Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/wVGw3XFxZeX8Rg5_zr4PwmHHoss.roa
File: wVGw3XFxZeX8Rg5_zr4PwmHHoss.roa (raw, json)
Hash identifier: kH0cpSNvt2bjOa5Kh3GRrYME+6l5wfZebaCQCp2byb0=
Subject key identifier: C1:51:B0:DD:71:71:65:E5:FC:46:0E:7F:CE:BE:0F:C2:61:C7:A2:CB
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0187816438DE7A31BB099853F87321178688
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/wVGw3XFxZeX8Rg5_zr4PwmHHoss.roa
Signing time: Fri 14 Apr 2023 20:10:41 +0000
ROA not before: Fri 14 Apr 2023 20:10:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:81:64:38:de:7a:31:bb:09:98:53:f8:73:21:17:86:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 14 20:10:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c151b0dd717165e5fc460e7fcebe0fc261c7a2cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:11:bf:b8:6d:1e:6d:8a:3e:c6:83:5f:df:ca:
9c:dc:9a:a3:ec:2d:1d:52:c9:7d:10:b3:a1:69:54:
9f:70:a4:ba:2f:70:93:a6:23:1f:81:c5:9e:08:2f:
20:b1:7d:fe:36:1b:9d:b1:b1:ae:40:b4:d3:bb:ed:
6e:7d:8e:81:7e:b3:4f:a5:c2:4c:3d:46:83:ca:52:
56:30:3b:5c:2f:40:05:73:f3:fe:04:d3:32:1d:fe:
fc:40:c7:d7:dc:75:06:92:3e:4c:d6:02:22:81:2e:
26:0d:a3:13:a4:49:63:a1:20:b6:c8:69:16:83:8b:
2b:af:37:40:57:93:f5:40:1b:f5:66:e9:e0:10:c9:
19:27:98:2e:da:74:77:30:03:f9:07:81:3d:99:d4:
50:a1:fe:fb:3d:08:77:cc:92:77:ed:32:f0:5b:93:
94:d6:0a:a3:fc:86:fc:f3:92:d1:6c:df:15:ef:18:
05:53:a7:a1:a4:f1:fa:66:5c:a9:cc:da:80:a5:48:
40:31:88:4d:89:55:2a:06:48:17:05:87:e7:cd:cc:
ae:ee:d2:96:9c:86:cb:80:eb:39:e5:5f:4b:bb:1c:
43:5c:a8:db:94:84:d8:4c:bc:f9:e8:6f:3b:e1:ac:
34:4c:0a:95:1e:45:30:2c:69:f9:ea:49:38:ae:5f:
0e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:51:B0:DD:71:71:65:E5:FC:46:0E:7F:CE:BE:0F:C2:61:C7:A2:CB
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/wVGw3XFxZeX8Rg5_zr4PwmHHoss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
44:74:b3:9d:e7:d4:07:94:29:38:07:d3:b1:54:20:c8:f8:e8:
bd:36:21:8d:2b:fe:07:25:06:62:e8:f9:cb:27:43:74:b2:87:
87:68:ff:af:f5:2f:35:3f:53:c5:aa:03:e2:e7:fc:e3:6e:c9:
2b:60:a0:cd:3f:1b:30:de:48:b3:d3:4e:db:2b:0b:74:3c:ce:
ec:0d:0f:d1:94:24:6c:33:b6:ca:80:1a:7b:0b:e3:ec:ae:d3:
4b:91:44:7a:95:aa:68:d7:63:da:93:b8:86:f0:0b:48:24:80:
0c:5e:01:33:2e:ae:4a:12:d6:08:73:ff:a8:71:b1:1b:6a:eb:
a4:b5:ed:07:e6:bb:63:9f:ed:36:f6:00:28:9e:9c:0b:8d:b3:
ea:25:1f:6e:ad:88:05:69:8d:ab:de:52:87:d6:05:56:57:7a:
1e:e2:6b:8c:4e:f9:77:6a:9c:ec:70:75:54:28:24:07:1a:b9:
08:3f:d5:ae:b5:ad:83:b7:18:3b:f2:12:f9:f3:cc:55:ea:cb:
79:a6:98:81:69:95:b4:3f:79:84:00:70:2b:f5:3c:ea:31:eb:
43:ca:ff:3e:98:5a:1a:ea:e4:b4:9a:9a:7f:33:d2:d0:51:ed:
f8:7b:87:08:51:68:63:b1:d9:68:f6:c8:a9:61:3a:4d:24:60:
d2:f0:c2:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 21:25:17 2025 by rpki-client