Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/lpvV0ftTecWflrNtbyo2ZX3XHAw.roa
File: lpvV0ftTecWflrNtbyo2ZX3XHAw.roa (raw, json)
Hash identifier: cKi2VSMIUQYgOCXoq6Xf9sx3RCwPZvCW5s4ohehfO4o=
Subject key identifier: 96:9B:D5:D1:FB:53:79:C5:9F:96:B3:6D:6F:2A:36:65:7D:D7:1C:0C
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01880CDD4CB42AC8B55FE5A73523D3E0FF8F
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/lpvV0ftTecWflrNtbyo2ZX3XHAw.roa
Signing time: Thu 11 May 2023 22:10:09 +0000
ROA not before: Thu 11 May 2023 22:10:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0c:dd:4c:b4:2a:c8:b5:5f:e5:a7:35:23:d3:e0:ff:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 11 22:10:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=969bd5d1fb5379c59f96b36d6f2a36657dd71c0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ef:47:91:6c:13:93:64:32:b6:4a:6a:e1:a2:
fd:db:35:2c:e4:17:d0:39:60:4f:0d:a6:a4:5c:93:
1b:2a:88:18:b2:2a:ae:b3:0c:42:a7:d6:b4:fd:84:
9e:c8:08:9a:51:7c:bc:14:d9:67:72:ae:55:3a:f0:
c6:9c:c8:33:cb:2b:8c:73:bb:42:26:2e:26:88:fb:
c6:7a:cd:0b:2c:6e:73:70:e8:89:a5:e4:b4:c9:24:
5d:c0:db:28:a0:63:cd:cb:8a:cf:2c:93:cf:ea:33:
5f:a5:a0:03:05:d6:60:c6:ba:08:89:57:d6:ff:60:
30:f8:c2:e7:2d:40:03:dd:81:4c:06:97:f6:de:5f:
4a:72:ce:84:dc:05:ea:ec:86:c9:c3:ac:f9:be:76:
61:21:b1:b7:97:06:59:8c:e1:9b:b7:84:35:38:e1:
be:22:94:fe:1b:ca:14:71:c1:1e:d9:39:5b:95:a2:
0a:a9:58:6c:53:03:1f:a8:b3:a2:38:79:bb:0e:7a:
e1:2a:93:23:69:5a:22:c4:35:34:4b:a5:c8:c8:54:
03:ab:8c:79:d9:df:f6:5c:1e:bb:9f:5b:18:14:41:
61:ec:53:20:ee:c2:da:d0:4e:b9:79:0d:f7:d3:f2:
60:78:4b:38:b9:78:d2:f7:2d:04:ae:cc:b3:19:f3:
be:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:9B:D5:D1:FB:53:79:C5:9F:96:B3:6D:6F:2A:36:65:7D:D7:1C:0C
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/lpvV0ftTecWflrNtbyo2ZX3XHAw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
35:31:38:22:42:b5:66:d5:79:df:88:ab:11:33:69:09:9b:0c:
e8:d3:4c:51:c2:2d:95:09:89:97:52:29:d4:2d:3a:f0:65:8d:
59:31:38:d3:b4:7e:48:23:e2:6e:0c:45:58:1f:eb:34:8b:a6:
29:57:5f:08:1d:20:ae:d3:ff:2a:fc:5c:ec:e0:67:ce:ae:f9:
96:bc:35:35:3f:4d:30:e1:b2:fd:a5:31:3f:6e:c7:12:96:54:
e6:1d:5e:40:0b:2c:59:0a:e3:32:27:55:c0:8d:16:c2:92:94:
8b:aa:86:34:95:80:0d:2b:d5:22:1f:cb:ef:ea:2b:5b:c0:9d:
9c:f7:82:ca:1c:11:f8:81:a8:0e:60:b1:42:76:aa:d0:eb:79:
8a:b5:0b:37:02:c7:15:25:91:85:8b:26:67:82:e6:0f:ee:bf:
67:f1:64:87:9e:46:b8:0f:94:45:be:ef:57:8f:d0:c5:12:bc:
6c:98:48:89:98:54:de:dd:77:98:52:95:d8:d0:d9:32:bd:12:
7f:c0:fc:7d:d3:41:9b:73:ea:77:8f:10:3d:08:33:7a:d2:32:
b1:a7:78:c9:06:c3:e6:80:ec:4b:7d:e5:9b:38:3d:29:d9:fa:
ef:f4:da:f4:d5:83:86:0e:a5:38:12:57:93:e6:a1:db:e8:b4:
fe:d8:f9:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 21:27:28 2025 by rpki-client