Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/o0RxbDYJfnzjjUkhJwPepY-gDOg.roa
File: o0RxbDYJfnzjjUkhJwPepY-gDOg.roa (raw, json)
Hash identifier: sDbzWhB7PMCxWSIbVYOeZpx0bRmGUWNaXweDTpussHY=
Subject key identifier: A3:44:71:6C:36:09:7E:7C:E3:8D:49:21:27:03:DE:A5:8F:A0:0C:E8
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0182102757B670209C79648C099A82605F33
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/o0RxbDYJfnzjjUkhJwPepY-gDOg.roa
Signing time: Mon 18 Jul 2022 07:13:09 +0000
ROA not before: Mon 18 Jul 2022 07:13:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:10:27:57:b6:70:20:9c:79:64:8c:09:9a:82:60:5f:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 18 07:13:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a344716c36097e7ce38d49212703dea58fa00ce8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:d5:ff:07:a2:d2:a8:dc:56:75:0e:d0:ae:44:
74:fa:bb:e7:7c:ef:00:b5:6e:77:13:c5:3d:82:62:
68:b3:5c:14:01:b5:6b:6c:fe:ab:7f:19:26:4e:52:
5b:dd:57:b7:92:89:66:1e:5c:0c:76:da:32:a4:d8:
19:92:5d:c4:35:59:5a:14:e6:b5:1e:4c:b3:b5:95:
f3:4f:37:ef:f1:41:c0:fa:e6:f2:98:d1:ca:99:2d:
61:09:87:ab:ad:65:10:51:38:48:73:27:ba:fa:9e:
8d:ad:3a:82:af:9e:6c:05:aa:8a:d8:f6:f6:d1:a5:
35:0a:ca:6d:34:3a:06:62:cd:e8:6e:fd:69:8c:69:
d2:1f:14:90:d7:1d:88:8c:63:f7:fc:e0:1f:d6:b1:
7f:56:06:c9:24:5d:12:9b:e4:33:10:8a:51:da:63:
38:75:6e:c4:ec:3b:6e:ed:f9:42:96:e3:61:c0:62:
ca:6b:e0:33:ff:12:5c:69:9e:ce:96:1d:6e:02:7b:
d2:7f:41:de:b7:fe:41:73:de:9c:d5:d1:f0:c8:04:
81:68:0d:5c:95:a6:9c:7c:c1:db:a7:1c:f1:c9:40:
2c:55:49:f0:df:17:5c:dd:6a:c9:d1:03:79:87:b0:
b3:83:6b:a9:e4:5f:6e:70:94:f7:51:36:c3:2e:c4:
ad:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:44:71:6C:36:09:7E:7C:E3:8D:49:21:27:03:DE:A5:8F:A0:0C:E8
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/o0RxbDYJfnzjjUkhJwPepY-gDOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
9e:49:a9:26:d9:dc:f1:fc:fb:a7:43:72:fb:32:be:36:9f:c2:
03:18:14:d1:1e:10:fe:90:10:d9:04:ff:29:06:a6:aa:8c:31:
09:8a:91:ad:f7:c2:cb:26:fc:b1:ef:38:8f:68:10:a0:72:97:
ad:38:8d:04:4f:f8:9c:40:71:f3:cb:16:1b:97:4a:8d:11:7c:
89:2b:78:fb:99:86:31:d5:26:38:03:7d:63:31:1e:23:3c:0c:
cd:56:6c:c2:0d:d3:ef:98:d2:16:4a:ef:06:ef:06:52:1e:0e:
f2:46:51:ce:f0:b1:ae:ed:13:60:83:3c:9d:55:d8:a1:62:2f:
04:f9:9e:83:76:26:0c:6a:a4:9f:70:ec:fd:e9:e7:ca:30:19:
ad:04:45:e0:00:c2:89:6f:00:06:2d:49:16:a4:dd:e6:ca:bb:
6e:aa:2b:1f:14:d6:75:43:5d:1f:bf:16:07:26:cc:d6:63:08:
e7:c9:54:c5:88:3d:c9:0e:43:44:a8:3b:f2:ce:f9:a0:23:c6:
25:2e:06:5e:8e:96:3f:72:38:56:db:4e:75:4c:74:f4:90:5d:
0f:ec:f1:23:6a:4b:d9:27:44:08:ff:93:6e:49:23:56:91:b5:
d3:76:d8:c6:40:e6:9d:53:60:ec:9e:91:80:05:6a:60:a2:8d:
86:6f:09:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 22:53:46 2025 by rpki-client