Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/tmoIgxZqQDoT1cCauRVQ6uteUQM.roa
File: tmoIgxZqQDoT1cCauRVQ6uteUQM.roa (raw, json)
Hash identifier: FadsPCRclsaQS/4towC9B/bpAI/gyem22lmBY4PSBTs=
Subject key identifier: B6:6A:08:83:16:6A:40:3A:13:D5:C0:9A:B9:15:50:EA:EB:5E:51:03
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 6D9DA699
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/tmoIgxZqQDoT1cCauRVQ6uteUQM.roa
Signing time: Fri 25 Feb 2022 14:09:46 +0000
ROA not before: Fri 25 Feb 2022 14:09:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:17f:1bf4:40b5/128 maxlen: 128
2001:67c:64:ffff:0:17f:20ac:a2bd/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1839048345 (0x6d9da699)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 25 14:09:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b66a0883166a403a13d5c09ab91550eaeb5e5103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:00:ae:e5:83:c9:0b:7e:11:7b:5e:41:c9:ed:
2e:95:a1:70:da:6b:bb:81:35:92:72:84:77:33:ba:
b7:bb:0d:1a:14:c6:4d:d0:52:22:d8:97:4c:00:71:
23:ea:7b:f0:35:94:75:69:c9:3a:3c:95:e3:ac:82:
7e:57:b0:df:e3:3f:b1:ed:4c:4f:3b:b5:41:a5:b2:
93:ad:24:8a:60:cd:fd:45:fe:fa:a3:ea:9b:fc:82:
0d:ad:2b:8f:31:a1:34:4b:f1:00:00:91:47:02:e7:
f5:1c:9e:40:da:cc:1b:fe:97:a9:1e:f1:7d:3e:db:
64:e3:4f:09:8a:77:81:9a:56:24:c4:65:a0:7a:f8:
17:22:57:e1:18:4a:2c:11:03:7d:9c:8d:83:8a:50:
7b:10:c6:53:40:15:e3:2c:dd:3f:39:b3:4d:8c:84:
a5:b4:83:3e:ab:fe:e8:5a:55:4d:5f:ec:6f:cf:a2:
fe:bf:7b:72:12:b7:e6:6f:0e:1b:96:e6:37:4b:3d:
d5:f3:b1:86:d4:a1:bf:e4:59:24:5a:3f:61:42:2e:
fa:19:71:5f:96:41:63:40:fb:39:10:50:fd:64:1d:
88:f2:54:76:7e:19:3d:0d:f5:56:bf:cf:e5:41:0b:
cc:f2:3c:a9:56:98:4f:68:0b:05:de:0b:79:c5:3a:
bc:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:6A:08:83:16:6A:40:3A:13:D5:C0:9A:B9:15:50:EA:EB:5E:51:03
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/tmoIgxZqQDoT1cCauRVQ6uteUQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
57:35:70:88:ca:f0:71:b1:20:a2:23:7e:3e:97:95:7f:32:c5:
2d:6b:08:e1:b9:82:62:8b:f5:49:01:67:a6:5c:92:75:60:65:
91:3c:c0:a2:b1:50:25:18:75:de:56:4a:5e:15:2e:b5:3d:b9:
ef:56:24:30:bd:16:dc:f3:18:64:d6:c9:fb:e1:62:5d:11:ae:
38:87:e5:07:3d:94:7d:d0:2e:1c:38:32:9f:9b:22:b7:51:14:
d3:27:1b:61:52:f0:39:f8:d5:a4:46:d5:50:e7:c1:fe:a1:e6:
f7:8d:8c:88:45:55:48:13:13:e7:96:d3:f4:ad:8e:27:ca:cd:
6f:81:1f:00:76:9f:bb:df:59:fc:66:26:02:7a:a4:b4:7f:4a:
93:93:74:05:43:bd:15:8d:c5:62:c7:24:3c:05:5e:1f:85:ea:
ad:46:a6:a2:62:1b:fd:d7:8c:70:31:a1:6d:84:f5:51:ab:ad:
ba:06:d9:20:ec:e4:8a:4c:94:5c:c2:25:7c:46:49:52:76:f1:
f7:4a:73:13:d5:27:a3:93:79:4a:a0:6b:90:8d:fb:82:83:1e:
af:48:9c:16:d9:d8:19:0a:e4:e8:8c:30:6d:83:fb:1d:b3:8b:
95:ea:af:89:6b:b6:f4:a0:12:db:21:d9:e4:f7:f5:9f:90:71:
82:7b:c8:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 02:52:16 2025 by rpki-client