Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/n0VpSo5WkGLlsZj2q4cNJX0hKdQ.roa
File: n0VpSo5WkGLlsZj2q4cNJX0hKdQ.roa (raw, json)
Hash identifier: Rq8TyJPNMTmiYQl1ef7BCtPDa6U2sqHLyxi9UxJkO6Q=
Subject key identifier: 9F:45:69:4A:8E:56:90:62:E5:B1:98:F6:AB:87:0D:25:7D:21:29:D4
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01850E2DFD36EA5B2E0F2EE1B90E7038A0B4
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/n0VpSo5WkGLlsZj2q4cNJX0hKdQ.roa
Signing time: Wed 14 Dec 2022 01:09:33 +0000
ROA not before: Wed 14 Dec 2022 01:09:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0e:2d:fd:36:ea:5b:2e:0f:2e:e1:b9:0e:70:38:a0:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Dec 14 01:09:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f45694a8e569062e5b198f6ab870d257d2129d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:de:86:98:cd:f9:41:06:21:29:6a:d7:89:35:
dc:e3:70:ba:26:44:93:3a:96:2d:52:8c:44:23:17:
84:da:c0:c8:cc:3d:a2:d9:b1:3c:7a:cf:2f:17:6f:
da:6d:2f:72:f1:81:55:64:dc:7d:4e:22:00:99:ec:
51:f8:e2:67:c0:b7:f7:11:1f:54:06:c6:99:02:33:
fc:e8:1d:ce:e7:be:73:8c:fc:df:59:c5:74:df:db:
51:79:e3:04:0e:24:a2:fe:18:9c:bb:f2:04:a7:a2:
92:d3:02:4e:71:e4:39:e0:7c:2c:65:19:eb:09:a9:
ed:0e:12:7c:bd:e7:42:22:01:e2:9f:eb:22:90:22:
08:49:ee:b4:9b:3c:64:53:28:93:94:e6:dd:2e:41:
b1:c9:6d:c3:10:27:60:d4:cc:40:1f:75:9c:a7:28:
0e:30:44:5d:a7:cb:6b:6e:b0:36:7d:2f:21:c1:cd:
e0:2e:97:79:6f:2b:f9:d7:a5:8c:a6:fc:76:30:e4:
b7:55:76:85:3d:90:e6:67:d4:70:9b:24:86:8d:81:
e6:25:1e:8d:9f:3b:88:e2:84:5b:79:d4:19:af:79:
e1:a0:dc:1b:de:19:80:f6:73:24:a7:08:35:66:6c:
8f:75:9a:43:62:c7:f8:df:19:fc:39:a2:68:e1:2b:
58:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:45:69:4A:8E:56:90:62:E5:B1:98:F6:AB:87:0D:25:7D:21:29:D4
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/n0VpSo5WkGLlsZj2q4cNJX0hKdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
58:cc:24:53:ca:ed:50:5c:f9:56:8e:7c:8f:4d:e8:93:f1:e8:
99:62:56:cc:dc:4c:de:28:bf:a4:bb:26:1e:e2:90:4c:1e:e2:
9d:85:24:30:41:6f:c8:72:1f:94:bc:fd:46:2b:5b:14:54:c7:
99:9d:aa:f4:8c:51:28:bf:50:5f:50:c5:d0:38:0e:2f:8c:2f:
ff:12:32:46:d2:85:32:ae:88:7a:bf:84:7e:59:e2:6d:06:dc:
8a:71:41:c2:9b:1b:e7:34:48:ef:e6:24:7d:4e:83:c9:df:82:
c3:5c:7b:d2:4b:3b:62:ff:20:09:ce:0f:d7:09:e7:b6:4b:59:
1b:ee:9f:1e:3c:46:a2:55:89:69:db:f3:0f:cf:e6:01:c6:0c:
c6:50:84:65:b1:76:13:ae:a5:0c:89:e7:72:04:8d:c5:0c:2d:
66:5e:63:5e:0f:41:24:37:e3:31:4e:11:51:26:41:51:33:80:
02:3a:ac:b4:12:ed:cb:8e:b4:94:af:f0:f3:d9:c0:d3:bf:56:
57:3b:84:f0:d0:a2:1d:f1:3f:df:2e:3b:fe:6e:c9:0b:53:87:
5f:a1:48:72:b6:ed:39:36:db:70:8f:ab:8f:59:3d:a8:76:e9:
24:6c:7c:d2:b3:6b:24:d8:a5:d6:a2:bd:cd:e9:7f:60:4f:f2:
91:8e:08:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 03:17:12 2025 by rpki-client