Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/nyoHzgehiiv1GY1TA93WvS0ZATk.roa
File: nyoHzgehiiv1GY1TA93WvS0ZATk.roa (raw, json)
Hash identifier: vFbY38QLTYDxy6U/NMs1DkE4MHi+WkDipITo3nybUK4=
Subject key identifier: 9F:2A:07:CE:07:A1:8A:2B:F5:19:8D:53:03:DD:D6:BD:2D:19:01:39
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01896D3524C1EB482286DD7DC56588CA58BF
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/nyoHzgehiiv1GY1TA93WvS0ZATk.roa
Signing time: Wed 19 Jul 2023 08:12:26 +0000
ROA not before: Wed 19 Jul 2023 08:12:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6d:35:24:c1:eb:48:22:86:dd:7d:c5:65:88:ca:58:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 19 08:12:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f2a07ce07a18a2bf5198d5303ddd6bd2d190139
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f1:07:49:40:fb:20:36:ec:cd:6f:13:36:b8:
f2:5f:6f:b3:dd:7d:57:69:50:74:ac:fa:93:cd:40:
30:0d:5a:75:aa:c1:95:e5:14:f7:4b:41:64:3c:10:
e5:d1:e9:cf:5a:2c:bb:7e:57:73:12:5e:11:fd:89:
59:87:57:aa:aa:d8:68:54:af:e3:8d:f6:ea:28:1b:
3b:7f:ef:75:61:ee:c4:19:9e:48:f1:01:2f:4e:b3:
f4:e6:c0:1e:70:64:f4:53:52:ab:a4:98:54:c8:e5:
a8:33:2d:29:41:00:a5:97:12:e4:6b:1b:73:89:fe:
27:87:68:cb:e2:da:a3:9d:fb:8e:90:66:57:64:e7:
f6:4f:f1:b0:51:94:8c:0d:a7:54:02:67:40:b7:ae:
b5:ff:2e:cb:2f:33:f2:48:31:a3:81:95:09:82:9e:
2e:a2:57:ee:c9:a3:ee:1c:a3:c0:28:87:11:bd:0c:
e5:9a:78:7c:22:54:4d:84:2f:ab:94:a6:9f:9f:da:
c0:de:02:65:3d:b5:07:27:14:f9:17:88:b0:0e:89:
b1:e4:16:75:33:29:42:7c:b6:1a:c1:b0:74:88:40:
27:63:7b:75:6f:cd:5c:42:99:03:bf:96:61:c8:3f:
e1:9f:c5:e1:cf:ab:90:49:d0:29:c5:15:55:a0:15:
a7:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:2A:07:CE:07:A1:8A:2B:F5:19:8D:53:03:DD:D6:BD:2D:19:01:39
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/nyoHzgehiiv1GY1TA93WvS0ZATk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
0a:db:fd:10:41:90:a4:25:60:dd:83:77:6d:b5:83:0d:18:9a:
6b:41:ef:8a:a8:70:26:f3:51:36:df:26:cc:81:1c:29:3f:3d:
7c:f9:1d:d8:3b:62:14:9f:f5:00:61:26:a1:a6:0f:38:e0:6a:
16:af:46:5d:4b:0a:1a:9f:a9:c5:91:d2:dd:73:f1:ae:03:db:
0b:e4:05:7c:0e:5a:55:90:1d:76:16:ea:86:99:b4:f5:8a:c7:
91:fa:0f:22:1b:8a:40:e6:40:e7:0d:bc:60:72:fb:c8:bb:3b:
b6:2b:8d:86:a3:33:f1:2d:02:b2:89:f3:0f:5d:0b:f9:3b:0f:
67:a0:8f:0c:1d:ed:9a:6b:c0:a5:b7:b1:45:3a:f7:2b:97:c3:
bf:3c:03:07:04:e3:3d:a4:80:ba:94:35:39:df:18:fa:2d:4f:
7a:f4:86:51:f3:59:e5:d0:17:9d:8d:75:74:5e:17:73:9c:a2:
68:f7:ed:a2:44:9b:f6:11:c2:44:e4:b2:00:98:58:88:c3:b4:
49:5f:0f:a1:4a:35:75:6e:99:3f:41:1e:98:a1:7f:41:7c:10:
4b:77:fd:bf:20:f3:4a:36:95:79:67:4b:4e:0a:8d:0e:cd:b9:
28:6f:75:54:d9:58:37:6a:d0:ea:40:e4:a5:63:58:1f:39:b8:
20:68:c0:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 22:00:55 2025 by rpki-client