Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/uEBlB413H0dFuO0Cb61IW1Hn-ig.roa
File: uEBlB413H0dFuO0Cb61IW1Hn-ig.roa (raw, json)
Hash identifier: 0KH8S1K9aSYdCwpzZ52MUUCHwnpkcncJBDzSyc9xUFA=
Subject key identifier: B8:40:65:07:8D:77:1F:47:45:B8:ED:02:6F:AD:48:5B:51:E7:FA:28
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018A4213E8E72F999B2D77F95E4A991CE35D
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/uEBlB413H0dFuO0Cb61IW1Hn-ig.roa
Signing time: Tue 29 Aug 2023 16:15:15 +0000
ROA not before: Tue 29 Aug 2023 16:15:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:42:13:e8:e7:2f:99:9b:2d:77:f9:5e:4a:99:1c:e3:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 29 16:15:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b84065078d771f4745b8ed026fad485b51e7fa28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ed:b7:a1:7c:ef:e2:79:f3:30:a6:a5:c4:0d:
10:78:29:97:75:4b:45:fe:f2:4a:4a:6b:39:37:6d:
e1:09:b1:5a:cb:58:36:7d:22:34:70:1d:30:14:3c:
0d:d5:83:65:01:e1:75:53:d1:39:05:c2:81:24:8b:
13:c3:a8:36:da:00:f9:27:8b:3d:b7:27:f9:cc:1c:
94:92:ab:f8:5c:ae:3f:97:28:c4:32:c1:85:31:5e:
a6:29:a7:38:cb:c0:8a:ff:7d:4b:f3:de:86:59:2c:
7d:8d:51:49:99:6a:9b:61:7d:4c:70:f4:6e:f6:e0:
8d:64:79:be:28:e3:bd:f4:52:68:39:43:2c:1c:d2:
a2:10:ee:ef:b7:7a:3c:90:c1:d2:df:d6:f4:4d:9e:
71:05:cc:77:90:5d:98:26:ed:c8:1d:8d:e1:13:e7:
e3:29:bc:d6:00:d5:42:6c:38:90:00:df:1e:47:97:
9d:06:ed:e6:e2:54:91:f6:25:e4:c6:a2:7b:9f:b2:
18:87:2c:ca:50:5d:1b:85:28:0a:b7:d2:1b:01:12:
b0:46:87:84:dc:76:b8:80:5e:40:21:6b:58:35:5c:
94:f9:20:a5:f6:b8:66:13:c5:ca:53:be:58:4d:4b:
c1:13:75:e5:64:59:1c:cd:18:0d:83:75:b4:ae:12:
1f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:40:65:07:8D:77:1F:47:45:B8:ED:02:6F:AD:48:5B:51:E7:FA:28
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/uEBlB413H0dFuO0Cb61IW1Hn-ig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
8e:48:07:71:b3:03:e5:5d:b2:aa:3b:42:3c:b7:5a:12:2d:f3:
25:68:81:7e:95:fc:11:65:0a:ee:b2:a6:52:bd:2c:ba:c8:df:
f9:27:1f:b1:80:4d:ad:79:6f:09:cf:85:60:20:c9:60:8d:78:
9b:4e:1c:3d:c2:8c:bf:c1:de:26:b7:1c:a4:da:42:ca:a8:1b:
3c:4a:ff:7e:a9:68:01:a2:f3:cc:90:de:50:a5:ca:ea:7c:72:
c1:c6:e1:ce:4b:69:90:c5:6e:fb:18:de:23:1c:85:ca:69:f2:
79:bc:0d:70:19:15:1d:d5:37:af:2a:24:8f:b0:ff:18:17:e6:
44:bb:d1:5e:85:35:b8:2f:76:5f:06:c3:34:13:82:5d:c8:76:
ac:17:51:42:e5:40:da:43:c7:4d:2c:46:aa:78:5f:95:eb:39:
fb:91:49:23:34:e8:8b:24:dc:97:28:2a:bd:d9:af:97:06:74:
c5:88:89:f3:73:f8:f6:1c:f1:6b:4a:30:96:ba:27:3b:c5:d7:
ed:b7:a8:80:23:c9:fa:92:9d:23:62:d4:cb:ce:bf:0f:10:af:
55:5d:30:90:15:48:d4:51:05:0f:0e:a9:f1:d4:fe:13:8c:23:
d3:7f:ac:be:8d:4a:92:cd:57:5b:cc:ca:06:33:66:18:f7:54:
3c:9f:de:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 02:51:55 2025 by rpki-client