Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ttLUX3hNifs9a0Q4TiWOM6B9MWo.roa
File: ttLUX3hNifs9a0Q4TiWOM6B9MWo.roa (raw, json)
Hash identifier: 8rjykzT3lNrZM6+854QJHTD9m8UkBG6OEDBDnJauSuw=
Subject key identifier: B6:D2:D4:5F:78:4D:89:FB:3D:6B:44:38:4E:25:8E:33:A0:7D:31:6A
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0187252074617869502A2CB0D89F9EE600D2
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ttLUX3hNifs9a0Q4TiWOM6B9MWo.roa
Signing time: Mon 27 Mar 2023 22:11:36 +0000
ROA not before: Mon 27 Mar 2023 22:11:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:25:20:74:61:78:69:50:2a:2c:b0:d8:9f:9e:e6:00:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Mar 27 22:11:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6d2d45f784d89fb3d6b44384e258e33a07d316a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:94:61:c3:2b:47:1e:30:17:6d:dd:02:63:90:
83:6b:80:6f:f6:00:d0:42:34:ef:e4:4e:e0:00:53:
bf:8b:58:b0:f2:44:5a:31:32:e1:dd:e4:79:36:91:
00:89:45:f9:73:e3:b6:29:67:1c:70:de:9a:84:b9:
b9:04:c1:d1:7c:bd:99:ef:52:68:dc:5b:3f:92:b7:
a7:5a:d2:ab:e5:f6:a8:2a:fd:b9:3a:6b:77:af:d5:
91:fd:16:b8:b0:ab:46:0e:a7:41:5c:bb:77:af:cf:
61:54:d4:c4:f4:45:89:a7:a8:34:2f:02:98:75:cf:
ef:c7:01:f2:bf:87:cd:c6:43:6b:27:2d:7a:b7:b6:
04:31:c2:5c:49:3e:0c:59:7b:59:16:be:a6:c4:28:
17:8b:72:b8:80:0b:03:ab:b5:f8:23:d5:1f:fd:65:
da:d9:2a:aa:35:e7:c5:e7:3a:13:66:94:8f:fb:3f:
1d:5f:61:31:e5:3e:38:82:83:71:37:7d:1d:64:99:
dc:f8:22:c5:05:a2:75:96:03:29:87:75:3d:91:e9:
b3:f6:8e:91:99:4a:f1:ff:ab:a1:d0:fb:54:69:cc:
d2:76:a6:05:9e:17:fe:a7:e1:6e:11:51:17:06:8e:
37:a8:60:2e:39:19:2e:14:e9:0f:47:45:ea:02:4c:
b5:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:D2:D4:5F:78:4D:89:FB:3D:6B:44:38:4E:25:8E:33:A0:7D:31:6A
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ttLUX3hNifs9a0Q4TiWOM6B9MWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5c:3b:37:e0:8b:5d:c5:93:09:16:52:24:33:71:b7:89:77:f6:
42:fc:58:53:e1:89:f9:26:46:59:6d:8f:20:00:80:d1:c2:19:
05:f9:a6:13:81:00:54:ee:96:b8:90:46:3d:19:63:e7:b1:0d:
62:9d:d0:af:de:1d:ec:a0:b4:bf:b1:cc:b2:44:d8:84:26:70:
31:2b:67:43:12:21:59:4e:f2:9c:d4:6c:a7:5b:2e:49:99:36:
78:09:42:5a:a2:44:58:79:4f:f1:0f:01:dc:cf:09:cb:cd:33:
c3:f6:61:a5:4d:eb:55:e5:7e:d6:d3:2c:c5:39:a2:15:93:a1:
73:b4:82:75:1e:50:85:8f:f4:fa:51:0b:4a:a4:c6:5b:be:ad:
72:82:dd:49:89:dc:d9:a0:91:38:3e:3c:32:33:71:ec:6f:e0:
15:2b:f4:47:f6:cb:13:fd:e2:72:6b:f5:b7:4e:03:7c:87:a0:
ff:cf:35:8c:a4:18:03:6c:19:47:0b:aa:b8:f3:61:3c:0b:f1:
9f:30:26:95:70:03:ed:e8:16:2a:aa:69:87:91:e0:1a:89:0e:
f2:0a:24:54:c0:da:9c:9e:9b:7e:b3:e5:6c:15:e9:14:c6:13:
f4:ea:ad:7e:cb:79:35:51:7b:c7:60:7e:92:89:4c:e2:fa:47:
4a:2d:79:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 05:05:34 2025 by rpki-client