Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/sBh1DEGs6Ma_riXlB2P0kC-Ccic.roa
File: sBh1DEGs6Ma_riXlB2P0kC-Ccic.roa (raw, json)
Hash identifier: g15BKoBef8KvmVeH8xmDME1Y/Aeu6Ca61rIQCR1NduQ=
Subject key identifier: B0:18:75:0C:41:AC:E8:C6:BF:AE:25:E5:07:63:F4:90:2F:82:72:27
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0184E41BA96568950A94EB813C369FA6F285
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/sBh1DEGs6Ma_riXlB2P0kC-Ccic.roa
Signing time: Mon 05 Dec 2022 21:05:28 +0000
ROA not before: Mon 05 Dec 2022 21:05:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:184:e41a:f294/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e4:1b:a9:65:68:95:0a:94:eb:81:3c:36:9f:a6:f2:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Dec 5 21:05:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b018750c41ace8c6bfae25e50763f4902f827227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:8a:59:05:34:de:d7:67:a5:d6:3d:12:29:5c:
d4:33:7f:83:d3:09:ee:8a:ee:a5:df:01:a8:74:4e:
b2:b0:6a:8f:0a:e9:5b:7f:70:35:50:f4:a6:b7:d1:
0a:8a:c4:67:ef:56:19:76:68:e0:2f:be:69:75:f9:
64:8a:bc:bd:91:6e:8b:4e:fd:b8:1c:85:73:db:b5:
e3:12:0c:9f:98:55:4f:6d:12:64:6b:c5:c7:60:b6:
34:42:0e:17:e3:88:1b:f9:96:22:da:6e:f2:ce:27:
63:c8:e3:9e:d8:6b:4b:51:85:1a:89:e6:4f:43:b9:
ab:ef:0c:ab:d9:db:37:47:17:7b:c0:d9:e2:20:a6:
83:20:7e:19:cc:32:37:62:d6:13:b6:c7:5b:1d:ba:
8b:e9:aa:37:e4:f2:2f:e4:90:55:2f:0e:30:f9:57:
f7:33:f3:b6:d6:9d:42:03:db:d3:24:fe:3e:2e:99:
9f:2a:2f:6f:f0:8f:f8:a2:b3:07:54:7f:96:bf:1b:
26:c5:5b:e1:e5:21:a5:8f:b7:49:32:95:ab:2a:a9:
e6:9c:9c:d1:e0:2c:c0:c6:5f:09:0b:9a:ef:8c:e9:
0b:7a:68:3e:98:74:bc:8b:0e:6d:57:18:d0:c0:26:
5d:f1:50:35:0a:a7:20:a1:34:1e:97:e1:38:ca:b0:
4b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:18:75:0C:41:AC:E8:C6:BF:AE:25:E5:07:63:F4:90:2F:82:72:27
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/sBh1DEGs6Ma_riXlB2P0kC-Ccic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
56:9f:d4:2b:eb:9f:83:e0:19:89:9c:a0:38:a0:a6:18:4f:c0:
7b:dd:18:42:cc:3b:fc:55:7c:c5:9d:3d:bf:e0:a8:2b:7e:0d:
3f:ab:63:ff:63:7a:b7:55:2b:e0:5e:0c:0f:6d:3b:4d:e2:ef:
1e:6e:ce:c0:99:a2:ce:77:f6:73:d0:62:7e:10:89:ef:53:c5:
e3:ec:e0:e7:56:fe:03:61:94:5b:ac:92:a5:7c:39:59:af:16:
27:17:e7:16:2d:d6:59:c9:28:08:ca:5a:34:3f:9b:38:c1:66:
f4:e3:9b:63:4f:2c:88:fc:e4:d7:9e:b1:7a:05:f4:a8:26:26:
7c:b5:78:98:0e:62:8e:8c:69:7f:63:88:87:47:be:60:d4:4b:
8e:20:97:3f:26:b4:41:cd:20:5f:8c:d9:08:22:ee:b0:03:79:
ae:4e:6b:2b:0b:2e:8c:20:46:db:ce:c0:a7:5e:9c:44:cb:ab:
45:c2:00:e4:86:e9:e9:5e:88:d0:f7:86:1b:db:ee:e7:34:bb:
3e:17:ce:ce:f9:3b:3c:17:0f:b8:c2:50:10:61:ee:8b:e6:af:
ea:d4:12:eb:2c:7a:39:13:14:af:bf:fc:5e:9b:5a:9c:70:c6:
4b:15:74:c2:42:e3:ab:db:6b:9f:44:42:e1:c2:1a:e6:a8:8c:
fa:9e:86:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:41:18 2025 by rpki-client