Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/meBo0LRvMy9r83df-68pXbCEodY.roa
File: meBo0LRvMy9r83df-68pXbCEodY.roa (raw, json)
Hash identifier: QUWupMwS9amB8fVfGfUkm5ktc1jLZX1bB97ZndOVNpk=
Subject key identifier: 99:E0:68:D0:B4:6F:33:2F:6B:F3:77:5F:FB:AF:29:5D:B0:84:A1:D6
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 8B4BD65F
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/meBo0LRvMy9r83df-68pXbCEodY.roa
Signing time: Thu 09 Jun 2022 13:10:02 +0000
ROA not before: Thu 09 Jun 2022 13:10:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:181:22f:7a99/128 maxlen: 128
2001:67c:64:ffff:0:181:477e:58d8/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2337003103 (0x8b4bd65f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jun 9 13:10:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99e068d0b46f332f6bf3775ffbaf295db084a1d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:86:ca:94:6c:2b:c1:c8:21:4c:77:bc:43:c6:
9c:0d:41:92:91:c0:52:43:88:cc:d5:f2:14:be:5b:
c2:31:3a:4c:4c:a2:bb:55:76:2a:a6:10:6a:3a:1d:
d8:66:24:3b:07:a1:ee:0f:e3:38:cd:42:6f:71:ec:
ad:08:e6:50:fb:69:d2:e6:76:ba:6b:ce:0e:a0:be:
28:ff:2a:72:e3:46:0c:fa:b9:46:d4:24:ef:5f:e6:
86:ba:07:40:c3:4b:44:0a:84:5a:bc:90:68:cd:62:
3d:de:03:3e:0d:78:b5:94:5c:fe:6b:47:db:bb:6b:
c6:79:b5:06:fa:e9:69:cf:4a:9a:97:fe:6f:2e:e3:
91:d6:38:46:2a:f5:f9:0f:23:3a:7f:0f:38:75:3a:
42:8c:6e:e0:2c:9a:90:f4:06:a3:07:b0:c3:46:e9:
25:2d:cf:bf:c6:b2:05:21:9e:9f:a3:ca:63:26:b4:
60:4c:76:6a:04:75:fa:84:e8:8d:39:db:39:9c:b1:
74:11:fd:ff:7b:0e:0d:8e:15:d5:34:45:45:19:39:
d5:b5:e6:71:0a:78:3c:63:30:38:fd:b6:a1:50:13:
c1:ea:d6:36:cb:96:57:ef:b2:34:3e:74:49:d6:93:
c0:f1:de:47:6b:e4:fe:61:38:4b:59:ae:50:a5:1b:
5d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:E0:68:D0:B4:6F:33:2F:6B:F3:77:5F:FB:AF:29:5D:B0:84:A1:D6
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/meBo0LRvMy9r83df-68pXbCEodY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
9d:fb:15:58:91:f1:91:05:78:3a:6e:eb:41:b7:e1:ab:9a:05:
09:c4:32:67:8a:c8:1d:9b:21:ce:2d:00:d4:36:17:60:be:09:
6d:6d:0c:05:19:4f:e5:51:1f:8b:48:9a:83:59:e6:34:e6:c7:
81:21:ff:6f:56:39:27:50:f0:dc:1b:31:8d:d2:5f:eb:47:f2:
b9:76:c7:00:0e:52:4d:6f:fd:00:fd:f7:a2:8a:ca:68:05:3d:
c9:88:21:eb:35:ad:f7:21:45:59:bd:70:4a:81:27:c7:13:02:
63:91:16:60:a7:82:21:9d:35:08:82:19:d7:00:db:ea:45:56:
fb:55:dd:96:1c:55:e4:ce:0c:de:b3:f4:ef:72:9f:ef:0d:fe:
52:0f:72:f6:13:70:30:2e:d6:8d:26:45:66:ee:c1:da:40:3f:
d9:79:fa:89:47:22:c0:fe:0d:db:92:ac:ff:a4:1c:d1:34:bd:
a6:9b:7f:d2:d6:e2:73:44:73:b2:c2:c2:69:6e:60:c9:fa:23:
26:8e:57:77:67:bd:6a:21:f3:c2:8b:90:06:55:b8:3d:9d:14:
60:84:51:f5:43:6f:43:df:8a:f7:0c:74:11:dd:13:cb:f9:e4:
ee:7f:a5:bb:ac:7e:42:1e:05:d8:1f:5b:48:e4:24:a7:43:7b:
77:d1:b3:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 17:08:58 2025 by rpki-client