Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/k3N8tq5_6Hzq-KVlSgUHWroX5Ks.roa
File: k3N8tq5_6Hzq-KVlSgUHWroX5Ks.roa (raw, json)
Hash identifier: Yw4jkaygwSsQdGXwTi3KW06t9p046NxHzOJzBGcUt5c=
Subject key identifier: 93:73:7C:B6:AE:7F:E8:7C:EA:F8:A5:65:4A:05:07:5A:BA:17:E4:AB
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 7BAF0CD0
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/k3N8tq5_6Hzq-KVlSgUHWroX5Ks.roa
Signing time: Sat 16 Apr 2022 04:11:46 +0000
ROA not before: Sat 16 Apr 2022 04:11:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:180:457:1e3f/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2075069648 (0x7baf0cd0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 16 04:11:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93737cb6ae7fe87ceaf8a5654a05075aba17e4ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b4:3b:cb:db:3c:95:21:5d:77:22:76:27:54:
75:9c:d3:6a:35:da:ff:41:3d:2f:ab:71:f9:51:9a:
71:cf:87:4a:44:4f:e0:ce:51:40:02:5e:ba:2d:e8:
b5:c2:d0:0f:0d:05:9e:5e:68:e4:67:97:5f:e7:7a:
40:43:8f:3c:e7:e2:e3:85:2c:ae:60:a9:b5:23:4e:
af:60:dd:c7:01:20:3f:cc:ab:f0:44:af:4b:89:25:
05:d3:2e:74:28:58:2b:ce:67:ea:70:24:19:79:b5:
91:95:4e:f7:63:5a:43:81:b4:10:d1:94:75:e5:f9:
9f:e4:6e:4e:e0:21:71:28:8e:5d:ee:fe:fd:77:55:
f6:d8:3e:0c:32:57:ac:0f:b5:cc:c4:24:86:f4:c9:
9c:22:c9:33:ac:0c:4c:6d:ce:57:57:9d:e1:b5:b1:
a8:f4:d4:7c:42:3c:03:0f:08:b2:28:2e:1d:42:e4:
a7:90:dc:20:f1:2a:8f:92:14:3c:11:aa:1f:d4:7f:
6b:af:64:c4:ef:c8:78:bc:3e:ef:20:27:32:30:c8:
a2:3f:37:b1:43:18:1c:60:51:60:9e:06:10:d4:1a:
fe:7d:70:4d:71:74:19:37:31:46:7f:bb:94:7e:05:
96:c7:8e:33:d5:14:92:9f:57:c6:93:98:3c:5c:ed:
52:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:73:7C:B6:AE:7F:E8:7C:EA:F8:A5:65:4A:05:07:5A:BA:17:E4:AB
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/k3N8tq5_6Hzq-KVlSgUHWroX5Ks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
65:d0:c2:04:0c:43:d8:f7:81:23:37:10:53:dd:9e:1e:40:71:
f9:70:25:b0:e0:d0:53:c6:ac:f6:d1:4e:dd:98:32:0b:5f:63:
9a:ed:c6:29:f8:54:84:c5:2d:00:dd:78:3d:68:ef:f4:e8:30:
ad:10:63:b4:a8:b0:15:ae:3a:03:5f:eb:9f:87:cf:17:e0:bc:
f0:2c:14:ce:d5:d1:eb:61:b7:33:27:36:1a:b3:1f:14:8e:2e:
cf:aa:cb:4f:f7:37:e1:5e:e4:33:ea:14:e1:28:3b:e3:4b:66:
78:cb:23:a9:4b:33:3a:6d:64:db:cd:d2:0e:38:2a:68:0e:39:
4b:82:58:15:3a:66:c7:4c:1c:7e:5e:2e:f1:8d:eb:31:b2:4e:
ea:57:da:01:50:43:21:f4:09:17:a7:a1:f4:09:9b:87:01:df:
9e:66:3e:5a:e5:59:b7:35:68:61:ff:28:60:a0:0f:f9:63:b0:
3e:03:fc:74:d4:75:d5:78:b4:f5:d9:6b:b2:bb:c1:dd:35:84:
a1:49:2d:22:35:bc:52:b2:ee:d8:21:fb:7d:76:84:fb:a3:22:
0e:a8:8d:65:0c:be:4f:d4:be:30:7d:ed:c0:58:20:97:e0:3e:
6d:39:91:ef:2f:dc:0a:dc:08:b1:f1:77:ab:12:f8:92:b5:68:
12:a0:3b:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:34:59 2025 by rpki-client