Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/yR74ZJb68HS_Tvy9sjlfw8n-SjA.roa
File: yR74ZJb68HS_Tvy9sjlfw8n-SjA.roa (raw, json)
Hash identifier: jGfMs5/QqyIzaS2dZgEL1sMjeh4QBq4q8PAmmCAaXd0=
Subject key identifier: C9:1E:F8:64:96:FA:F0:74:BF:4E:FC:BD:B2:39:5F:C3:C9:FE:4A:30
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0185056237306D70412418FFDF8398263A15
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/yR74ZJb68HS_Tvy9sjlfw8n-SjA.roa
Signing time: Mon 12 Dec 2022 08:10:00 +0000
ROA not before: Mon 12 Dec 2022 08:10:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:62:37:30:6d:70:41:24:18:ff:df:83:98:26:3a:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Dec 12 08:10:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c91ef86496faf074bf4efcbdb2395fc3c9fe4a30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:cd:d5:46:7a:92:8c:0a:8a:ea:0a:5b:7f:0f:
80:d1:71:84:49:d6:50:f2:5a:41:62:42:71:c0:ee:
f4:b2:f3:2c:f3:3e:7f:02:43:c6:37:06:a2:13:eb:
32:bb:45:70:c4:12:44:5e:d6:22:e7:f5:ce:0e:27:
55:9c:01:05:89:eb:e7:dc:0d:63:c2:3b:89:71:21:
3d:dc:49:ae:e7:50:c7:9b:45:2d:6f:83:0c:4c:de:
67:fd:fe:47:15:a7:ba:49:47:db:f0:99:2f:d0:ea:
8a:cc:f7:63:6c:b4:5f:8f:4d:db:17:5f:56:c8:0d:
52:3d:7a:83:20:71:b8:da:f6:a4:62:81:88:02:86:
6a:cd:5f:03:cc:9b:91:08:1a:d4:62:35:6e:7c:fe:
11:b4:a0:d4:d2:46:53:b2:eb:52:25:2f:d4:8d:52:
3d:e7:7c:a8:3f:5a:3d:e5:12:4e:0d:9f:8d:1f:29:
34:88:27:69:47:79:da:ec:8d:63:e8:07:30:9b:8d:
94:b6:62:e1:68:cc:be:7a:07:2a:2f:73:17:ad:70:
92:42:b1:4b:96:22:0c:8f:3a:6a:7b:38:98:c9:4b:
cd:0b:52:0b:b4:01:39:59:db:22:4f:c2:50:b7:fb:
3e:d2:7a:68:87:20:eb:f9:c0:6b:c9:13:6d:11:63:
3d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:1E:F8:64:96:FA:F0:74:BF:4E:FC:BD:B2:39:5F:C3:C9:FE:4A:30
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/yR74ZJb68HS_Tvy9sjlfw8n-SjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
30:11:f2:e6:87:29:f4:31:22:76:dc:32:a5:2c:8c:7e:18:ec:
30:85:f0:ab:79:8e:b6:55:5d:52:34:fe:2d:f2:55:89:58:69:
92:d1:3d:6e:6a:78:5b:0e:04:01:6d:82:64:a6:fd:cc:ed:e8:
27:c9:e7:d4:ba:80:3e:a0:a8:f8:6a:d2:86:bd:f6:b5:78:f1:
a4:1a:e3:be:69:85:e7:9b:e1:37:87:c0:0f:ae:a8:3b:cd:8f:
30:23:6b:11:69:6b:91:fb:56:c2:25:bb:5f:ae:11:85:60:ef:
71:d7:48:b8:9e:ae:66:b7:39:5e:87:cc:e3:46:07:30:58:0d:
1e:c2:8e:d7:5a:07:c6:fd:0b:9b:b8:20:d9:e7:30:b5:d5:9f:
47:dd:4a:d9:51:6c:66:f7:7b:9a:9f:8c:98:75:d4:94:e1:75:
32:01:ee:d2:17:3a:a9:cb:fe:eb:f1:81:30:81:33:33:c8:c1:
f7:e9:b5:78:df:82:2a:1a:62:cb:46:76:8c:03:82:b7:76:b5:
a2:5e:a1:7f:7a:63:ab:69:60:80:32:68:c2:f3:60:fd:2f:97:
e1:d0:49:2e:d2:e2:90:22:63:a1:1f:1c:99:ed:62:68:af:19:
0c:34:a6:68:03:73:04:33:43:9c:c8:9b:17:74:46:3c:85:fa:
78:87:d6:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 07:50:12 2025 by rpki-client