Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/kj98f30SPoLU_vt7HCAV0Vk0G4Y.roa
File: kj98f30SPoLU_vt7HCAV0Vk0G4Y.roa (raw, json)
Hash identifier: Dal5mucyCJiMMls0KWye14ZqboFfL3VqaHz1qE2WfFc=
Subject key identifier: 92:3F:7C:7F:7D:12:3E:82:D4:FE:FB:7B:1C:20:15:D1:59:34:1B:86
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018898C3D9C2BA517207B462690E1A9CD6A9
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/kj98f30SPoLU_vt7HCAV0Vk0G4Y.roa
Signing time: Thu 08 Jun 2023 02:09:12 +0000
ROA not before: Thu 08 Jun 2023 02:09:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:98:c3:d9:c2:ba:51:72:07:b4:62:69:0e:1a:9c:d6:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jun 8 02:09:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=923f7c7f7d123e82d4fefb7b1c2015d159341b86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:2d:5b:59:25:64:d5:15:27:98:21:20:aa:c5:
2f:7d:b4:dc:db:a2:c7:c9:43:9e:a5:a2:be:f2:82:
6b:48:f9:12:b3:10:1e:bc:eb:0a:51:86:6d:22:e7:
5a:10:85:1c:8d:a5:ae:d8:77:bc:ba:f7:57:81:1b:
ba:47:81:cf:15:88:8c:40:7c:8f:c3:b4:5f:4d:9b:
35:83:b2:60:13:fc:99:a5:7c:e1:2c:d2:10:8c:d4:
40:6d:0b:b0:19:c6:4d:3b:f9:d4:7f:a7:d6:69:64:
1a:92:d3:0d:3d:42:57:f2:df:fb:81:45:7f:ea:01:
b2:7a:a4:77:d8:3a:6a:84:2d:88:a6:f8:d1:5d:12:
9e:b9:0c:08:a2:12:1f:33:5c:fb:88:bd:6a:6c:5f:
66:f2:36:ed:30:59:f6:74:56:9f:60:a5:cd:cd:2d:
4e:7b:3a:0f:82:17:59:41:86:d4:64:f6:5a:26:45:
18:c9:cb:7f:78:bc:cf:c7:0b:d4:9f:8c:98:ec:20:
0e:2a:5c:70:3e:64:da:3c:2c:6e:07:54:be:ff:a3:
5f:ab:ef:1a:27:d2:87:3c:07:47:5c:78:21:4c:57:
e8:dd:17:09:12:41:9c:d3:61:dc:59:75:ba:ab:a1:
f7:7d:33:75:6f:89:29:d4:9d:18:91:54:2c:d5:91:
f8:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:3F:7C:7F:7D:12:3E:82:D4:FE:FB:7B:1C:20:15:D1:59:34:1B:86
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/kj98f30SPoLU_vt7HCAV0Vk0G4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
32:7f:41:36:21:f9:34:90:4e:5c:0d:cc:53:7c:9b:c9:63:4c:
9e:b7:f8:2a:ab:24:53:14:fb:ba:9c:92:94:9d:15:c4:f5:71:
3f:4b:c5:33:40:b7:f0:cb:5a:54:19:f9:9b:06:14:ac:6e:e9:
69:cd:23:73:da:f7:61:17:8f:59:e3:c4:96:db:cd:2c:1d:6f:
e8:65:17:d8:96:bc:58:3f:a8:96:ae:37:71:c5:ff:e5:fb:59:
4d:08:5a:ef:0b:8d:23:71:dd:13:a8:cb:c4:14:52:48:e3:c1:
c0:26:de:18:09:5b:ce:43:04:00:b0:32:30:91:c5:8f:5e:4c:
10:1f:e9:fe:24:e5:c8:71:72:e7:da:3d:c7:f1:7b:7f:94:a7:
d3:d2:d8:49:32:ee:e1:dd:9c:e4:9b:11:44:ec:4e:36:f0:4b:
62:48:8e:93:dc:1d:12:b6:62:b4:28:40:04:1a:ab:ee:4c:7c:
55:68:2b:29:b6:3f:97:12:4f:94:a5:eb:06:c4:f2:66:c4:df:
24:9c:e5:12:99:97:66:68:7c:f9:f0:df:3d:4a:e5:c3:8d:cb:
fe:00:ec:6b:85:ff:50:86:83:bc:ad:2a:10:45:48:bf:9e:6c:
64:ae:d1:fd:74:29:e2:e7:8b:34:d4:f8:ed:58:e2:e0:d5:a9:
07:b7:d2:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 05:31:41 2025 by rpki-client