Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/yTJYKqEFeOGHhP2YsfxSTpcTqC8.roa
File: yTJYKqEFeOGHhP2YsfxSTpcTqC8.roa (raw, json)
Hash identifier: oONcbEJaLF9gq9X2VBoBj6uQJpsQlUbqcpBhawjcSpE=
Subject key identifier: C9:32:58:2A:A1:05:78:E1:87:84:FD:98:B1:FC:52:4E:97:13:A8:2F
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018693679483E60895C3DB67CE9A35828145
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/yTJYKqEFeOGHhP2YsfxSTpcTqC8.roa
Signing time: Mon 27 Feb 2023 15:04:44 +0000
ROA not before: Mon 27 Feb 2023 15:04:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:9367:2071/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:93:67:94:83:e6:08:95:c3:db:67:ce:9a:35:82:81:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 27 15:04:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c932582aa10578e18784fd98b1fc524e9713a82f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:65:53:3a:1a:0a:b6:2d:24:bb:6c:7d:a9:f6:
66:c5:a4:e8:89:95:a2:62:e9:18:5d:74:f3:48:af:
55:35:35:ac:f4:87:58:a9:7f:a6:60:9a:e6:bf:fe:
f4:1a:aa:43:e5:3a:04:b6:6b:7f:57:4d:c8:a2:65:
8d:9e:8e:13:e7:1f:b1:30:a4:c7:2d:b4:27:9f:76:
b4:0d:65:fa:d8:fa:c3:8e:cf:ff:ad:cb:90:36:c6:
58:ca:a3:26:95:97:6e:50:ae:0a:48:fc:6a:51:27:
ef:c4:a5:5e:b8:88:0c:df:28:b5:ee:86:e5:b1:d5:
94:b9:4e:b8:ea:4a:c1:6d:85:68:8f:40:ee:71:4e:
e4:af:e2:9e:0a:56:f0:7c:9f:5c:9e:6d:1a:08:6e:
b9:57:c3:50:b2:ce:f0:a0:2d:28:58:a0:61:e7:84:
a6:5e:d7:4c:a1:c8:ad:49:c0:9b:00:67:c3:db:e4:
b9:40:fe:51:cf:37:3c:40:45:fa:01:7a:a0:60:77:
04:79:c0:b1:39:8b:3d:00:40:c3:f7:a3:56:49:a1:
09:31:a6:f0:86:7c:3e:cc:a0:95:78:4a:58:28:19:
e2:98:33:09:af:d5:38:8f:b4:ef:1e:f1:f0:d1:50:
5d:8c:02:7a:40:c5:5e:b3:0b:99:07:c2:e2:21:3d:
79:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:32:58:2A:A1:05:78:E1:87:84:FD:98:B1:FC:52:4E:97:13:A8:2F
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/yTJYKqEFeOGHhP2YsfxSTpcTqC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
b5:93:03:4e:ff:28:78:38:f2:23:de:b7:3a:6a:54:12:33:56:
2b:75:14:9f:16:7c:9d:fc:b8:d1:3e:f1:36:40:c8:3a:99:53:
7a:2c:4f:d1:c3:df:4d:6a:ab:e5:f7:1f:90:60:b5:ee:6d:13:
86:df:f5:40:d3:06:5d:9f:bd:ca:0c:e4:93:c4:c2:89:e1:97:
f9:eb:0d:de:59:66:36:93:ae:f3:7c:56:b1:d0:c5:a5:c0:e5:
16:1b:d3:4b:a1:a4:48:a7:be:5a:b2:dd:05:b2:b2:70:99:1f:
2c:1c:54:a6:7c:d2:d5:45:dc:f4:73:d1:14:c6:61:9e:5e:01:
7f:3c:e1:01:90:8c:68:51:33:e7:8a:01:9e:9e:7a:d6:2f:36:
c6:b0:e5:61:33:4c:03:a0:94:33:73:4c:44:35:26:b1:ff:17:
e8:62:ed:f3:79:1b:d0:a6:78:49:6c:8c:3d:12:1b:ab:78:99:
d9:52:97:7d:f1:35:85:0f:46:29:15:19:b8:67:cc:e7:4e:e4:
d3:53:66:2f:af:0e:c9:4c:32:e9:88:69:65:f1:eb:f6:72:91:
00:b2:39:b1:00:05:7a:34:d2:04:9d:a7:1d:42:16:1d:93:41:
88:4c:4e:fd:f7:86:59:94:f6:a7:fb:2c:6a:f7:da:ae:b3:0c:
f8:c6:28:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 11:12:54 2025 by rpki-client