Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/tnIg3r4qpW_MJEKWfPAyA9QRGJA.roa
File: tnIg3r4qpW_MJEKWfPAyA9QRGJA.roa (raw, json)
Hash identifier: 7ETJWis0Xkqz0LTe4gbCu5v4opSlb6sP6DAiqHep9Q0=
Subject key identifier: B6:72:20:DE:BE:2A:A5:6F:CC:24:42:96:7C:F0:32:03:D4:11:18:90
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 910AF46E
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/tnIg3r4qpW_MJEKWfPAyA9QRGJA.roa
Signing time: Thu 30 Jun 2022 02:11:02 +0000
ROA not before: Thu 30 Jun 2022 02:11:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2433414254 (0x910af46e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jun 30 02:11:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b67220debe2aa56fcc2442967cf03203d4111890
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:35:95:d3:d0:2b:0c:9d:a1:d2:a5:27:cf:ad:
78:6e:e0:6c:a1:3d:01:c8:ec:e1:11:58:2a:52:ea:
50:30:5e:69:e0:73:26:4d:65:af:4b:bb:2c:df:ed:
70:12:0e:43:d7:8e:21:d7:42:f1:02:b9:34:0c:4e:
b7:62:f8:23:5b:84:28:fe:11:c6:fb:a5:97:0e:68:
b5:1d:68:da:ae:0b:f0:e8:19:9e:c3:68:3c:70:0b:
8f:e6:04:3f:11:45:eb:83:04:59:32:e0:ff:70:0c:
3a:69:31:a3:76:dd:74:75:f4:88:81:4d:d2:48:e2:
61:ca:17:38:ae:be:ec:50:44:27:42:96:ee:f3:22:
0f:09:bc:c3:29:e4:ad:63:2f:15:a2:41:3c:22:a7:
d4:6c:8c:91:46:13:26:ac:0e:77:92:ff:e9:c6:cb:
25:38:bf:bf:ca:53:fe:a1:ad:a9:fe:13:13:44:5e:
f9:3c:78:73:80:f3:8e:7b:05:92:0d:1c:99:3c:6e:
26:6c:19:38:8e:b2:c8:49:5d:92:70:e3:89:07:fd:
ec:15:36:85:0a:54:2e:8b:8a:10:8c:da:fd:57:f9:
94:2e:4d:76:60:e5:d7:5c:c0:41:9e:56:e1:87:64:
40:e8:2c:7b:6c:fb:bf:06:50:f6:b1:79:0e:6f:3d:
52:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:72:20:DE:BE:2A:A5:6F:CC:24:42:96:7C:F0:32:03:D4:11:18:90
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/tnIg3r4qpW_MJEKWfPAyA9QRGJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
75:e6:88:83:f4:a1:5a:ff:a5:45:a7:74:05:97:22:44:03:ec:
f6:e7:0c:d6:be:38:9a:4c:f6:eb:1b:5b:a5:b8:fb:38:33:86:
95:9c:ab:aa:db:48:e7:a6:4d:cd:2d:81:59:91:fd:01:7a:b8:
42:9c:2d:cc:62:a3:c2:9a:fd:63:3a:57:1d:2e:d8:87:34:b4:
f2:3d:3c:12:d7:26:1d:8d:65:42:eb:ba:d1:67:f2:3c:2e:96:
c0:7f:93:2f:6c:53:2c:7a:69:61:06:32:6f:08:06:66:bc:29:
aa:5b:54:90:6f:95:43:e1:42:20:57:48:bd:2b:98:ff:b9:4a:
7c:90:59:51:88:17:56:d1:c9:8a:0e:a0:39:5f:84:4a:76:83:
bc:e0:b1:db:2b:c2:53:ab:f1:99:3c:8a:ee:36:68:f3:73:26:
d2:a5:64:da:64:fb:1e:43:96:4b:5a:de:28:9e:66:ff:b2:3b:
65:26:4a:d0:c3:74:76:59:4b:b5:94:5a:94:16:ec:fd:f9:d4:
1d:66:e1:d6:f2:f8:46:79:35:1a:f2:59:f0:76:ed:84:ab:f7:
86:d4:64:5b:4a:50:b5:b0:80:6a:4a:92:10:91:83:d3:2d:4a:
8e:7d:8e:1e:97:ca:c5:de:8c:e8:8e:65:ca:93:9d:4f:e6:e6:
ec:4f:43:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 11:47:08 2025 by rpki-client