Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/yreaspJIlKI5zjP_q9xxSwWgxLk.roa
File: yreaspJIlKI5zjP_q9xxSwWgxLk.roa (raw, json)
Hash identifier: +Z/u1JlehxIvN7aph11RvgRf5nxg8rEsuUmty0eusHw=
Subject key identifier: CA:B7:9A:B2:92:48:94:A2:39:CE:33:FF:AB:DC:71:4B:05:A0:C4:B9
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018714688595301026A83B863715B6214070
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/yreaspJIlKI5zjP_q9xxSwWgxLk.roa
Signing time: Fri 24 Mar 2023 16:16:46 +0000
ROA not before: Fri 24 Mar 2023 16:16:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:14:68:85:95:30:10:26:a8:3b:86:37:15:b6:21:40:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Mar 24 16:16:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cab79ab2924894a239ce33ffabdc714b05a0c4b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d6:b3:0d:40:5b:ac:79:96:c5:95:f9:4d:e9:
8e:25:04:03:54:92:cf:e9:24:f2:c4:77:33:e6:ca:
7d:ed:26:da:c3:50:f4:49:fb:40:97:0e:01:7f:1d:
44:e8:27:11:dc:83:2d:14:a2:da:f6:db:d3:61:4e:
ff:47:e7:ff:c0:72:e5:c0:72:72:9b:9f:3f:1a:40:
2c:94:16:3a:52:e7:0c:0f:fa:db:9f:73:03:d3:07:
f3:13:34:f5:f0:df:72:a8:c0:ec:e8:fc:53:2b:0e:
89:6a:c6:60:50:05:80:07:e3:8e:ae:f0:ab:09:22:
8c:95:50:53:bf:b3:d3:f2:81:fc:56:96:62:d1:80:
b8:99:41:9e:d2:2c:1e:e0:6d:29:ef:9a:43:b9:4b:
a9:fc:27:af:e8:b6:96:b7:8a:fd:22:8a:81:3b:56:
86:0d:2a:d5:ca:a9:a0:a7:39:c1:02:94:62:80:8c:
95:da:fe:0e:c0:bc:26:62:ac:d8:14:2c:f8:c6:35:
09:cf:87:16:de:84:6d:5f:25:c7:44:c0:e5:0a:40:
20:e3:f2:9f:90:89:a5:e5:98:de:af:5c:79:e2:5f:
ca:c6:24:53:9d:d6:b2:5b:61:91:af:e1:92:d0:66:
ac:83:40:f6:8c:8a:10:ec:b1:2a:bf:88:3e:ca:3d:
fd:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:B7:9A:B2:92:48:94:A2:39:CE:33:FF:AB:DC:71:4B:05:A0:C4:B9
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/yreaspJIlKI5zjP_q9xxSwWgxLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
14:34:9d:a9:35:98:69:35:24:21:39:a7:1a:1f:eb:00:6f:69:
6b:e2:71:18:50:0e:c0:a6:2d:11:83:5f:cd:98:e0:8f:86:d2:
8b:49:de:7f:5e:aa:41:7b:ea:25:55:49:31:99:61:df:13:80:
63:c9:e4:ec:94:43:2d:06:97:ed:9b:23:75:12:c7:86:9c:a5:
16:e3:74:9b:8e:ac:6b:99:d4:2c:61:e7:6b:c2:84:00:bc:e4:
1c:2d:5e:bf:c9:95:6d:d6:eb:17:f9:a6:4c:a9:bf:72:78:f0:
c8:94:f7:a6:eb:20:b8:f9:80:c8:e7:17:22:d2:6b:5a:50:f4:
f4:db:76:35:2a:aa:c4:33:3e:04:80:dd:30:31:03:b9:04:94:
b9:99:fd:f8:93:34:11:c9:f6:38:d8:e4:d1:4e:d7:dd:67:06:
31:3f:76:51:8a:54:03:6e:02:57:b5:35:1b:91:2f:d9:e4:0a:
49:eb:77:3f:0b:64:a7:2f:f0:f9:92:14:d9:8a:ea:40:35:cf:
d4:7a:c7:a6:c8:66:37:7e:9b:3c:4b:05:d6:85:2e:f3:b3:e2:
ad:90:8e:5b:8d:b1:d0:2f:2a:a6:e3:29:a9:cf:08:5c:ff:4a:
b3:2d:34:b1:0a:6d:a1:08:51:e0:1a:0f:39:68:43:c4:ab:58:
2c:3f:2f:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:39:37 2025 by rpki-client