Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/rOhjQ20l0eCUTq6cTptg5K3He3g.roa
File: rOhjQ20l0eCUTq6cTptg5K3He3g.roa (raw, json)
Hash identifier: rS4rakBji/J2PF6HE/DOY8EFB6Q1eiXhciFc9lOhK14=
Subject key identifier: AC:E8:63:43:6D:25:D1:E0:94:4E:AE:9C:4E:9B:60:E4:AD:C7:7B:78
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 7F0BC037
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/rOhjQ20l0eCUTq6cTptg5K3He3g.roa
Signing time: Wed 27 Apr 2022 20:09:33 +0000
ROA not before: Wed 27 Apr 2022 20:09:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:180:466e:42dd/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:180:457:1e3f/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2131476535 (0x7f0bc037)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 27 20:09:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ace863436d25d1e0944eae9c4e9b60e4adc77b78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:10:62:d1:80:15:d0:30:54:cb:c2:50:78:87:
3a:b2:c9:bb:b7:a1:9e:60:ec:c9:a4:8d:c3:f1:5e:
84:5c:31:9f:d5:35:8a:8b:28:c0:58:6a:16:aa:c2:
2c:bd:97:6c:21:0a:98:a2:00:19:1f:99:5b:82:b6:
ce:46:64:d1:dc:f0:36:09:53:d7:2f:bf:3c:45:c2:
ac:17:79:cd:ba:87:68:cf:6e:37:07:fe:1c:a7:ad:
e3:ac:a3:98:00:b3:4e:d9:30:38:2b:ff:89:73:15:
77:33:89:1e:4e:14:b9:7d:42:7d:fe:06:2c:d5:3a:
9d:e1:b8:0b:d9:c8:1b:9d:a4:aa:a1:dc:59:82:17:
42:1e:64:7b:dc:20:41:0e:31:fd:c6:89:32:b8:c0:
13:f6:db:51:e3:8a:fe:8d:6a:78:38:c8:ff:95:6a:
e9:06:1a:ce:f4:04:9a:c0:17:16:d2:a8:67:23:e9:
99:9e:c4:89:dd:f2:49:68:1f:fe:67:31:67:dc:92:
8f:cb:d2:45:e0:4c:73:67:4e:61:35:19:49:e0:84:
54:80:7f:b4:cf:5e:31:0d:e2:38:c8:59:a4:48:2a:
fe:08:e0:f5:cb:08:7a:30:c7:ac:b4:e5:0a:3d:90:
c9:e9:14:18:46:98:fd:bd:92:83:a5:f7:fa:14:b0:
17:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:E8:63:43:6D:25:D1:E0:94:4E:AE:9C:4E:9B:60:E4:AD:C7:7B:78
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/rOhjQ20l0eCUTq6cTptg5K3He3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
03:ff:1c:5b:03:5c:ef:3b:a7:5b:bd:fb:95:dd:28:47:d3:50:
54:c1:11:91:83:5a:c5:12:ec:ff:4c:57:f4:f6:07:73:0a:de:
33:68:23:46:ff:33:9c:49:89:0e:1d:1d:9c:44:b5:73:20:b9:
c5:fb:06:f8:e8:04:89:d1:ad:ac:b2:d5:99:ce:1c:c0:47:d6:
36:da:fe:1f:92:18:68:f9:bb:5a:32:30:d1:28:73:64:b6:38:
55:65:65:70:cc:5a:da:2d:be:1d:1c:f5:81:6d:25:a4:85:ca:
11:b0:6f:99:bb:11:6c:53:59:46:28:c4:3e:2a:20:8b:4a:b3:
74:37:ba:04:26:5a:ed:62:75:1d:d5:93:a2:ff:b6:77:7f:35:
bc:6f:dc:c2:3f:e6:3c:ff:5f:c6:e0:87:2d:a2:93:55:83:42:
fb:0d:b3:d2:df:b0:5b:d8:4c:58:49:7b:40:28:de:dc:b8:c4:
27:d1:d1:c7:ae:66:65:93:d1:5a:9a:b9:37:3c:0a:0e:66:d0:
6a:92:08:f1:97:e9:8a:ae:c7:3d:82:4b:d4:99:ed:c0:4c:ad:
c4:fe:7c:44:9d:a5:40:09:20:3b:6f:3d:e7:08:57:61:c4:06:
af:d8:be:b2:ed:fc:33:ec:1d:a8:71:4b:aa:38:7b:fb:bc:c5:
b1:8f:5a:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 03:03:27 2025 by rpki-client