Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ik6luNUiDyvFTWcinor15eQUG8Q.roa
File: ik6luNUiDyvFTWcinor15eQUG8Q.roa (raw, json)
Hash identifier: RQ8Kon5l5NmnaVaYkC7LtroRM+Pxfgs/R1Ygd9oh6d4=
Subject key identifier: 8A:4E:A5:B8:D5:22:0F:2B:C5:4D:67:22:9E:8A:F5:E5:E4:14:1B:C4
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0181F5F7DD0E2E0B0956B57D98CCFCF3BF8F
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ik6luNUiDyvFTWcinor15eQUG8Q.roa
Signing time: Wed 13 Jul 2022 05:11:10 +0000
ROA not before: Wed 13 Jul 2022 05:11:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f5:f7:dd:0e:2e:0b:09:56:b5:7d:98:cc:fc:f3:bf:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 13 05:11:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a4ea5b8d5220f2bc54d67229e8af5e5e4141bc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:8d:04:5d:8a:8f:68:de:85:dd:96:58:cb:08:
fb:33:0b:44:b8:7b:d6:70:55:f1:78:23:3c:75:b0:
7e:80:46:5c:fd:cc:11:28:b4:71:f1:1f:79:d9:27:
45:fc:33:83:55:23:6c:5f:d8:7c:49:b4:db:26:fa:
3b:22:72:73:f4:db:98:b2:d1:58:73:90:94:43:60:
df:4a:4b:66:05:30:ae:67:15:3e:3c:f6:db:52:b2:
54:81:cc:57:ed:f0:3a:b2:fd:e8:02:fa:32:31:40:
e2:a5:3f:cd:75:6b:2c:3e:7e:b1:e3:40:fb:75:0c:
40:db:00:9a:1d:60:32:93:fd:2c:8e:b0:51:94:80:
c2:54:5b:74:41:97:67:0d:17:0c:fd:84:0c:10:21:
88:39:47:d6:c7:ea:0d:dd:66:5f:d7:0e:53:34:ab:
06:dc:14:89:ff:64:94:f9:7b:9b:32:48:b5:a4:36:
29:1e:09:8f:48:21:0b:5c:4c:00:27:f5:79:f2:f5:
6c:4d:36:6e:36:f4:57:92:bd:e5:7f:04:0a:2e:9a:
b7:2e:54:42:ff:b3:d1:2c:f1:9e:3f:9d:13:28:af:
18:e8:4e:2a:02:e8:af:f7:89:9d:cb:39:b8:50:b8:
f2:a4:ac:7f:d0:53:c9:36:d6:bc:3f:d1:ed:49:2d:
3f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:4E:A5:B8:D5:22:0F:2B:C5:4D:67:22:9E:8A:F5:E5:E4:14:1B:C4
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ik6luNUiDyvFTWcinor15eQUG8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
23:3e:05:c9:01:58:37:13:09:8a:b2:b1:33:49:55:14:f4:9b:
a0:88:50:b1:23:ec:c8:4d:a5:ea:2e:02:44:63:a7:f3:e0:95:
d5:30:0c:6a:ec:b4:61:2a:b7:ef:04:f3:18:9c:d4:1a:be:5d:
58:04:4a:aa:98:89:54:80:93:5b:22:6a:6d:48:09:03:c8:ef:
47:06:73:55:d7:60:c9:6c:6e:ca:fe:8a:26:09:10:0e:1b:d6:
bb:c5:af:c2:de:c7:d3:14:30:3a:47:9d:d8:d0:39:7e:af:1f:
a9:95:88:28:3d:7e:91:3a:d2:4a:18:44:0f:eb:82:1b:74:22:
7d:3b:c8:97:3f:62:6d:45:a8:0d:35:f8:ef:b0:5f:0a:2b:5c:
ba:b7:73:f0:c9:07:49:ba:1d:fd:11:c7:e6:68:d0:8a:94:2e:
3a:2f:b9:f5:4e:42:9b:18:d8:90:02:4d:c6:49:ec:4e:16:71:
34:93:58:cf:ff:9c:99:f1:3e:be:06:8f:ae:42:35:55:31:8a:
8b:62:8e:c8:43:ae:0f:c2:05:dc:43:78:5f:a8:a2:a2:03:f9:
b7:9e:82:b2:ba:49:55:62:7c:b7:44:01:82:0d:23:cf:c0:e1:
0e:9a:3b:35:e7:02:db:37:12:f1:6d:c1:d4:bb:eb:48:ab:50:
4d:a0:f8:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:42:40 2025 by rpki-client