Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/rHBa6SWqWgMhi2fNIrU3U5QAhzY.roa
File: rHBa6SWqWgMhi2fNIrU3U5QAhzY.roa (raw, json)
Hash identifier: zvfqZvX2w4c4RGT3ZOtzqnu40FAaGG8m9oNOhZ1mEFk=
Subject key identifier: AC:70:5A:E9:25:AA:5A:03:21:8B:67:CD:22:B5:37:53:94:00:87:36
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0184D9308E4F258713017EC05095C903942F
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/rHBa6SWqWgMhi2fNIrU3U5QAhzY.roa
Signing time: Sat 03 Dec 2022 18:12:28 +0000
ROA not before: Sat 03 Dec 2022 18:12:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d9:30:8e:4f:25:87:13:01:7e:c0:50:95:c9:03:94:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Dec 3 18:12:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac705ae925aa5a03218b67cd22b5375394008736
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:99:dc:f4:99:ae:66:9d:3a:5b:d3:3f:42:10:
fe:58:a9:fa:db:89:06:50:a7:00:b4:0d:59:cb:95:
53:ec:94:3c:36:ef:14:0a:f2:8e:7d:61:e9:16:e7:
71:cb:91:b0:d7:73:33:16:c7:41:32:70:e2:6d:45:
b2:79:a3:46:f8:94:93:6b:f0:a7:79:13:18:b3:aa:
d4:50:9b:7f:0c:95:57:8d:d5:f8:4b:dd:ac:0a:18:
bf:ae:a3:cf:97:0e:4c:e6:ee:b1:5b:18:53:a8:35:
61:a1:cd:ad:60:ad:95:ce:56:02:3f:f5:89:02:c9:
56:9f:05:d0:eb:ac:e0:e6:5e:c4:e0:b0:01:6e:ff:
b3:6a:be:bc:bc:7b:20:4e:61:45:d2:a7:eb:f8:25:
b5:3a:fa:a9:76:c2:eb:c8:54:e9:b4:df:78:55:72:
c7:f1:73:bb:fc:1e:f6:0e:09:95:fb:c5:39:0c:4a:
a5:cc:fe:7e:1d:44:cb:4b:08:52:93:a6:98:e2:9b:
b9:34:44:90:4a:6f:d2:49:8f:8e:70:09:3c:fb:c7:
d5:19:7c:71:eb:56:5a:a0:9b:89:29:52:41:d6:65:
14:bb:13:21:a9:52:42:29:f4:5f:30:01:29:f6:02:
a8:00:96:ae:2a:46:a1:19:81:c3:eb:76:00:76:4f:
79:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:70:5A:E9:25:AA:5A:03:21:8B:67:CD:22:B5:37:53:94:00:87:36
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/rHBa6SWqWgMhi2fNIrU3U5QAhzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
25:7e:e2:85:19:89:0d:2e:af:2e:40:5c:a7:5d:92:0a:b6:4f:
3d:9a:a3:dc:f2:36:91:e5:1f:99:76:58:0a:c2:f3:71:8d:76:
bd:74:be:19:4d:01:68:f6:68:55:81:27:1f:32:55:e3:b1:1e:
a5:4e:6e:6c:85:cf:d8:dd:ee:df:78:a7:f4:5c:c2:4b:50:3e:
7a:f5:4e:72:80:c7:ac:d4:8a:28:6b:e1:06:53:ac:75:44:81:
b4:5d:31:11:3b:18:c7:5b:c8:29:1f:f1:2a:b5:19:be:73:11:
2a:36:b2:90:0f:af:05:8e:42:29:7b:25:25:34:c5:50:63:47:
4c:cb:ce:32:ed:c9:e3:38:b1:9b:f9:31:76:6a:8b:9a:86:51:
89:dd:60:f2:3c:24:26:e8:85:3a:6c:c4:24:11:18:54:d3:df:
e2:89:93:a5:65:d0:aa:e5:0b:5b:73:de:f0:d9:ee:68:54:c8:
bb:38:67:47:e1:af:d1:f2:6f:54:05:19:2a:72:07:de:00:df:
31:40:64:98:d5:c8:ea:7e:5b:df:cb:52:fd:ec:1a:69:5e:ca:
79:22:a6:67:08:2e:da:2d:89:8d:3e:fc:4c:cb:bc:da:d3:dd:
cc:41:8b:66:b7:4d:1e:d1:52:bf:7f:50:0b:49:d6:9d:b7:27:
7c:ec:14:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 22:00:11 2025 by rpki-client