Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/klomVPL8-ckf4x91UtroJmv5m6U.roa
File: klomVPL8-ckf4x91UtroJmv5m6U.roa (raw, json)
Hash identifier: TyvDM4HKsgvuLUtimbXG+QW2QseSCo5N9CT9qN7UFKQ=
Subject key identifier: 92:5A:26:54:F2:FC:F9:C9:1F:E3:1F:75:52:DA:E8:26:6B:F9:9B:A5
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0184C9F1D97D6B50FCA0557A8409FBA98E96
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/klomVPL8-ckf4x91UtroJmv5m6U.roa
Signing time: Wed 30 Nov 2022 19:09:41 +0000
ROA not before: Wed 30 Nov 2022 19:09:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:184:ae77:4719/128 maxlen: 128
2001:67c:64:ffff:0:184:9f03:9814/128 maxlen: 128
2001:67c:64:ffff:0:184:bdea:9abb/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c9:f1:d9:7d:6b:50:fc:a0:55:7a:84:09:fb:a9:8e:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Nov 30 19:09:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=925a2654f2fcf9c91fe31f7552dae8266bf99ba5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8d:6d:39:78:5b:57:14:ab:f8:12:bf:11:21:
6b:a8:f9:78:aa:bd:f5:08:29:09:39:7f:c7:89:c7:
41:6b:78:a2:69:b3:7b:0b:b4:68:70:c6:90:e8:05:
af:bf:9b:55:94:67:80:94:59:17:38:b7:6d:9f:8d:
34:79:aa:f5:1e:0b:46:84:ae:b6:f0:6d:c2:db:58:
b7:14:1a:09:24:ff:31:2e:21:60:bb:47:18:98:58:
94:f5:2b:6b:19:86:ff:11:38:65:00:87:e5:7c:5d:
7e:a3:22:db:7a:fb:0a:40:b1:ae:b7:cb:90:e3:b3:
cb:ce:de:6b:d0:29:9b:a2:d3:4e:4b:03:05:21:87:
1b:53:18:26:e3:0d:28:7f:36:64:c0:a3:0c:a6:4b:
62:9c:bd:54:0a:14:c6:78:c3:74:34:0b:d9:52:13:
36:12:59:6b:06:dc:fb:92:1e:a8:c9:6d:14:d5:65:
fd:ee:d6:7a:78:40:16:c9:32:5a:11:1c:46:65:8d:
3e:cf:b3:40:40:80:96:66:f4:17:53:6f:5d:d2:f6:
a8:2c:ec:53:3d:7b:a6:ac:05:59:8c:4d:89:b1:4f:
8c:45:f8:1c:01:df:71:d2:c6:14:58:12:3e:85:a0:
8a:22:58:e3:90:27:88:b8:7c:c0:a8:3b:65:32:53:
ca:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:5A:26:54:F2:FC:F9:C9:1F:E3:1F:75:52:DA:E8:26:6B:F9:9B:A5
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/klomVPL8-ckf4x91UtroJmv5m6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
9f:bb:ad:c3:55:22:ee:0f:8e:61:7c:86:95:b2:8b:81:5a:6c:
8a:b1:7d:33:f1:c0:6c:e1:51:cd:12:fb:11:83:0b:53:41:e8:
ac:4a:c6:b4:44:f1:85:87:80:43:32:2c:f0:16:b0:6f:62:8d:
f1:f2:6c:cc:43:8f:b6:02:65:95:7d:a6:53:ee:e5:7c:80:52:
00:47:fd:7f:dd:d9:cf:b9:20:73:12:02:3e:38:f8:f7:02:47:
f1:db:83:be:3b:08:90:d6:08:6c:c3:50:67:ee:bf:05:a8:27:
df:dd:38:e6:d6:5f:ab:25:c1:cd:fb:a4:12:8c:d0:54:3d:20:
f2:f4:90:7c:2b:d0:8e:fb:f1:87:88:3a:14:d0:d9:df:7e:79:
83:ff:6d:5f:a4:16:0e:f3:cf:5f:b3:fb:df:12:72:80:85:0a:
6a:53:b8:57:33:20:20:a5:eb:cd:fe:50:99:db:10:cd:44:ab:
a0:60:a9:9e:63:75:12:51:b5:1f:f3:b6:39:54:27:d6:e0:ac:
37:f8:09:68:a0:5f:be:81:aa:4b:2b:9c:40:52:b6:3d:7d:c9:
e8:0d:c6:16:f5:3a:85:53:93:23:4d:af:4d:ac:6b:5a:ef:2e:
0d:c6:90:8b:b8:ff:36:f2:44:08:e5:f8:38:4f:b1:82:fd:1f:
0e:44:0a:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 21:24:58 2025 by rpki-client