Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/subGC72qU_y5khfA2QfgIcPWQ6g.roa
File: subGC72qU_y5khfA2QfgIcPWQ6g.roa (raw, json)
Hash identifier: EmbG/E9x+3J/XUwLdqdl2jYItmgIOTUXq6cAUUG3WLs=
Subject key identifier: B2:E6:C6:0B:BD:AA:53:FC:B9:92:17:C0:D9:07:E0:21:C3:D6:43:A8
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0186228D9693C4678EF26ED5CAE4B44336EC
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/subGC72qU_y5khfA2QfgIcPWQ6g.roa
Signing time: Sun 05 Feb 2023 17:09:09 +0000
ROA not before: Sun 05 Feb 2023 17:09:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:22:8d:96:93:c4:67:8e:f2:6e:d5:ca:e4:b4:43:36:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 5 17:09:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2e6c60bbdaa53fcb99217c0d907e021c3d643a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ec:f3:46:5e:62:50:4a:1b:1b:11:b3:62:33:
f9:b2:f1:11:0b:c0:e7:29:8f:e7:09:5e:1b:34:76:
4e:f0:45:ec:f4:07:c2:9b:65:a1:00:d9:5b:cf:9d:
1c:a5:c9:86:42:34:ef:45:14:48:58:73:87:49:c1:
42:8b:06:ae:d6:ca:bc:57:3b:12:cc:5c:1d:6e:43:
cd:d4:87:e4:2e:0d:ad:fc:dd:7d:63:21:45:ce:2c:
a8:8c:9a:4e:bf:67:73:d5:3e:a5:b3:61:c3:34:5a:
7c:01:af:01:d0:71:e2:9b:b1:3f:36:21:b6:f6:ba:
5d:b0:c1:ec:be:cf:6e:51:36:c1:58:62:09:1b:01:
1d:0b:f1:20:99:21:d5:97:59:1a:8f:81:38:ce:49:
ff:47:a7:16:c5:0f:60:c0:4f:32:50:fe:8f:50:ac:
3f:24:07:f3:56:16:cc:ea:88:29:f7:ca:34:8c:15:
6e:85:48:86:74:3d:6a:7d:c6:9a:2f:dc:e5:d7:64:
22:a0:aa:93:87:e3:5a:5e:7f:ca:36:53:2b:3e:34:
ba:1c:62:8e:bc:8e:da:80:ad:df:49:92:79:a7:4f:
ea:d3:67:c8:0d:0a:54:1e:79:c5:e4:66:34:ea:3e:
2a:0b:47:c8:e5:ba:24:6a:1d:24:f7:52:54:ec:41:
20:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E6:C6:0B:BD:AA:53:FC:B9:92:17:C0:D9:07:E0:21:C3:D6:43:A8
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/subGC72qU_y5khfA2QfgIcPWQ6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
1c:2e:7c:07:50:d0:77:96:20:ed:ee:08:b6:f9:73:d2:98:ac:
a5:a5:b9:1d:f8:7d:79:6d:b9:4f:ec:62:b7:29:e5:52:a3:43:
d4:c2:15:cf:06:43:7c:cf:1e:bd:0c:7c:af:6b:b7:67:95:72:
9d:07:b5:ea:77:45:bc:46:38:11:43:58:58:9f:ee:e1:fc:35:
ec:3e:12:48:07:ea:5e:c0:0a:70:00:0f:b2:22:e6:f7:e2:92:
60:01:06:40:a3:2d:f0:9c:5d:76:df:ba:52:46:54:4d:ed:e1:
d5:7e:96:ac:b2:c5:de:6a:5b:d3:07:ac:9b:5d:c2:b2:85:35:
19:58:86:32:5f:24:b2:1a:d9:bb:a7:a0:b5:af:26:87:77:02:
d9:a5:f8:67:dd:6e:1c:3b:84:56:58:b1:e1:13:e1:86:ed:24:
15:ee:90:0f:cd:2a:79:a1:79:05:e3:33:22:96:9c:7c:22:e7:
86:88:79:64:e5:af:d7:f4:8b:da:9d:40:55:3a:cd:46:a3:d6:
6b:09:1c:d1:aa:f7:27:6a:48:2a:6c:b6:31:54:7d:f9:da:9d:
91:b9:2b:f7:04:b4:d6:79:e5:81:f5:93:7b:91:91:e4:cb:35:
2d:ff:41:9d:78:bc:1e:60:4f:89:33:af:dd:55:4b:9c:27:ef:
17:01:46:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 07:21:40 2025 by rpki-client