Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/nWvaxWZ7b0Q_NGtWTsBB3k-JX6Q.roa
File: nWvaxWZ7b0Q_NGtWTsBB3k-JX6Q.roa (raw, json)
Hash identifier: 63X8hTNMIoIuCdOzfQVk41wigx+IYp1pOL0FLMafhEU=
Subject key identifier: 9D:6B:DA:C5:66:7B:6F:44:3F:34:6B:56:4E:C0:41:DE:4F:89:5F:A4
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01879E92EC45AC69811CF7CA76680FD39AB4
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/nWvaxWZ7b0Q_NGtWTsBB3k-JX6Q.roa
Signing time: Thu 20 Apr 2023 12:10:41 +0000
ROA not before: Thu 20 Apr 2023 12:10:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9e:92:ec:45:ac:69:81:1c:f7:ca:76:68:0f:d3:9a:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 20 12:10:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d6bdac5667b6f443f346b564ec041de4f895fa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b9:81:bb:4b:70:18:98:df:f0:34:ee:b4:32:
7a:80:5f:e8:77:03:7b:5c:da:be:7c:6e:57:67:23:
f5:f5:06:9c:42:5d:d0:4a:4f:ce:4f:00:1a:40:78:
eb:0c:d7:c6:20:45:dd:26:d5:12:2c:fe:c7:41:46:
5e:23:c1:1b:95:f5:00:43:62:45:c6:09:1f:c1:9b:
52:43:d7:19:1e:6f:cc:2f:7b:3c:4f:d8:98:fc:44:
0b:4a:6b:4c:36:15:7f:35:93:5b:d6:c7:2d:35:aa:
d8:7a:d0:8b:1d:a2:bd:32:d3:b9:b8:f7:75:e8:f2:
f9:24:4c:c3:8b:44:ac:8b:65:c9:a3:a6:bb:61:a5:
ae:3e:c2:ab:e5:4d:02:76:20:17:59:f8:90:a4:42:
b1:45:de:98:4f:2f:fb:e2:1d:31:cd:25:ab:07:5e:
56:8b:f6:57:2a:16:31:6e:79:b7:d3:e3:55:cb:d9:
9f:a3:6e:07:ec:0a:b8:08:15:e7:a8:50:17:14:b2:
de:e5:7b:a0:48:a5:6e:b2:06:d9:34:8f:85:86:53:
de:f3:82:8a:45:4a:1b:93:77:00:07:ae:64:98:f2:
41:a5:ff:89:2b:d5:3a:94:0e:08:7c:46:3e:b9:15:
08:a8:bc:29:cd:d7:8d:bf:1a:8b:fe:f4:90:45:e0:
e3:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:6B:DA:C5:66:7B:6F:44:3F:34:6B:56:4E:C0:41:DE:4F:89:5F:A4
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/nWvaxWZ7b0Q_NGtWTsBB3k-JX6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
35:ea:e6:58:d7:ed:90:2e:4a:0d:a9:9b:cd:0d:76:43:91:3c:
d7:fd:63:e5:94:ca:1a:81:b6:ac:a3:d0:aa:64:38:3d:6b:90:
75:f0:a1:f9:6a:9e:72:82:ae:8b:e0:ea:d8:8c:ba:23:10:cf:
6f:b6:8f:44:42:49:82:58:8b:be:07:31:30:ba:c7:53:8e:cc:
c0:e4:e0:44:5b:9a:63:ad:71:08:56:e8:5c:1e:2c:83:03:7e:
61:16:3d:14:f1:21:a1:c4:3b:97:2c:9e:ce:52:51:a5:b1:4e:
aa:62:9b:eb:9d:cd:51:cf:1a:c9:a8:02:2e:61:4e:69:19:7e:
67:dd:77:25:b0:56:66:68:57:fe:c3:72:96:9e:02:d1:d8:61:
0c:d3:f8:c6:ea:1e:da:3b:0a:30:9f:1c:66:7f:bb:6d:8b:a8:
89:c4:f8:65:af:97:ca:5e:66:6f:a5:9b:ac:e3:98:83:19:ad:
66:8a:0a:76:14:b6:10:ce:87:a2:93:59:2e:44:20:2c:6f:0f:
58:73:59:56:9f:1a:30:94:75:d6:91:ae:77:27:18:18:83:3f:
99:5b:4d:a1:a3:5a:b4:32:4c:cc:c2:6f:a5:9d:b0:ce:bf:75:
c6:19:08:79:fe:03:23:91:2d:6a:be:63:e1:3b:e4:18:b4:d7:
02:d6:7c:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 01:28:50 2025 by rpki-client