Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/rDlecGrb3ft35o7e6gkmG2dStuA.roa
File: rDlecGrb3ft35o7e6gkmG2dStuA.roa (raw, json)
Hash identifier: Js3idyLyPpf1By9boDxzOxPQrxVdhuYD9TMTTFe+uBE=
Subject key identifier: AC:39:5E:70:6A:DB:DD:FB:77:E6:8E:DE:EA:09:26:1B:67:52:B6:E0
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018513FBE3B214685C4D6A035789D2B13C06
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/rDlecGrb3ft35o7e6gkmG2dStuA.roa
Signing time: Thu 15 Dec 2022 04:12:33 +0000
ROA not before: Thu 15 Dec 2022 04:12:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:13:fb:e3:b2:14:68:5c:4d:6a:03:57:89:d2:b1:3c:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Dec 15 04:12:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac395e706adbddfb77e68edeea09261b6752b6e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:93:ea:db:7d:a4:a9:15:6d:72:61:0b:9d:f1:
10:01:ef:3e:50:cb:27:1a:b4:e3:ef:04:01:98:54:
2b:03:fc:ac:67:b9:52:ea:b2:a5:b3:bd:cf:1e:89:
6b:d1:6c:01:b6:aa:74:9a:0c:cb:b4:15:97:d7:1f:
b9:ee:8a:92:78:f7:13:09:90:bd:42:50:11:dd:4c:
0c:16:e3:f1:a5:ea:fd:55:f6:d7:eb:d5:1e:4f:c0:
dd:3e:03:a9:82:84:33:32:32:c8:9b:3e:10:af:93:
67:58:ee:2f:3a:53:28:0b:e3:dc:ab:da:5b:21:33:
0f:06:f5:24:3c:24:a9:19:f6:32:ae:34:78:21:c0:
15:55:10:78:61:62:49:cb:19:93:7d:25:70:a3:e1:
53:e0:a9:94:80:18:69:b2:38:25:67:27:4c:e9:bd:
9e:0b:44:3d:fc:93:41:05:40:94:2b:1e:b3:2b:d4:
4c:0a:08:47:fa:dc:b4:be:95:29:ec:9b:94:2b:8b:
d2:28:26:90:9a:1b:25:8f:79:55:00:6e:23:30:50:
5c:16:43:37:aa:21:e8:44:2f:80:0d:cc:c6:91:2b:
d5:c9:9c:da:c3:2d:af:ee:17:5a:be:50:47:4d:ce:
60:54:47:0d:a4:04:0f:01:0d:89:ea:30:7f:6b:79:
38:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:39:5E:70:6A:DB:DD:FB:77:E6:8E:DE:EA:09:26:1B:67:52:B6:E0
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/rDlecGrb3ft35o7e6gkmG2dStuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
21:90:49:09:13:a7:1e:25:08:38:4a:9d:59:a0:99:48:bf:ec:
0d:a5:2a:0d:1d:32:dc:6e:0c:d3:3b:9b:04:a6:4c:3b:72:8a:
a6:cb:6d:72:4c:79:37:4e:eb:44:d0:e4:d8:c4:c0:4c:2f:a7:
e6:66:47:74:33:7f:9a:2b:59:f0:af:f4:d5:07:98:3a:22:d8:
1b:f0:ef:29:26:1f:b7:6d:e3:9f:92:7d:b5:37:92:76:b2:34:
bf:a6:c1:4f:5b:be:72:dd:f0:d4:ec:a6:f4:64:64:32:27:ec:
47:bd:14:f1:97:10:e1:e3:7b:b6:0d:a9:c2:bf:b4:7f:8b:a9:
d2:f1:f4:d7:1e:e4:e7:25:0f:24:b7:b8:49:9c:48:59:20:2d:
86:b2:29:75:f4:cd:45:f5:2b:25:80:a2:7a:f1:93:9e:50:ec:
b4:18:92:97:1d:d2:3f:c6:b2:54:e4:d1:37:47:42:2a:8b:74:
a3:2f:c4:69:a4:5b:5d:28:09:45:79:bc:dc:62:7d:62:be:26:
79:92:09:df:73:01:d0:75:10:04:67:5f:7a:30:85:ef:5a:ba:
88:ef:11:57:b0:7a:a0:4d:39:b1:0c:e7:8a:2a:70:ec:c8:19:
84:bd:30:50:5d:6b:98:4f:a6:c5:b5:e2:92:0e:33:52:84:34:
9e:fb:44:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 05:40:05 2025 by rpki-client