Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/s0YUWy9XUWZm_IRp101EpqJG74Y.roa
File: s0YUWy9XUWZm_IRp101EpqJG74Y.roa (raw, json)
Hash identifier: uWMZLwWqa+5KdIdUaqivxpATefGUQWEAM8LwrR7oPj0=
Subject key identifier: B3:46:14:5B:2F:57:51:66:66:FC:84:69:D7:4D:44:A6:A2:46:EF:86
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0184F5B91E29ACBD5266FCF45810E47146E8
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/s0YUWy9XUWZm_IRp101EpqJG74Y.roa
Signing time: Fri 09 Dec 2022 07:11:00 +0000
ROA not before: Fri 09 Dec 2022 07:11:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f5:b9:1e:29:ac:bd:52:66:fc:f4:58:10:e4:71:46:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Dec 9 07:11:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b346145b2f57516666fc8469d74d44a6a246ef86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f7:a4:9a:de:1a:23:df:c6:2d:fe:a9:6a:a9:
58:ee:9b:4b:1a:d3:11:25:7b:34:3a:61:92:9c:33:
79:eb:4e:22:be:47:aa:43:63:7b:fe:14:38:80:87:
b3:78:2c:c3:50:7a:35:15:97:5a:43:f4:a6:c8:5e:
89:55:2f:47:1c:3c:13:c9:ad:b9:65:45:2b:51:5c:
e7:61:0b:64:64:ec:97:e0:a2:7b:e2:ad:6a:be:fc:
2f:d0:da:b0:fb:4b:2c:26:ee:e5:2d:47:90:b7:e0:
3b:f2:f2:28:d4:1c:28:4c:a7:13:50:1d:f2:16:c1:
e7:14:38:92:d7:7c:f2:85:11:80:69:02:c3:20:98:
0a:f9:b1:b8:82:47:7a:33:d7:4f:dc:15:19:36:45:
3d:7b:40:cd:9c:7f:e5:db:d7:eb:ac:30:82:37:a1:
1d:eb:53:00:de:8a:26:83:57:da:3e:9c:f8:53:f5:
a7:94:0e:bb:5e:a1:a5:f6:d7:32:62:fc:a5:70:88:
d7:75:c5:92:d5:8b:dd:51:80:93:c7:b1:41:7a:ab:
0c:57:a6:d9:20:30:68:9f:b2:33:3b:04:5e:67:a8:
75:14:bf:ac:97:a2:5e:85:ac:94:4b:a8:4e:63:42:
9e:d3:54:b3:c0:f9:5a:e1:04:5f:c5:85:16:10:02:
45:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:46:14:5B:2F:57:51:66:66:FC:84:69:D7:4D:44:A6:A2:46:EF:86
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/s0YUWy9XUWZm_IRp101EpqJG74Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a9:01:33:e3:58:2e:bf:cf:51:92:41:09:f2:0d:5c:49:e6:c5:
ab:24:ed:44:17:2c:25:2d:e2:a0:35:7a:77:44:98:f3:61:e2:
7e:4b:50:22:43:98:6a:eb:de:fd:44:de:cd:c2:22:09:ea:e6:
ee:61:1f:20:f9:06:5d:2e:a6:e2:3a:e6:dc:66:51:41:c4:63:
a3:0c:b0:11:b2:be:4c:9c:be:13:09:e3:3f:bf:df:eb:5e:d0:
cf:6b:b3:08:05:73:3c:53:53:82:82:fc:00:60:18:b4:49:2c:
5b:56:a5:57:3d:0a:59:3c:39:3d:a3:9a:5f:67:3e:ae:72:8e:
01:18:a5:37:10:81:23:2d:f1:9b:fd:85:bc:1d:bc:66:91:5d:
7b:2d:04:c4:12:ff:90:ba:55:4c:bb:46:15:13:5f:31:a1:4d:
75:9d:1c:d2:ea:81:69:1e:d4:c3:ad:00:c4:da:80:99:4f:c4:
d6:79:d7:d9:de:3f:9d:84:c3:3e:ea:b9:f5:6b:03:70:26:56:
c8:c3:02:a8:5f:71:69:71:ee:d0:f2:02:c7:15:3b:77:9e:18:
49:c6:26:c0:fa:83:da:d0:a9:78:c8:40:20:a1:a5:e5:7c:a7:
60:05:59:70:b2:f9:bb:47:6d:1d:c4:22:7e:bd:ff:da:8b:77:
a1:41:de:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 20:40:47 2025 by rpki-client