Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ignVLjz9D51WR6u5LKqYJmlOtxk.roa
File: ignVLjz9D51WR6u5LKqYJmlOtxk.roa (raw, json)
Hash identifier: BT15Ryj9kCMl6huW+WG9U9h1VD0ehmJ6BkW+c2keXcw=
Subject key identifier: 8A:09:D5:2E:3C:FD:0F:9D:56:47:AB:B9:2C:AA:98:26:69:4E:B7:19
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0188AC81CF98FEBF6400CECDC335A705BA4D
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ignVLjz9D51WR6u5LKqYJmlOtxk.roa
Signing time: Sun 11 Jun 2023 22:09:28 +0000
ROA not before: Sun 11 Jun 2023 22:09:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ac:81:cf:98:fe:bf:64:00:ce:cd:c3:35:a7:05:ba:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jun 11 22:09:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a09d52e3cfd0f9d5647abb92caa9826694eb719
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:69:14:ca:54:9b:2a:e9:a2:d6:3a:a2:31:c9:
74:80:a3:a3:b7:3c:96:48:52:ac:dc:95:33:54:0a:
14:7b:2a:29:4e:60:4a:8f:a0:9e:06:10:6f:9a:98:
0a:cd:4a:8a:70:c6:db:94:8e:99:a9:2d:94:40:df:
e7:5f:5b:b7:39:b4:44:0a:b9:ec:78:d1:7a:01:d3:
29:ff:f4:c3:73:28:23:80:ce:65:79:79:c5:f0:15:
10:c1:44:c8:6c:da:4a:08:a3:a4:80:1d:07:bf:fc:
9b:bf:7e:b3:16:73:f1:ab:93:e3:b2:ae:e8:12:7c:
52:a3:36:97:eb:31:64:9c:d5:9b:15:3c:22:3b:25:
ba:07:d6:e2:b6:1e:55:51:5a:2e:0b:34:65:d6:fa:
f8:48:a8:24:85:aa:02:e5:44:bb:af:40:b0:35:0d:
d0:96:ae:61:63:c2:c2:55:1c:0b:0d:8c:c1:28:58:
ca:cf:cf:e2:39:fd:7d:05:0c:cd:12:da:81:b6:83:
19:d2:15:cd:7b:2c:41:20:9b:ac:3e:4a:21:19:01:
c0:b8:2b:45:17:f8:4c:f4:51:66:00:a8:ad:f5:3e:
5d:29:de:45:b4:96:24:fe:a2:01:8f:d6:af:b0:99:
ea:ba:d9:07:fa:55:f4:ec:89:6f:9f:ea:41:c8:37:
40:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:09:D5:2E:3C:FD:0F:9D:56:47:AB:B9:2C:AA:98:26:69:4E:B7:19
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ignVLjz9D51WR6u5LKqYJmlOtxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
37:82:7e:15:3e:68:cb:a4:a6:ac:63:94:75:a7:e4:27:e3:68:
95:75:7d:95:e0:ca:0e:1c:91:f9:02:10:00:e0:25:e4:e4:d8:
e1:3c:70:a1:45:43:bd:7b:18:9d:63:2c:1f:d6:f3:76:91:86:
14:1a:ea:65:59:10:9f:7f:48:e2:bc:67:ad:3a:27:cf:94:d3:
d2:f3:c6:40:69:a2:23:63:51:0c:a9:73:ce:bf:9f:1d:04:bd:
fb:60:0b:81:37:0a:34:4a:6a:c3:56:5b:2a:74:02:88:b2:70:
0d:d8:8c:ca:63:5a:db:38:32:45:ea:77:ca:18:76:6d:96:2d:
4a:fb:de:55:7a:66:1a:d8:d4:ac:a2:c8:56:14:0a:29:e7:af:
78:e9:de:ed:a1:a8:5c:13:a8:03:7e:70:05:50:33:71:83:9d:
88:10:a6:53:a7:3f:04:17:4b:19:a1:17:10:5e:5c:50:33:93:
6d:5a:fe:58:5d:a7:b5:46:7b:d4:c8:e6:00:7e:44:67:a4:dd:
f0:a1:14:80:b5:ff:01:7b:90:e3:f9:14:b9:19:1d:7a:d9:29:
4b:04:1d:70:e3:a4:e1:26:3e:12:67:17:45:41:9f:d7:80:8b:
51:f5:59:f7:28:10:6a:09:79:d2:88:f0:2a:d8:1f:55:d6:b0:
09:34:ca:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 16:31:15 2025 by rpki-client