Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/rqSkHvtP9YfXUCmzwGTwqOw-6PU.roa
File: rqSkHvtP9YfXUCmzwGTwqOw-6PU.roa (raw, json)
Hash identifier: NOFCjNEzgwKxV1RDHz0tIIPUogzdy6p32SpYf4bckdQ=
Subject key identifier: AE:A4:A4:1E:FB:4F:F5:87:D7:50:29:B3:C0:64:F0:A8:EC:3E:E8:F5
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0186951EC123BE4E0E549B74E4B48FB290B9
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/rqSkHvtP9YfXUCmzwGTwqOw-6PU.roa
Signing time: Mon 27 Feb 2023 23:04:25 +0000
ROA not before: Mon 27 Feb 2023 23:04:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:951e:a3a5/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:95:1e:c1:23:be:4e:0e:54:9b:74:e4:b4:8f:b2:90:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 27 23:04:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aea4a41efb4ff587d75029b3c064f0a8ec3ee8f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e1:07:5f:a5:b7:4c:e1:5d:2e:c2:e8:6c:4d:
e4:6a:5a:5c:4c:ae:04:65:c9:a0:15:6d:fd:7c:33:
a2:1b:4c:05:c0:7c:22:6f:0f:6f:9d:24:84:e8:47:
cb:5e:e5:3b:bb:f9:9e:e1:0d:14:6a:0a:cd:17:98:
83:26:61:64:36:da:c5:de:5e:48:b2:69:22:f7:3a:
3f:d5:42:ed:76:c7:51:69:4f:ca:27:bc:ea:c8:50:
ea:cb:42:2c:70:ca:db:0d:d1:ad:d1:3f:fa:4e:79:
84:3c:23:17:d9:51:2b:f4:c7:8d:cd:46:ee:90:31:
f8:64:a1:07:cb:bc:0b:22:37:f4:2f:71:f2:ea:eb:
6c:e4:9a:97:c2:39:96:da:c2:d9:48:5b:5f:28:d2:
84:4b:25:40:2c:b5:f9:a3:3e:d5:7d:be:51:9e:47:
95:41:07:3c:54:3b:94:f7:52:3c:97:5f:e4:26:32:
07:c8:6f:43:6b:3a:7a:44:88:7a:67:07:9e:5a:6a:
b1:72:30:bb:2e:0d:17:9a:f2:d8:14:15:f5:8f:82:
55:bc:57:f3:35:ef:d9:f7:82:d9:80:51:4f:6d:09:
ce:63:60:4f:56:98:6b:1c:10:61:66:a6:84:ac:36:
21:7b:13:2a:a0:3e:9e:d7:97:cd:a4:51:71:6f:b3:
ed:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:A4:A4:1E:FB:4F:F5:87:D7:50:29:B3:C0:64:F0:A8:EC:3E:E8:F5
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/rqSkHvtP9YfXUCmzwGTwqOw-6PU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
b2:a0:ad:1b:49:6d:28:8b:52:56:93:3d:d7:55:46:0c:9e:4b:
76:15:d8:fe:9a:e8:05:88:29:f4:9c:01:93:1e:68:a2:8c:09:
79:57:7c:df:fa:a7:98:65:93:80:79:88:7b:e2:de:94:66:68:
ee:d9:93:52:80:fe:80:6d:9c:dc:31:24:92:b7:42:0e:46:ac:
c9:34:e4:48:35:59:41:c4:05:06:c3:09:ee:ef:cd:b7:a2:fa:
af:ba:90:2d:24:bc:b4:c6:f2:a6:75:7c:8a:c5:8f:f9:d7:4c:
29:f2:d6:48:e7:0f:00:a3:95:64:15:62:b9:c7:5a:11:75:48:
3a:f1:d3:3a:29:76:35:af:ca:70:0a:ed:4c:e1:1e:a5:e2:a5:
b2:1b:ac:80:f3:2f:93:ce:0a:c5:0f:80:f2:e5:b3:6d:bf:1c:
85:6b:65:ba:21:b6:21:38:70:a6:96:49:e2:49:4b:5d:9d:8c:
0d:5c:9c:6d:e7:3b:42:3f:fb:19:94:c6:b0:ac:d7:71:60:96:
d6:ff:a3:dc:21:27:51:3c:85:08:d3:99:43:4e:af:5e:1a:8a:
ff:ac:74:a8:38:d4:5c:f2:aa:a8:99:58:71:c7:14:75:51:4f:
84:b6:8b:73:3f:7f:14:15:65:97:8e:f1:ed:24:70:31:4e:d2:
a8:ab:ed:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 4 07:14:14 2025 by rpki-client