Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/rHGv2odBWlNUCjK8FiEZ8Q24YGk.roa
File: rHGv2odBWlNUCjK8FiEZ8Q24YGk.roa (raw, json)
Hash identifier: +pbaJ4UFib4AngovPXxKImVs91DHnJ4DaW8Ho8zsYuU=
Subject key identifier: AC:71:AF:DA:87:41:5A:53:54:0A:32:BC:16:21:19:F1:0D:B8:60:69
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0187FE0F034332EFF1EC489B45CF4F379F5F
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/rHGv2odBWlNUCjK8FiEZ8Q24YGk.roa
Signing time: Tue 09 May 2023 01:10:09 +0000
ROA not before: Tue 09 May 2023 01:10:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:fe:0f:03:43:32:ef:f1:ec:48:9b:45:cf:4f:37:9f:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 9 01:10:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac71afda87415a53540a32bc162119f10db86069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:85:d4:24:3f:28:3a:db:67:97:7a:38:1c:ae:
b3:42:aa:b6:57:09:ec:6c:11:c5:7d:70:62:f4:c8:
d1:b1:90:63:b1:9b:a8:c0:d8:4c:e6:eb:b0:48:a2:
1d:e3:ef:1b:60:ac:71:11:f0:b1:62:8a:61:3c:17:
a5:5f:b7:2c:73:a8:38:77:0b:09:7c:ed:3c:6d:30:
b3:4e:a2:a7:80:5e:49:71:e2:2b:b1:6a:f7:01:7f:
4a:f4:93:42:6d:52:cf:65:ba:e1:64:43:21:c7:e3:
63:4f:9f:31:e0:70:e7:0d:10:93:80:c4:6d:98:f4:
d2:e5:db:6b:2e:b4:56:4e:82:98:fd:ef:9a:ca:80:
47:1c:e1:98:e9:dc:e1:3e:1d:c9:4e:20:e9:dd:27:
be:e2:ec:00:ed:5e:05:51:ce:01:0e:73:9e:0e:5e:
c9:8f:72:d9:7c:e7:64:cd:e5:86:32:9a:b9:07:c3:
b4:01:c2:59:d9:b7:48:b2:6d:5b:2f:9d:5d:20:9f:
b3:39:47:9f:1e:7f:4b:6d:c6:12:5b:49:50:a1:96:
3c:5f:cf:e2:db:71:cd:b5:b5:2c:86:42:75:ab:df:
87:38:02:18:dd:4a:97:4c:e5:28:f6:b6:60:47:ab:
ff:0a:ae:df:32:97:07:0a:45:31:0a:5b:c9:cc:b8:
ea:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:71:AF:DA:87:41:5A:53:54:0A:32:BC:16:21:19:F1:0D:B8:60:69
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/rHGv2odBWlNUCjK8FiEZ8Q24YGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
92:55:02:6d:2e:b9:20:db:0b:f5:d2:56:1d:15:b1:b8:32:d3:
a7:b2:90:46:76:2e:21:d6:68:aa:b8:23:c1:78:29:4e:7a:cf:
ce:fd:1b:50:b2:c6:ce:c3:dd:68:a3:9b:94:19:bc:82:14:15:
62:e0:0c:c3:99:52:f8:c2:31:d0:e7:39:b4:4a:55:c1:d9:8b:
d8:17:4f:01:e8:0c:ef:0e:36:e4:e1:e7:59:b1:95:2d:f9:be:
82:7c:00:f3:58:25:17:00:3d:8d:97:6c:44:c0:21:22:c7:f6:
06:27:32:5f:51:d1:18:67:25:4e:25:8c:2f:b0:d4:cf:21:81:
01:63:9c:24:47:02:74:45:da:07:57:cc:21:8f:eb:23:a5:82:
57:f3:fa:9b:e8:6f:55:09:97:41:d0:d0:3b:e6:14:a3:ce:41:
96:0b:5d:f8:97:e8:ea:e4:8a:c8:94:8a:22:3d:59:40:5c:b7:
55:01:08:6d:b0:3f:6b:dc:ae:b3:42:eb:b0:0a:30:27:48:b6:
b0:34:a1:e3:57:89:b9:65:12:01:a0:b4:17:e4:dd:9d:97:46:
08:79:49:4a:45:4b:be:43:87:e5:f1:26:47:f0:b0:34:63:58:
b5:50:3f:ef:41:68:56:b3:c1:c0:4e:7b:07:28:be:5c:55:1e:
fb:65:c1:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 02:22:33 2025 by rpki-client