Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/uhiCogzkkxvGaOh-I-ScHum-U0M.roa
File: uhiCogzkkxvGaOh-I-ScHum-U0M.roa (raw, json)
Hash identifier: 0Yb77jtzEgiOdGqvzEAuNfaEhBjWRp5V8uObAjqfW8o=
Subject key identifier: BA:18:82:A2:0C:E4:93:1B:C6:68:E8:7E:23:E4:9C:1E:E9:BE:53:43
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 8F706057
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/uhiCogzkkxvGaOh-I-ScHum-U0M.roa
Signing time: Fri 24 Jun 2022 13:11:31 +0000
ROA not before: Fri 24 Jun 2022 13:11:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2406506583 (0x8f706057)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jun 24 13:11:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba1882a20ce4931bc668e87e23e49c1ee9be5343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:07:33:ca:ef:91:b8:3b:3a:aa:bb:ae:61:14:
b8:9e:21:18:37:15:b1:8a:86:fb:11:fe:47:7f:a3:
3f:fa:f8:da:f3:6f:bd:64:10:a1:8b:11:75:a5:11:
4c:84:3d:1d:9b:58:bb:be:85:08:5a:6c:3d:f4:14:
c2:ae:1d:0d:e4:6d:20:6e:bc:ad:e1:03:fd:a0:50:
69:b6:78:d8:ff:a7:ad:5f:f8:c4:3f:a7:bb:82:12:
fe:65:63:27:ea:69:e0:0c:fe:b2:7f:65:60:b3:2a:
f9:24:57:94:3e:c4:ab:90:ae:83:63:fb:9d:a7:0e:
a4:70:49:b4:24:22:f1:7d:a4:08:01:4c:ef:b9:57:
96:d1:5a:1e:5c:a1:32:51:1f:61:24:28:37:b9:cd:
25:72:9e:84:6e:37:48:cf:62:92:2d:7c:a7:ee:a7:
2a:ae:f6:a2:c3:f1:b8:2c:1f:63:98:79:24:21:1d:
5f:9c:a7:8d:29:db:4d:a4:79:13:a7:bd:92:fc:29:
65:ae:39:88:fd:66:a2:b3:9d:c4:65:ab:5d:42:1e:
5d:37:07:db:fc:d7:8e:d4:3c:70:46:ad:e6:1e:16:
b5:fc:36:03:91:49:09:93:3c:bd:a8:71:e6:4c:67:
f7:67:d1:4d:7b:00:0e:fe:04:11:5c:71:13:dc:f8:
ae:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:18:82:A2:0C:E4:93:1B:C6:68:E8:7E:23:E4:9C:1E:E9:BE:53:43
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/uhiCogzkkxvGaOh-I-ScHum-U0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
98:4d:0d:ca:73:3c:94:7c:c2:fb:7a:31:45:5b:dd:0c:64:f4:
94:4c:cb:33:c4:c4:da:59:6c:26:16:c0:0e:dd:9d:58:f0:6b:
16:d1:3a:a9:14:c6:c6:7e:3c:62:1d:df:68:ae:47:b6:45:9f:
c6:38:75:6d:5c:98:f7:7c:c0:5e:fb:aa:56:5c:0d:f9:b4:ef:
b1:0b:3d:1f:08:12:e8:0b:4d:fe:1e:fa:b0:1b:f9:cd:c5:f3:
4b:82:11:9e:da:88:21:e5:56:c5:17:ec:8a:62:5f:fa:83:39:
f4:a5:65:d8:03:6c:44:6b:64:78:9e:31:c6:98:cf:c6:26:d1:
d6:4e:a1:62:8d:b4:d7:7f:02:ad:94:57:02:3b:9d:d1:02:fe:
77:1a:80:8b:ae:f8:c8:65:61:02:1c:82:b9:7f:b1:30:1a:74:
d6:78:05:70:74:5d:14:3f:f1:36:7f:ab:ce:dc:85:76:68:df:
db:7e:13:b4:3c:bd:42:b0:b9:81:74:88:9f:b3:cf:53:bd:de:
0d:da:da:f2:0a:2f:f5:e7:c9:7b:8f:0e:cc:36:27:e9:41:1c:
b8:90:36:32:9d:74:59:eb:5e:be:63:0f:2e:7e:c2:21:c1:08:
3b:bc:51:71:59:8e:7f:29:a8:44:4f:3a:c2:7f:47:63:76:06:
87:73:e6:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 23:24:36 2025 by rpki-client