Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ttzG1j0s3s4Mvj3o3wpf6r55SYQ.roa
File: ttzG1j0s3s4Mvj3o3wpf6r55SYQ.roa (raw, json)
Hash identifier: gwRLKAnnp7MNFPOn+2+rXjQ640kfhyskGi/lHNq7jzE=
Subject key identifier: B6:DC:C6:D6:3D:2C:DE:CE:0C:BE:3D:E8:DF:0A:5F:EA:BE:79:49:84
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01896955A0B6FCA5F418C5157D0D53FC3832
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ttzG1j0s3s4Mvj3o3wpf6r55SYQ.roa
Signing time: Tue 18 Jul 2023 14:09:26 +0000
ROA not before: Tue 18 Jul 2023 14:09:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:69:55:a0:b6:fc:a5:f4:18:c5:15:7d:0d:53:fc:38:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 18 14:09:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6dcc6d63d2cdece0cbe3de8df0a5feabe794984
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:47:2a:66:5f:29:88:99:b0:67:ee:c9:43:d4:
7c:1f:7d:3f:ef:55:14:ab:b8:f5:20:3e:02:62:d0:
b2:23:e9:78:69:34:b2:52:aa:30:6e:33:76:6f:fb:
95:2a:b3:0e:2b:e8:86:6f:55:69:15:b2:d7:99:d0:
b3:f4:16:3b:be:4e:a4:49:d6:18:b6:2a:f0:b8:bd:
7a:a1:98:b9:a8:56:31:7a:00:02:69:c8:e1:5f:23:
af:e1:ec:72:64:7b:3e:99:50:e7:e0:96:cb:ca:54:
c2:79:45:e4:a2:d9:bf:04:27:a9:7f:70:f6:81:00:
65:33:64:93:c7:e9:cc:5b:43:b6:d8:7c:28:ee:98:
dd:3f:03:d5:df:2f:82:57:78:ba:1f:c5:b5:b0:0e:
ca:9b:65:dd:9d:eb:0c:8e:88:54:23:56:a7:d1:96:
cb:79:73:ed:5b:78:02:cd:e3:c9:d9:ef:41:bf:b8:
6b:db:0a:10:6f:c3:4c:ee:da:84:70:3f:b4:39:44:
9a:59:d3:a2:b8:30:45:d1:70:ed:9a:79:e6:15:40:
6c:13:04:e6:5a:48:df:da:fc:7f:6f:de:54:10:df:
66:55:6e:d4:50:cb:f1:d0:9d:6e:f8:de:44:89:3a:
b3:58:ea:1c:57:76:c5:bf:b9:96:5f:53:d3:f9:2e:
6d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:DC:C6:D6:3D:2C:DE:CE:0C:BE:3D:E8:DF:0A:5F:EA:BE:79:49:84
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ttzG1j0s3s4Mvj3o3wpf6r55SYQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
83:50:86:bd:aa:8e:ef:9f:f2:2e:b6:79:e3:67:05:d4:30:81:
f3:80:5b:ae:be:bd:73:8e:a8:c9:49:d2:aa:bc:72:79:4b:0a:
db:23:7a:b1:85:31:84:5b:aa:05:22:53:e3:1e:f5:ac:96:dd:
3c:76:c7:a1:57:49:4a:ec:62:2c:c9:60:1c:4d:de:60:82:3a:
d8:7b:52:ff:29:46:1e:e7:bf:42:7e:79:af:fa:5c:5f:96:92:
58:b8:f6:c7:a4:3f:b1:29:f0:9b:58:0e:b1:c4:c8:d4:60:67:
e3:f3:37:b1:c5:ef:15:87:33:87:53:64:b0:b0:b1:5d:87:64:
7b:c5:a1:70:06:4c:3f:30:61:1a:53:e1:ee:2f:dc:33:c0:11:
a1:93:ed:59:ea:ae:d7:56:d6:ca:66:2f:35:37:5c:19:c1:b8:
42:71:4e:fb:43:a2:db:41:1d:fc:8c:8f:bc:6a:97:5b:d4:29:
a2:9c:60:b5:20:24:48:22:5a:ab:e7:01:1c:a3:f2:0b:a8:96:
06:07:1a:84:72:79:c1:23:8d:72:32:12:47:cb:09:a2:3e:01:
a9:94:c1:d4:6d:2a:32:27:3c:04:b0:c7:01:61:4e:ec:21:52:
50:89:e4:3b:50:61:f8:54:74:92:b5:17:bf:8d:02:27:d8:7e:
64:2b:65:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:24:03 2025 by rpki-client