Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/mC9dCX5v17Qkmk5PgBE-bO7bTTQ.roa
File: mC9dCX5v17Qkmk5PgBE-bO7bTTQ.roa (raw, json)
Hash identifier: 5wGWpGZyuzpwr1Hnj94ieabsBC1OyKjOBP8WPMN1PkA=
Subject key identifier: 98:2F:5D:09:7E:6F:D7:B4:24:9A:4E:4F:80:11:3E:6C:EE:DB:4D:34
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0185289472A234D3EF3E991CC8F5B097F0A4
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/mC9dCX5v17Qkmk5PgBE-bO7bTTQ.roa
Signing time: Mon 19 Dec 2022 04:11:35 +0000
ROA not before: Mon 19 Dec 2022 04:11:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:28:94:72:a2:34:d3:ef:3e:99:1c:c8:f5:b0:97:f0:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Dec 19 04:11:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=982f5d097e6fd7b4249a4e4f80113e6ceedb4d34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:fd:f5:ff:71:8c:cf:47:99:2a:b9:fd:bd:b7:
53:7e:09:f7:35:1e:53:0e:33:0b:9d:68:71:b4:26:
e1:81:85:f3:ce:b1:bc:b0:0b:e0:e8:f7:b7:4c:f0:
55:a7:da:cd:f1:85:d6:5e:c1:24:6b:02:b1:bd:bc:
60:55:76:ec:ff:eb:b5:37:b0:13:a5:c0:c0:16:43:
94:de:3a:eb:74:70:98:d4:2b:d8:8c:f2:62:2a:d1:
6e:0f:5d:d0:d9:88:d2:bc:07:b6:c5:d1:91:ed:66:
9a:14:17:8d:37:1d:45:0b:0f:ae:63:a7:3e:fb:7f:
37:48:f1:40:21:62:15:62:eb:13:4a:c4:57:c4:1f:
7f:52:3d:13:f7:75:59:87:29:c2:bc:d1:58:ad:7c:
c0:27:e8:f4:07:3c:e7:aa:0f:c8:04:a5:d7:ae:c5:
ce:13:f9:d0:3e:69:94:63:22:bb:90:a2:d7:69:8a:
d1:2b:42:2e:d3:ec:71:a9:64:7e:aa:d2:83:6f:73:
63:b1:45:ff:c0:52:65:04:a8:e8:e7:89:a0:24:9f:
5f:8d:45:a8:c1:db:23:47:df:9d:a6:b2:99:b9:a4:
9d:b3:96:44:55:a4:76:df:be:ba:30:89:a1:00:1c:
40:69:4f:5e:97:a4:93:d8:21:e3:6f:3d:ca:3b:7d:
b6:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:2F:5D:09:7E:6F:D7:B4:24:9A:4E:4F:80:11:3E:6C:EE:DB:4D:34
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/mC9dCX5v17Qkmk5PgBE-bO7bTTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
22:d7:6b:86:55:2b:d9:5f:ef:e5:76:28:f5:1d:2e:ac:92:21:
27:e0:47:82:cd:35:d6:21:30:3e:5f:52:88:84:fc:92:42:64:
e2:cd:6e:6b:a7:5f:32:d2:38:24:d4:66:d7:40:1c:6d:99:54:
2a:f9:f6:1b:78:a2:79:c0:2e:ac:b2:cc:4c:6a:20:58:cc:be:
11:01:7b:00:76:d3:87:46:44:e4:41:2e:4f:e1:1b:5f:b9:20:
7d:7d:b8:a3:b8:2b:c4:2d:a7:db:ec:8f:4b:59:57:a4:88:9e:
0f:76:cd:93:11:c0:39:0f:bb:e9:1e:31:67:8f:fb:24:e1:f1:
39:77:86:81:a7:06:0a:6d:ec:53:39:46:42:f9:38:28:cb:3d:
77:74:e7:20:90:6f:21:d3:3b:e6:3d:93:14:9c:fc:b8:55:00:
5b:82:a7:34:99:5b:27:e6:0a:0f:75:05:e9:1b:f1:e7:47:b2:
19:05:97:9e:92:94:28:7c:a3:18:bc:08:f4:a0:96:1d:75:47:
ed:89:70:e2:1e:db:83:0f:06:17:13:d7:14:ce:44:30:43:98:
96:92:29:fd:6b:a5:e9:88:d3:99:bf:f0:76:92:aa:e3:f9:f2:
98:0b:00:65:05:b0:b9:2f:35:56:1e:53:fa:8f:9d:02:af:19:
77:15:a6:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 22:54:33 2025 by rpki-client