Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/yFugT1TkasUfNKAyaNXjLW0gI1o.roa
File: yFugT1TkasUfNKAyaNXjLW0gI1o.roa (raw, json)
Hash identifier: HkkJRNnpKs1vQninSpJFkWGkpZT6x1lBkOjOMm/KH3U=
Subject key identifier: C8:5B:A0:4F:54:E4:6A:C5:1F:34:A0:32:68:D5:E3:2D:6D:20:23:5A
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 836721E5
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/yFugT1TkasUfNKAyaNXjLW0gI1o.roa
Signing time: Thu 12 May 2022 16:18:11 +0000
ROA not before: Thu 12 May 2022 16:18:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:180:a810:6542/128 maxlen: 128
2001:67c:64:ffff:0:180:466e:42dd/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:180:8961:505f/128 maxlen: 128
2001:67c:64:ffff:0:180:457:1e3f/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2204574181 (0x836721e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 12 16:18:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c85ba04f54e46ac51f34a03268d5e32d6d20235a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:35:97:e1:5b:28:a9:b4:ac:f1:82:13:27:d6:
bc:06:39:5f:76:f2:90:68:84:d4:42:0a:36:1c:6c:
eb:2e:50:e1:64:9c:32:db:08:9c:3d:a3:1b:d4:f7:
94:aa:26:a0:0f:ec:d0:72:f1:25:18:b4:ce:27:48:
f8:ba:0c:a6:db:b3:a8:62:67:d5:23:15:8d:64:4a:
86:6e:0d:cf:2f:2c:89:1c:6e:c4:53:98:d3:bb:d1:
bf:cc:a3:d9:dc:0d:f8:9e:af:16:94:40:6e:39:97:
05:2b:cd:b2:5e:8e:97:0d:00:d7:09:2e:e2:6c:a8:
cf:e4:33:c7:72:1c:ef:d8:cc:cb:cf:84:a4:ed:21:
4a:13:44:63:18:fb:1a:c9:3b:b6:df:5e:3b:21:01:
2c:9f:2d:d7:71:77:dc:4b:c3:b6:e2:f6:f3:84:54:
25:7d:9c:38:41:5c:f7:92:34:94:70:3c:b5:b8:03:
4d:2a:9c:71:f7:b5:62:fc:b7:dc:37:f9:4c:11:82:
6a:7f:65:7a:c1:92:f2:a4:0c:2b:5b:88:65:fe:3d:
2d:98:70:27:e1:d9:5e:42:5b:33:d6:08:80:75:e6:
90:05:50:66:b0:8f:2c:6c:b3:ab:f0:2d:32:54:20:
bb:90:5f:ba:0e:76:c6:05:27:38:d1:b9:b2:2c:26:
e9:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:5B:A0:4F:54:E4:6A:C5:1F:34:A0:32:68:D5:E3:2D:6D:20:23:5A
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/yFugT1TkasUfNKAyaNXjLW0gI1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
15:72:be:a0:f0:40:96:d9:e1:08:a4:3c:3a:b7:ed:1d:21:ce:
09:00:48:c1:6e:12:e7:9a:f9:e8:63:b0:72:70:4d:59:45:ec:
2e:e9:47:0d:6a:4d:10:b2:6c:1f:74:55:15:0b:a7:ca:c2:d6:
95:4b:98:b0:3c:d0:07:7a:1b:d4:42:dd:66:8b:f1:cf:81:55:
2d:c9:00:58:86:4a:1a:7e:ae:b9:4a:74:92:11:0f:1b:db:59:
8e:35:09:11:26:e7:e0:b7:f1:d8:f6:78:31:e1:e7:23:ca:68:
5d:af:4d:00:ca:e4:82:0b:11:77:b2:15:91:8c:66:2a:c3:25:
12:b5:60:9e:e6:54:49:ea:cd:09:1f:4f:f7:46:12:44:d7:41:
a0:b7:5c:95:ae:4c:83:94:9a:66:5f:97:48:cb:bb:8f:9e:51:
06:c6:4b:5a:f8:b1:28:36:c1:7a:82:1b:98:6b:49:89:f9:6b:
b7:0c:4d:33:05:3f:7a:f3:ee:07:18:91:ff:60:4a:ae:f0:43:
25:ba:b7:a9:72:28:44:ac:1d:51:7e:e4:3b:f0:42:a7:28:85:
5c:22:f0:6b:5e:dd:9f:37:69:e0:00:04:ef:cb:09:41:ee:60:
b6:65:44:20:4c:ea:c2:1b:9e:8f:dc:cc:d7:c0:3b:d5:27:52:
4c:c5:f4:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 00:42:41 2025 by rpki-client