Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/sogDjSZn6XxqitLFHeTEmDzjbiQ.roa
File: sogDjSZn6XxqitLFHeTEmDzjbiQ.roa (raw, json)
Hash identifier: TOIhuNJRa20PhDd4T6P3ODQUXF3GHGEUPXypwslWjU8=
Subject key identifier: B2:88:03:8D:26:67:E9:7C:6A:8A:D2:C5:1D:E4:C4:98:3C:E3:6E:24
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0182CE7BCBF59D0AB1E2B371F408E4E4DF73
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/sogDjSZn6XxqitLFHeTEmDzjbiQ.roa
Signing time: Wed 24 Aug 2022 06:13:15 +0000
ROA not before: Wed 24 Aug 2022 06:13:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:182:3f1d:a803/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:182:7cb2:99d4/128 maxlen: 128
2001:67c:64:ffff:0:182:383f:6b78/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ce:7b:cb:f5:9d:0a:b1:e2:b3:71:f4:08:e4:e4:df:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 24 06:13:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b288038d2667e97c6a8ad2c51de4c4983ce36e24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:76:c6:15:fe:84:16:6d:96:1f:cc:39:4c:33:
71:88:6d:20:de:b1:65:20:fc:fb:7b:94:28:20:fa:
74:4c:3c:9f:fd:41:99:93:0a:68:19:be:dc:e6:00:
2f:f1:2f:93:8b:00:e2:87:84:d8:31:7a:8a:51:ba:
4e:7e:c4:01:ac:77:83:d8:25:2b:f0:21:53:d2:31:
e8:1f:91:d5:c6:ad:06:30:b3:56:b2:1c:41:f8:7c:
20:37:4e:f8:f7:bf:e7:91:ca:65:91:12:73:14:79:
a8:4f:e3:3b:4b:8e:4e:77:ad:11:77:06:75:a5:a3:
fd:0d:e6:44:c1:c0:14:f4:ae:4e:0e:a7:e0:ea:2f:
83:81:dd:bb:3d:63:4b:9a:07:58:23:c0:1d:0b:91:
75:69:b9:9b:00:c2:09:d0:a9:f9:e1:34:dd:1d:2f:
f6:30:d8:d6:dc:37:3e:09:b1:25:cd:3d:5f:0d:67:
85:68:1f:05:40:a0:1b:50:ec:e5:fd:f6:95:94:7e:
de:64:53:3c:ef:a8:59:08:d8:e1:ad:f4:69:73:07:
bc:86:b7:17:cb:e3:77:29:b7:59:1a:a8:48:df:bc:
0e:f0:37:06:9f:9c:b7:ef:ad:b0:7c:da:11:95:d3:
f3:04:42:bc:3a:d4:1a:8e:dd:4e:ae:5e:7d:d4:f4:
8e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:88:03:8D:26:67:E9:7C:6A:8A:D2:C5:1D:E4:C4:98:3C:E3:6E:24
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/sogDjSZn6XxqitLFHeTEmDzjbiQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
58:03:c1:6a:03:6e:43:25:99:bb:ce:fe:54:7d:58:84:66:58:
c5:93:cc:f3:b8:9d:0e:49:9f:07:ae:35:16:3f:a7:1a:0e:53:
ad:d2:2a:15:58:b0:01:e5:e5:f8:ba:27:2e:a6:be:de:ca:0f:
d9:26:57:38:6a:ab:8d:91:6a:d4:5d:47:89:35:a9:4b:81:53:
77:cd:e3:cb:1d:b4:c7:e4:7b:72:d9:34:cd:f8:94:c9:3f:f2:
8a:98:47:1d:e5:72:fc:6e:05:8c:eb:30:8a:da:cb:c4:b1:05:
55:33:c0:5e:8a:e8:97:bd:5e:ac:19:35:90:a9:40:5d:d6:5f:
3d:aa:9b:fb:33:cc:07:fc:a4:3b:ef:14:7b:b0:58:8c:88:5b:
10:ba:ba:a7:45:10:d8:12:70:30:36:84:0c:89:c8:b4:0d:c6:
07:64:27:0b:0e:e8:dd:ba:34:ae:6a:69:48:b6:e2:60:99:f6:
e8:76:64:cb:c0:51:c2:f4:df:1e:25:0f:5c:e8:97:75:83:d0:
f9:c6:9c:7f:0d:93:6b:a6:ca:99:97:fe:64:ed:ed:35:a9:ad:
cc:3f:f0:dc:54:14:5e:7a:e8:83:2c:5b:6b:f6:04:3c:24:73:
1e:26:9d:42:98:b1:64:79:95:1c:11:ec:b9:31:c9:76:6a:9f:
64:04:1a:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 09:53:24 2025 by rpki-client