2:26:0d:fb:93:34:fa:5f:f3:0a:4e:e2:a7:fb:27:4b:
47:05:2f:96:1c:04:5a:e1:cc:11:2b:f2:d4:ad:69:32:25:ce:
29:7f:10:5f:9c:81:6d:ce:fb:b1:e9:62:bb:07:d4:31:08:15:
20:b4:11:50:8f:c6:62:df:57:c2:3d:0d:ab:9b:83:cc:a6:da:
9f:f6:76:4a:53:ee:f1:9e:24:50:12:7d:a5:50:a7:9a:62:ce:
fa:ad:48:ff:ad:b9:47:4e:2f:1b:fb:ff:d1:84:29:f8:a8:88:
a0:f4:68:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:25:48 2025 by rpki-client