Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/oUegr2_ZAVYRFjvalddpH2kDYSY.roa
File: oUegr2_ZAVYRFjvalddpH2kDYSY.roa (raw, json)
Hash identifier: mCkCZMzYu2xeHAKNtyVq7JkynME5sF+vp31RDTj3XYQ=
Subject key identifier: A1:47:A0:AF:6F:D9:01:56:11:16:3B:DA:95:D7:69:1F:69:03:61:26
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 888D7AAB
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/oUegr2_ZAVYRFjvalddpH2kDYSY.roa
Signing time: Mon 30 May 2022 22:10:13 +0000
ROA not before: Mon 30 May 2022 22:10:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:181:22f:7a99/128 maxlen: 128
2001:67c:64:ffff:0:180:ff9c:1e7a/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2290973355 (0x888d7aab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 30 22:10:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a147a0af6fd9015611163bda95d7691f69036126
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:42:a7:55:f5:3a:5e:d1:80:28:e5:c6:09:26:
db:97:f1:6d:75:53:6f:f9:3c:19:39:69:6b:72:0c:
70:63:d6:3a:66:50:da:01:75:2c:95:ee:d2:98:06:
90:23:a8:23:d7:62:d5:cc:d0:06:a8:54:05:7d:78:
1c:84:c2:90:7c:32:4a:ee:01:7b:f5:15:5e:cc:4c:
52:8d:57:dc:13:b6:6a:99:eb:be:f1:a5:c5:12:1b:
63:82:a4:11:30:1a:b6:56:cf:4a:79:0e:a3:f7:97:
0c:38:d4:a7:e6:8c:8a:1b:2f:2c:e7:96:ab:d7:d5:
47:1b:b2:f3:7b:e6:66:8a:11:31:19:66:6d:dc:ff:
6a:2d:3f:d7:f8:58:ff:5a:cb:1f:64:69:3c:78:04:
28:a3:c6:7d:2e:b2:89:1a:e3:49:ec:67:d5:ea:00:
46:e6:f1:52:04:dc:a6:98:07:35:55:4b:07:05:a2:
29:31:0a:1a:e7:a9:ab:cc:ee:36:d7:43:42:10:71:
ba:6c:aa:cd:17:b2:d3:7c:8f:39:fa:96:a1:de:2d:
8e:74:6b:ef:4b:00:d5:ec:32:ad:0f:d7:72:07:4c:
de:36:d9:fb:af:0e:7a:a5:53:93:d8:c9:8c:e4:ad:
05:fb:4a:c7:1a:49:07:e8:1f:f6:43:f7:2b:ce:79:
57:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:47:A0:AF:6F:D9:01:56:11:16:3B:DA:95:D7:69:1F:69:03:61:26
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/oUegr2_ZAVYRFjvalddpH2kDYSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
64:c9:b8:3e:dd:9a:66:f0:21:45:37:0c:2a:34:65:6c:94:ab:
52:19:39:2f:cb:15:a5:dd:4a:f0:7f:bc:20:3e:32:ea:2f:0e:
ec:13:6d:ba:f7:f6:dc:fa:d1:21:a9:e8:be:a7:c3:31:76:cb:
dc:81:7c:90:91:fc:99:96:94:32:27:1f:4a:b3:1e:b6:6a:9a:
f3:6e:90:ca:0d:20:07:33:f4:03:e2:4d:dc:40:c6:72:9f:74:
47:e0:d2:71:5b:6f:f8:d2:bf:8d:8b:f9:69:a9:c5:b3:1b:98:
df:78:99:cc:d9:a6:7d:a3:4c:1e:e2:b0:cc:f0:b0:54:b7:86:
a6:7e:22:39:06:d9:6c:49:71:fc:f6:3a:39:e2:fb:ae:f3:3f:
be:66:f8:12:4c:13:ab:c4:e2:a8:07:12:1a:62:3a:8e:22:89:
4f:2b:50:ca:d9:f3:72:53:81:43:ae:39:91:41:20:03:4f:05:
98:3a:39:f8:f2:81:f7:6f:b2:f4:2c:d2:97:46:6d:5d:98:99:
3b:c7:53:0d:35:d3:f1:b4:b6:cc:62:0a:fe:39:e5:3e:6e:57:
da:fa:66:e0:0b:53:76:cb:a0:bf:25:85:80:8a:2b:2b:9e:3d:
12:f8:9b:2c:0c:fc:be:28:53:a6:a2:52:85:31:8a:ec:68:3c:
d6:c4:90:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 12:52:36 2025 by rpki-client