Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/q7LAJavzr3BPFhsgBk7ymW1uqSg.roa
File: q7LAJavzr3BPFhsgBk7ymW1uqSg.roa (raw, json)
Hash identifier: b1LPSMcFa0AUgCuP9ZQuU1dqBuJ5YGa+sLqhiWtQjvA=
Subject key identifier: AB:B2:C0:25:AB:F3:AF:70:4F:16:1B:20:06:4E:F2:99:6D:6E:A9:28
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018738E1308824305A39D4A4BFBC1C809E4D
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/q7LAJavzr3BPFhsgBk7ymW1uqSg.roa
Signing time: Fri 31 Mar 2023 18:14:54 +0000
ROA not before: Fri 31 Mar 2023 18:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:38:e1:30:88:24:30:5a:39:d4:a4:bf:bc:1c:80:9e:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Mar 31 18:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=abb2c025abf3af704f161b20064ef2996d6ea928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:06:0c:d9:32:48:a6:11:08:b3:e7:1e:26:b6:
5c:27:38:1f:69:84:3a:36:1b:03:de:c9:23:61:d5:
02:6e:6c:05:4d:f5:9f:3d:33:da:87:50:b3:34:6c:
2b:40:ef:eb:ee:b7:9a:10:ca:3d:aa:92:98:0b:72:
3a:e3:66:cd:d0:10:e1:16:75:8c:ee:6f:a3:17:cb:
dc:fe:74:c8:72:d1:e8:18:58:a6:be:3a:98:46:bc:
75:3a:31:0f:c8:d1:a2:2f:cd:d4:a0:2c:1b:2e:3e:
bc:43:17:cf:af:39:29:22:dc:eb:60:b6:6d:9f:f2:
2e:3f:48:74:47:4c:53:fd:40:fd:8c:1a:6b:78:f4:
45:d2:05:ca:49:31:d3:b9:52:2c:10:31:2c:07:d2:
43:44:f9:91:86:10:78:b3:9e:a4:38:c1:67:7c:a3:
86:18:89:5a:be:65:f8:3f:24:87:2c:a8:f1:00:b5:
c8:c4:63:f4:24:10:a2:43:78:0e:81:de:d0:90:8c:
86:60:d3:e3:99:e8:1e:26:24:09:a4:80:02:76:84:
12:ce:8c:28:92:19:f0:21:53:8a:4c:f2:0f:de:19:
16:6c:2d:35:4c:e1:3c:12:43:cb:01:26:25:65:38:
18:44:77:91:38:01:12:c4:f0:a7:f0:fe:b2:87:0c:
f5:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:B2:C0:25:AB:F3:AF:70:4F:16:1B:20:06:4E:F2:99:6D:6E:A9:28
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/q7LAJavzr3BPFhsgBk7ymW1uqSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
1d:72:00:0e:d3:84:bb:56:12:f8:5f:8b:21:09:71:30:95:89:
15:fc:87:29:10:cf:92:9e:86:f4:b9:52:74:88:c5:d8:c3:54:
ef:91:e4:23:b8:40:79:3f:03:e4:0c:11:d5:a7:78:03:f5:33:
a3:79:01:ca:30:b5:ec:cd:20:c9:a6:e7:a2:87:d1:b6:ee:06:
fb:72:e2:94:f3:81:ca:49:08:4f:d4:c5:8f:a6:70:9e:ef:7a:
a6:70:3e:e1:63:0e:3a:c7:93:17:89:38:3c:6c:b1:94:ad:07:
a9:87:c5:62:64:b0:88:ea:06:de:26:17:f2:9b:e6:a0:75:8c:
4f:b4:7f:8d:a5:7e:22:ba:31:b3:90:aa:60:91:2f:03:34:3d:
57:e2:99:fc:a2:8b:0d:a6:cb:31:f3:72:e7:d5:2f:5c:e2:83:
19:1d:97:b5:01:1c:38:31:2f:a8:80:da:af:07:eb:81:86:17:
85:04:89:e9:ee:23:36:75:e4:37:a0:23:47:92:1b:0d:30:96:
8f:a0:8c:bb:0a:0b:6b:8c:79:6e:54:4c:d3:93:62:b0:41:f5:
84:ab:25:8a:3b:60:68:51:0a:cc:a5:0e:30:80:3e:57:46:d1:
f6:71:2b:92:15:06:95:d0:b6:c9:47:5f:11:b2:a4:6e:0b:5e:
d8:ba:00:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 21:33:08 2025 by rpki-client