Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/pRmmQgyhj9gctfF_kBl-E0X6_Jk.roa
File: pRmmQgyhj9gctfF_kBl-E0X6_Jk.roa (raw, json)
Hash identifier: zKfLaUVIv6z+1MOmQf2k9AFXy6I1gdAnsJFQTr83nLA=
Subject key identifier: A5:19:A6:42:0C:A1:8F:D8:1C:B5:F1:7F:90:19:7E:13:45:FA:FC:99
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0186462E0C5D76EDA7EA421EA18482FCA123
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/pRmmQgyhj9gctfF_kBl-E0X6_Jk.roa
Signing time: Sun 12 Feb 2023 15:11:08 +0000
ROA not before: Sun 12 Feb 2023 15:11:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:46:2e:0c:5d:76:ed:a7:ea:42:1e:a1:84:82:fc:a1:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 12 15:11:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a519a6420ca18fd81cb5f17f90197e1345fafc99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9d:6d:fb:0e:1d:26:e1:7b:31:65:7a:e2:ae:
dc:4a:c4:32:21:48:ff:b1:34:9d:39:77:9b:99:01:
18:6f:5c:db:eb:9d:e7:7a:8d:15:46:9f:ae:27:4a:
00:19:49:5a:e8:20:e3:74:0c:fe:fd:55:8b:89:bb:
91:53:01:8b:3f:c1:67:04:e3:77:74:4a:2a:86:e6:
55:2c:cb:75:a1:e9:d8:75:eb:c8:9f:10:75:43:af:
5d:d4:32:28:70:8e:40:2e:3d:f4:66:c1:8e:b8:46:
0b:1b:62:e1:1f:bd:21:c3:bf:45:92:a9:df:02:48:
6a:57:e4:af:11:f9:89:5b:a5:36:8b:3b:be:6f:9a:
02:bb:68:87:d5:ce:17:91:21:99:93:82:0d:6c:cc:
8b:5b:8b:a5:b3:5a:b7:95:18:12:59:a9:df:27:c1:
63:44:d8:e8:6c:77:ff:2f:b5:f4:60:57:3e:4c:77:
cd:c0:c2:a2:5d:d4:02:9f:19:81:ac:d1:2f:df:6a:
9e:ef:d4:ca:9f:ae:23:2f:8e:b3:61:8e:26:79:dc:
cf:15:89:39:28:f3:67:3e:5c:17:36:e9:4f:60:81:
68:74:49:33:73:62:27:71:6d:37:e5:5d:fa:e2:3a:
0f:39:18:3f:25:d8:f1:0e:fa:b0:94:62:3e:72:6b:
79:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:19:A6:42:0C:A1:8F:D8:1C:B5:F1:7F:90:19:7E:13:45:FA:FC:99
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/pRmmQgyhj9gctfF_kBl-E0X6_Jk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
55:f8:76:10:3e:73:de:cf:8c:64:71:fe:36:e3:49:94:36:4e:
f6:26:b6:37:7a:e4:7e:48:3d:40:3d:22:0e:fe:b2:eb:e7:2e:
c3:d8:0a:fb:51:31:24:4b:8a:4d:e7:21:6e:69:89:a9:c7:86:
9a:36:fb:91:4e:97:df:50:6f:b0:88:0a:67:61:3e:ac:07:7f:
13:ac:57:45:d4:a6:95:57:4d:03:d1:77:8e:b3:0e:1f:35:f6:
7c:aa:8a:06:c5:8e:15:35:5a:86:6b:b3:a9:35:22:ae:7f:e9:
be:6c:17:1a:8b:f7:c4:4a:fc:14:9b:6d:33:27:14:56:11:66:
29:fa:1b:48:24:7c:bd:de:25:91:28:fc:20:a0:0e:4e:d3:37:
74:6b:c3:14:95:81:48:0b:1c:ae:71:9e:b9:8f:95:9a:d5:96:
9d:b3:30:38:e9:88:2b:ab:87:fb:a7:3f:c9:a3:6b:b8:7b:ab:
af:3e:bb:5b:52:05:e5:aa:dd:0c:41:a8:ca:08:51:3b:c1:a3:
9b:79:49:96:36:56:f9:ed:0c:a0:57:1d:f4:d0:7d:bb:fc:42:
c4:22:00:11:a5:e9:4b:6b:ed:a1:e6:7a:54:42:56:a4:32:86:
e2:50:7a:e2:4a:17:9c:04:47:86:ad:5b:05:16:8a:c8:2e:dc:
ae:ea:ff:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 06:12:17 2025 by rpki-client