Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/n579I8X2k9WEzbzqLSkHmofVZ5Q.roa
File: n579I8X2k9WEzbzqLSkHmofVZ5Q.roa (raw, json)
Hash identifier: A+YlsGNJwky1ToB2zecz7bYfzwP/IGj9zZubUtEkinc=
Subject key identifier: 9F:9E:FD:23:C5:F6:93:D5:84:CD:BC:EA:2D:29:07:9A:87:D5:67:94
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018A19F3D78F32DAEAC4B18ED2F884BC9D77
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/n579I8X2k9WEzbzqLSkHmofVZ5Q.roa
Signing time: Mon 21 Aug 2023 21:15:25 +0000
ROA not before: Mon 21 Aug 2023 21:15:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18a:178d:7ed9/128 maxlen: 128
2001:67c:64:ffff:0:189:a0e4:5c7d/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:19:f3:d7:8f:32:da:ea:c4:b1:8e:d2:f8:84:bc:9d:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 21 21:15:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f9efd23c5f693d584cdbcea2d29079a87d56794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d4:03:a0:80:94:dc:7a:6e:65:7d:98:96:0c:
2b:2e:a1:b0:b4:23:d0:e7:ed:fa:d1:5e:eb:8d:d4:
e5:a3:ea:95:17:79:0f:da:b3:bb:1b:50:04:8f:b2:
b5:ab:fe:68:7e:da:d0:1c:70:16:98:f1:96:26:3f:
45:a2:ce:2d:0b:87:a2:1f:f8:fe:9e:23:8a:c2:22:
70:8a:71:d0:c0:36:fe:b6:9d:89:85:93:1e:89:0d:
64:c1:87:4b:a0:82:6c:77:68:5c:e6:f7:36:8b:b5:
ad:6a:6f:5e:81:9c:18:9b:61:51:61:57:e8:75:1d:
ea:8e:4b:22:5d:ee:8d:d1:1b:cf:2f:19:4f:bb:c5:
87:15:60:27:30:cc:0f:b6:65:77:64:29:24:0e:a6:
39:c6:6b:68:48:a4:2a:15:6b:22:72:05:a4:6e:ea:
24:3b:78:d6:38:4c:4b:ac:64:2a:1c:c9:33:8f:16:
7d:09:07:6c:f5:ef:d9:6d:8a:f0:2a:ce:40:96:73:
ad:af:e6:00:24:e5:31:d2:9e:c3:7d:24:63:54:e2:
05:a3:99:11:e1:35:6d:96:f3:b4:f1:18:7d:3f:48:
2e:05:7b:36:ea:20:70:79:21:a3:c6:7b:ef:99:d5:
60:c0:0e:83:8c:1c:42:85:56:57:97:7c:49:43:2e:
8e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:9E:FD:23:C5:F6:93:D5:84:CD:BC:EA:2D:29:07:9A:87:D5:67:94
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/n579I8X2k9WEzbzqLSkHmofVZ5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
81:d7:51:12:17:fb:bf:55:7e:83:cb:05:5d:c5:37:fa:7b:89:
e7:6c:22:c3:f7:ac:3f:ad:0b:32:0f:bc:04:b6:4a:23:ae:91:
9d:4b:21:4e:35:f0:35:4a:61:aa:fa:9f:9c:fe:0e:90:69:14:
9d:1c:c5:e6:ab:4b:38:ad:48:fe:db:db:ca:be:16:a7:22:25:
25:b1:14:21:94:91:ed:a5:05:aa:5b:7a:5a:e5:19:fa:27:30:
02:25:e1:bf:51:83:47:a9:d8:bf:42:70:88:eb:66:05:fa:7a:
31:ac:bf:34:9d:0d:40:28:2e:a1:6b:61:18:a5:34:0d:16:21:
6c:64:98:9a:24:fb:14:19:b0:a8:16:97:65:cc:66:44:d1:e3:
a4:b2:08:28:15:f6:53:b3:58:31:3f:3e:8b:c7:d5:97:3a:9c:
f9:47:00:38:2d:21:2a:e2:90:34:24:27:9f:7c:39:ed:5e:3c:
a0:5c:f2:40:ce:d9:4a:51:7c:c4:4a:61:38:b4:34:1f:ee:38:
0d:b3:19:90:d5:57:be:98:f3:34:df:10:5d:0b:26:df:88:19:
99:09:df:26:75:0c:15:c7:64:2d:d9:02:4f:a2:a2:fa:55:30:
bb:53:d8:02:05:bd:9b:80:ca:22:2f:2a:75:68:30:6e:2e:7e:
4c:86:4f:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 17:34:34 2025 by rpki-client