Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/uOWDHTJEIjHQ52X5Uj2otox7knI.roa
File: uOWDHTJEIjHQ52X5Uj2otox7knI.roa (raw, json)
Hash identifier: DBcp7P1KDj0UeGGpRofJ3pBK2cYwVJD29YPJx1+J7TA=
Subject key identifier: B8:E5:83:1D:32:44:22:31:D0:E7:65:F9:52:3D:A8:B6:8C:7B:92:72
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01860C3FCA326CA21D77AB833021200B7D2A
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/uOWDHTJEIjHQ52X5Uj2otox7knI.roa
Signing time: Wed 01 Feb 2023 09:12:32 +0000
ROA not before: Wed 01 Feb 2023 09:12:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:0c:3f:ca:32:6c:a2:1d:77:ab:83:30:21:20:0b:7d:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 1 09:12:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8e5831d32442231d0e765f9523da8b68c7b9272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:1e:39:ec:55:e4:cf:10:e1:6c:47:4a:17:a3:
af:b4:6a:db:b9:f4:42:ba:bc:30:97:4f:48:02:81:
8f:63:73:06:aa:17:00:74:fc:0b:13:fe:47:e4:7d:
6a:5f:55:ca:6d:68:9e:3e:83:d9:b4:b4:4b:3d:56:
4d:a4:82:5a:e1:5a:23:bc:3c:bb:76:7d:d1:3a:aa:
7d:ed:46:19:7b:5a:95:ed:6f:c7:e0:c4:59:40:40:
c5:f1:f5:b8:c2:3d:d9:fe:eb:a4:50:49:be:2f:4f:
74:26:fe:fb:02:de:94:f5:23:b5:69:1c:94:f8:04:
c0:b3:84:80:39:6c:66:e2:1f:62:26:ef:1e:8d:df:
a3:b3:3e:99:f2:f9:de:07:d5:e0:f5:8b:44:78:94:
2e:4e:db:c3:69:be:1f:0e:02:e6:63:91:ce:b7:57:
09:fb:ce:8b:42:77:7a:17:cb:49:56:54:1f:5c:ae:
0c:6a:b5:b7:42:b3:58:0a:6d:f2:ca:1c:63:37:d5:
e1:bf:5b:95:60:d9:d6:78:01:27:07:c0:a8:c7:fb:
80:44:3a:80:a7:85:3d:d9:a2:a5:bd:7d:6c:7a:87:
d6:27:77:f2:f3:40:4b:fb:a8:a2:c0:bd:4c:3b:7a:
fd:18:56:a6:12:84:19:c5:b4:ed:c2:1d:61:9f:cc:
a0:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E5:83:1D:32:44:22:31:D0:E7:65:F9:52:3D:A8:B6:8C:7B:92:72
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/uOWDHTJEIjHQ52X5Uj2otox7knI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
78:7e:bf:d1:d1:80:dc:94:af:0f:b2:51:67:74:a0:d1:37:d8:
ae:2a:af:38:1f:76:90:cb:de:6e:3d:4f:8f:43:fd:fb:c9:77:
53:67:7d:d7:b6:2a:a7:be:f4:14:f1:b7:ab:36:79:80:37:c3:
61:68:6c:9c:c0:f3:52:33:76:b6:8f:a9:ef:33:c8:4d:ef:6a:
5a:6f:a1:e6:b3:11:2c:c5:02:47:71:3b:ee:7e:e0:b8:a5:8f:
f3:f7:04:6e:8f:7a:8d:67:5e:7c:a6:9c:9c:e4:32:6d:63:2e:
8c:49:27:d0:6e:64:cf:94:fe:84:d9:3f:7f:ea:10:a9:75:cc:
ba:76:05:f0:64:b7:1e:c9:82:54:2a:58:5d:15:a2:7a:dc:fd:
4c:df:b8:db:5d:0b:29:ea:c6:1e:ba:91:59:b0:dd:01:e6:df:
59:f5:f8:33:36:a1:02:e9:fa:b5:a1:77:20:e8:8f:88:68:de:
e6:38:99:be:88:07:3e:a6:e3:7b:4b:a6:db:ff:eb:64:4a:b5:
b2:e1:92:5f:88:8c:17:03:55:53:10:43:3b:16:66:af:25:40:
d6:29:47:be:4c:b3:c9:34:20:4f:8a:c4:57:9e:43:7f:53:7c:
b7:4f:9c:36:8a:83:cf:58:67:b4:ef:b9:fd:ff:4d:d4:14:38:
6f:f5:b0:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:41:16 2025 by rpki-client