Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ou4vGJPUh-7tl3tKDfzYSyQLRaw.roa
File: ou4vGJPUh-7tl3tKDfzYSyQLRaw.roa (raw, json)
Hash identifier: Y7qqX4Lf5De9ETIuTQgHS4Wj4mNT47ex4kKyOjdFEuc=
Subject key identifier: A2:EE:2F:18:93:D4:87:EE:ED:97:7B:4A:0D:FC:D8:4B:24:0B:45:AC
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0186EDF5632EECCCE1A5C1A55A26F4187016
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ou4vGJPUh-7tl3tKDfzYSyQLRaw.roa
Signing time: Fri 17 Mar 2023 05:05:27 +0000
ROA not before: Fri 17 Mar 2023 05:05:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:edf4:840a/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ed:f5:63:2e:ec:cc:e1:a5:c1:a5:5a:26:f4:18:70:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Mar 17 05:05:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2ee2f1893d487eeed977b4a0dfcd84b240b45ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:26:e5:77:99:6f:77:4b:40:0b:24:e7:34:ee:
a8:49:84:de:7f:67:73:57:b1:0d:6a:93:02:75:df:
80:a3:f0:21:f8:3f:de:2c:a3:25:79:54:4d:98:58:
52:4c:df:6a:b0:8c:3f:95:93:91:d0:42:5f:5c:16:
94:e5:c4:8f:f0:1e:ca:0d:4e:d7:1c:a4:bb:d9:9d:
24:af:5b:83:2f:55:42:5e:14:42:17:dd:7b:54:d0:
38:63:e2:2a:ec:48:dc:44:e3:4c:1e:3c:99:38:54:
31:a5:40:da:e2:b2:c7:51:58:19:11:eb:35:23:21:
cb:fb:c1:62:39:37:74:48:59:10:74:2c:39:1e:c0:
1e:b8:3e:e2:7d:95:52:98:a8:82:28:9d:a1:b9:07:
a3:28:00:b9:3f:86:5b:6f:26:18:1a:ac:40:ce:dc:
39:92:0d:87:31:7d:9d:27:d1:a5:be:8e:d9:65:8c:
64:f3:61:8a:fd:e8:53:d4:df:d8:91:72:fc:71:d7:
02:0d:18:b0:ac:f7:27:1e:a3:3e:9c:8a:21:88:de:
33:6e:00:13:e1:bf:57:44:af:9f:3e:0d:ec:d3:8d:
d6:e4:f8:9b:c3:68:be:cc:87:50:bc:f1:c2:76:d7:
7e:ca:56:08:f0:44:09:34:13:79:bf:ea:49:f3:d3:
eb:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:EE:2F:18:93:D4:87:EE:ED:97:7B:4A:0D:FC:D8:4B:24:0B:45:AC
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ou4vGJPUh-7tl3tKDfzYSyQLRaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
b2:54:b1:69:17:a6:d2:7c:47:cd:73:3f:f8:e6:f4:57:e4:bc:
e9:84:a1:ff:cc:fc:be:24:47:c2:90:1f:76:ae:4c:f6:92:03:
29:d1:91:60:35:54:b0:b7:d9:62:cc:98:d6:e4:f4:2b:31:9f:
ef:6d:6f:24:49:cd:0e:29:8b:a1:b4:a0:3d:a2:8b:0b:b2:5f:
de:52:72:55:76:e7:ec:4c:e9:a6:68:71:5d:8e:1a:df:7f:5b:
b5:9f:db:13:3b:e4:47:6e:28:fd:00:a1:42:68:9a:8e:ae:6a:
b4:c6:df:45:9c:b6:28:2a:56:7c:cc:e5:98:23:e1:b5:da:44:
33:c3:b1:27:ba:b1:f1:00:9f:0d:74:fd:af:84:75:52:f3:7b:
38:fa:7f:14:f9:42:f8:eb:8c:27:86:f1:db:6b:99:87:59:33:
eb:16:de:ad:f6:a8:98:6c:9d:24:a7:d7:4f:fb:ac:f0:71:ef:
79:74:41:a2:da:02:0b:ce:e6:e6:d8:f8:e1:62:53:3a:d5:ce:
ee:8e:8c:72:10:6d:4f:05:5a:3e:28:b4:ad:ef:d9:05:86:38:
84:78:57:43:2d:91:fd:4b:75:ae:cf:b7:1d:41:73:6e:99:04:
ad:c2:d8:cb:92:90:62:6b:48:a6:74:29:91:b7:6b:ce:f2:16:
3a:54:60:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 03:55:44 2025 by rpki-client