Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/s-RSDr86tkoL6c3XbmMHWWSEHF4.roa
File: s-RSDr86tkoL6c3XbmMHWWSEHF4.roa (raw, json)
Hash identifier: 0DEv7rrYqGVQLRn+EoSl2ajXhIv+bBpl7zUEmSHVo94=
Subject key identifier: B3:E4:52:0E:BF:3A:B6:4A:0B:E9:CD:D7:6E:63:07:59:64:84:1C:5E
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 775EDDB5
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/s-RSDr86tkoL6c3XbmMHWWSEHF4.roa
Signing time: Fri 01 Apr 2022 02:07:16 +0000
ROA not before: Fri 01 Apr 2022 02:07:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2002705845 (0x775eddb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 1 02:07:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3e4520ebf3ab64a0be9cdd76e63075964841c5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:da:4c:77:13:dd:80:ab:0e:b2:f3:c9:64:cb:
7e:f8:9b:d3:a5:67:33:32:9f:00:c8:9e:1a:54:9c:
3e:f9:52:9d:bf:48:87:4c:68:37:56:d1:7f:e7:ba:
7c:a4:76:a9:85:31:81:5e:6e:84:79:fc:45:5d:9b:
07:26:0e:39:a6:17:a3:49:2d:2e:ab:38:49:7e:24:
b9:5f:80:0a:9b:13:5b:89:80:39:8e:b9:1a:99:da:
21:66:10:c6:bb:52:dd:e0:21:cc:6f:2d:22:9d:85:
1d:c7:97:ad:a7:ae:98:ee:e3:6e:d7:ca:fe:45:03:
1e:01:98:98:77:39:86:36:79:cd:56:b3:d0:a6:de:
b8:c6:0e:b3:d5:6d:a7:87:d0:49:a1:65:ac:47:ae:
dc:54:d4:00:06:63:fe:10:88:87:08:95:83:f6:bb:
f3:7b:81:ac:59:54:bb:19:c2:56:db:9c:db:c6:5d:
43:9f:6a:6b:de:e3:eb:1f:07:4d:54:22:b5:bf:3f:
44:9e:1b:2a:c3:62:8d:ad:fd:c4:9c:d5:d2:e4:14:
d2:5f:10:4b:ac:d0:e3:17:5d:1d:49:dc:b4:f5:75:
9b:ee:19:1a:e3:70:d9:ac:12:21:f6:85:3c:ec:b5:
0f:2c:87:74:c1:72:0b:84:b0:b1:e7:a0:60:11:f2:
5f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:E4:52:0E:BF:3A:B6:4A:0B:E9:CD:D7:6E:63:07:59:64:84:1C:5E
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/s-RSDr86tkoL6c3XbmMHWWSEHF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
0c:e2:f3:fa:10:bf:7d:75:f8:0d:c8:d1:b4:ce:f1:89:78:64:
e3:05:be:da:c6:49:0f:3e:8c:aa:b0:4e:48:e8:94:61:d2:05:
03:9c:d0:15:6d:67:b0:6f:a4:29:10:d1:93:bb:f7:43:60:23:
b5:55:69:1e:71:28:d2:d0:6f:07:78:16:9c:81:ef:70:e6:b2:
1f:7f:0c:e6:0b:96:0f:c0:4d:72:8f:b5:83:f4:e3:2d:2b:eb:
ab:57:5c:6b:3a:20:72:33:4f:b3:06:6b:27:6b:98:06:a3:44:
4b:88:60:a1:ed:ee:f7:65:1d:e1:57:c0:e5:f7:78:c9:08:19:
86:d3:1d:c5:1d:40:cf:a4:9d:54:c8:5b:b0:e9:90:e5:e4:1c:
23:35:24:55:80:dd:5f:5d:07:35:64:d1:6b:8d:ce:a1:45:d7:
fe:a5:7a:37:e1:28:2a:7b:40:51:cd:da:75:70:85:0d:6d:e3:
10:07:4e:d2:b3:11:ba:29:c5:23:b5:93:d7:de:2c:0c:60:4f:
2f:4c:2f:9b:18:51:0c:4a:20:fb:8d:f9:e7:b8:39:6e:87:29:
9d:a1:b3:64:53:27:d7:d7:64:68:c0:cd:dc:31:00:81:5d:40:
69:ef:a7:fe:cb:9f:83:af:c9:c6:03:57:bf:e5:2d:4a:a3:91:
95:04:22:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 13:30:00 2025 by rpki-client