Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/sQ2trSF5WNjzZBW0bAY-6FO0rks.roa
File: sQ2trSF5WNjzZBW0bAY-6FO0rks.roa (raw, json)
Hash identifier: c6kp0Zfqs7H9NeaJ8ztND8SQtMsmVTAye9KtNX0xXkU=
Subject key identifier: B1:0D:AD:AD:21:79:58:D8:F3:64:15:B4:6C:06:3E:E8:53:B4:AE:4B
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018831C9E1CD9CB3616357F5F6EE3D12A588
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/sQ2trSF5WNjzZBW0bAY-6FO0rks.roa
Signing time: Fri 19 May 2023 02:14:54 +0000
ROA not before: Fri 19 May 2023 02:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:31:c9:e1:cd:9c:b3:61:63:57:f5:f6:ee:3d:12:a5:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 19 02:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b10dadad217958d8f36415b46c063ee853b4ae4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ae:9d:21:31:54:11:73:d1:30:b4:14:25:c4:
84:b7:a6:39:c9:22:49:42:c8:4d:31:42:62:0d:bf:
98:1d:f2:e4:67:98:5e:4e:f5:ef:97:fa:29:77:8d:
9b:ae:71:2d:e0:42:cf:6e:09:69:fc:46:d5:0d:d8:
46:c1:ab:88:db:02:05:ac:74:4d:d7:94:3c:6c:96:
ff:a2:2c:b0:21:04:8a:53:f9:d3:2a:6e:64:52:e0:
36:85:d9:aa:68:35:23:6a:ea:fd:af:1c:d0:32:2f:
77:11:1e:2e:da:26:35:7e:3e:05:b4:ce:aa:0f:8c:
78:eb:fe:1b:68:cd:30:57:db:74:61:3d:c7:6f:8a:
32:e2:70:5f:ba:3f:00:0d:e8:22:8f:d4:0c:2a:d4:
a6:b8:c4:9c:84:b9:af:ee:2b:15:76:86:43:64:1a:
6d:cb:8a:7b:d4:3d:34:a4:95:ab:4b:75:51:eb:25:
b9:e6:5d:b5:e4:e4:2f:a6:f9:97:bb:e8:0a:22:69:
52:0c:2a:03:c2:4e:89:4e:63:ff:2f:51:79:d8:ef:
e3:ea:df:69:96:86:e8:5f:9e:42:d2:a6:a9:12:0b:
9a:44:19:73:56:4c:e4:17:8e:5a:0e:38:a8:57:3e:
4c:15:15:24:73:03:2c:63:3c:fd:32:e4:3c:fb:ac:
0b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:0D:AD:AD:21:79:58:D8:F3:64:15:B4:6C:06:3E:E8:53:B4:AE:4B
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/sQ2trSF5WNjzZBW0bAY-6FO0rks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
96:dc:3a:1d:5c:09:4d:78:e0:8b:53:e7:a7:e2:44:f3:34:4e:
ee:2d:51:8f:cf:ae:d9:93:2a:cc:da:b4:bd:06:ba:ad:5c:8f:
14:7b:dd:2c:c5:d9:1f:52:d7:88:ea:1f:55:41:7e:aa:31:bc:
aa:1d:97:62:f7:ec:c2:68:57:c1:02:1a:38:90:bb:d1:29:10:
04:bf:23:87:2a:93:70:a3:91:d8:e3:31:93:fe:d9:07:ad:2b:
99:af:4f:34:04:38:f2:d2:e7:6c:19:36:a8:2f:80:f1:ed:da:
cb:e8:ae:5e:74:2c:dd:81:0a:7f:ec:70:d6:0d:ae:e3:06:39:
24:25:cb:9a:3b:e2:7b:7b:45:32:ae:bf:29:45:d3:8c:6e:e3:
ae:08:02:6a:07:06:56:81:9d:73:69:95:55:40:10:04:30:ef:
25:b2:27:f3:47:ae:ea:aa:2c:e9:dc:79:ac:a0:4c:15:12:d5:
c8:6e:dd:5e:19:84:00:c1:af:8f:23:f6:fc:90:eb:b9:3d:98:
65:44:8d:2c:d9:51:92:02:4b:85:3a:d0:a7:c5:dd:42:61:97:
5b:23:9d:78:40:a9:35:b6:4d:c8:5e:d5:7b:10:e6:7a:0f:b1:
31:45:51:da:45:5d:09:46:7b:9f:46:dd:25:3e:5c:19:eb:4d:
9e:ea:6d:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:36:08 2025 by rpki-client