Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/sN7AACnww4Or-Rd0ZNotjFZWV1I.roa
File: sN7AACnww4Or-Rd0ZNotjFZWV1I.roa (raw, json)
Hash identifier: bPkD1SVisoAS4GhLpPrvHiA53MQW7L7S5ne0FuVY9kk=
Subject key identifier: B0:DE:C0:00:29:F0:C3:83:AB:F9:17:74:64:DA:2D:8C:56:56:57:52
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0184654B957DF34900ADFA5791BBC5B2F9E9
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/sN7AACnww4Or-Rd0ZNotjFZWV1I.roa
Signing time: Fri 11 Nov 2022 06:06:03 +0000
ROA not before: Fri 11 Nov 2022 06:06:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:184:51c3:ad7c/128 maxlen: 128
2001:67c:64:ffff:0:184:3fbd:71f7/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:184:654b:4c7c/128 maxlen: 128
2001:67c:64:ffff:0:184:4250:a4df/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:65:4b:95:7d:f3:49:00:ad:fa:57:91:bb:c5:b2:f9:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Nov 11 06:06:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0dec00029f0c383abf9177464da2d8c56565752
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:9c:cb:6d:63:c0:11:6d:bc:a4:bb:3e:9f:30:
e4:c4:19:31:2c:e9:3c:41:e6:69:91:80:36:68:c1:
63:8e:11:69:34:ef:26:eb:90:81:c6:fe:92:8e:4b:
e3:7c:53:80:86:cf:a1:1b:33:74:c3:4a:32:c1:db:
72:58:a8:6b:78:3d:a2:f8:ce:ec:6b:98:06:7c:e8:
e7:d9:37:3e:e9:7b:c7:12:0f:8a:e4:e2:24:de:26:
dc:46:54:2e:ea:bd:e7:c7:68:f1:ff:54:a4:82:b9:
2e:8d:b7:7f:ed:fc:e4:db:05:4c:a5:16:03:7e:d6:
93:52:1f:57:52:19:92:e9:c0:ff:60:23:37:c8:ec:
17:7a:fc:2c:e0:43:d1:7e:a6:6c:33:fc:93:56:3c:
96:81:8f:a1:91:27:13:27:58:90:d6:b8:3e:43:77:
10:b6:30:ad:a4:25:ef:72:9b:12:c7:c1:89:98:79:
e7:f3:75:e4:b6:ad:f4:34:93:03:77:83:25:27:96:
87:60:1b:50:6f:d1:b8:f2:73:69:60:d6:a3:33:b4:
c7:17:e4:fb:8e:0c:98:ea:d9:23:6c:90:7d:a1:8b:
6e:eb:b0:29:99:da:59:04:2b:b6:3c:ce:ba:08:2b:
88:16:75:b7:12:d4:83:f3:7a:72:f3:58:56:af:f9:
e1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:DE:C0:00:29:F0:C3:83:AB:F9:17:74:64:DA:2D:8C:56:56:57:52
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/sN7AACnww4Or-Rd0ZNotjFZWV1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a1:55:a7:3b:34:d4:7c:01:4b:47:9d:b8:af:1c:ac:04:08:7e:
94:d3:a3:d2:ff:b9:92:a4:f5:a0:64:57:03:b2:ed:2f:bc:6a:
5e:62:12:b1:6d:4b:5b:70:cb:6c:26:2f:e5:91:5a:fa:cb:d9:
da:f5:be:f4:72:23:3a:a7:91:ca:77:fb:1f:dc:6d:4f:d4:c3:
ff:fd:d0:8a:22:b4:04:3e:77:fa:45:99:a4:33:b5:34:a8:19:
ce:85:c9:da:66:66:51:5c:96:44:aa:4e:b1:7e:6f:a3:bb:3c:
ba:49:27:ff:ac:7a:71:c2:2a:a9:37:5a:74:3f:be:fd:93:4e:
38:06:6b:1b:c6:38:9c:f5:39:84:00:47:cb:97:41:53:2e:43:
b9:e8:da:27:c2:4a:6d:b4:39:bc:11:98:1d:fe:de:57:41:d4:
70:6f:7f:32:4f:3a:7a:4c:e9:0a:a4:2e:c6:25:f3:8a:24:3c:
ba:23:e4:19:1a:27:00:a8:2d:47:fe:a5:b4:d5:35:01:fc:1f:
57:ae:71:91:6d:d0:97:92:ca:b3:1a:35:a9:60:c7:1e:6c:60:
10:dc:e5:57:34:b2:99:bb:62:b0:1f:b9:68:af:56:88:20:99:
c2:7d:3e:70:f6:b1:b1:4b:76:89:97:fd:f0:e9:73:85:f8:dc:
23:24:0b:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 00:09:28 2025 by rpki-client