Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ywAaIVZBKlNacT8K2OwjbPyl2EQ.roa
File: ywAaIVZBKlNacT8K2OwjbPyl2EQ.roa (raw, json)
Hash identifier: IpyPNMR/RUh1Y5/f6jwjJGAWlo7cUPc1GaTYsrnfmUo=
Subject key identifier: CB:00:1A:21:56:41:2A:53:5A:71:3F:0A:D8:EC:23:6C:FC:A5:D8:44
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01886CC8E33B8E77B23458F8FCD53599ED18
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ywAaIVZBKlNacT8K2OwjbPyl2EQ.roa
Signing time: Tue 30 May 2023 13:11:24 +0000
ROA not before: Tue 30 May 2023 13:11:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6c:c8:e3:3b:8e:77:b2:34:58:f8:fc:d5:35:99:ed:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 30 13:11:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb001a2156412a535a713f0ad8ec236cfca5d844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:13:3f:95:ec:a7:54:5a:f3:13:03:e7:5b:24:
7b:ec:57:51:23:bb:25:54:b3:15:71:76:87:a3:b4:
1c:2b:c7:ed:d0:de:12:7f:47:76:b1:cb:11:76:b1:
d8:4f:bc:c7:2b:d4:da:37:bf:12:44:42:b4:30:86:
9a:dd:73:18:d9:63:71:cb:24:c2:e5:8b:e9:47:91:
9c:cf:00:bd:90:e2:1c:e9:75:4d:6d:bd:d8:c7:dd:
c2:6a:0c:51:8d:41:c7:06:1c:e8:6d:ab:7e:00:1a:
e5:8b:3f:17:0f:8b:e6:1d:fd:23:06:d0:2a:38:89:
29:9b:2d:8b:68:80:48:bd:97:c5:f9:66:0d:f5:3e:
48:0f:21:f4:0f:5f:f3:dd:e5:c8:27:ed:85:4c:73:
c0:59:6b:44:8a:1a:f2:29:e5:c1:d4:b5:82:dc:d6:
0e:aa:2a:e8:e3:0a:78:11:4e:d4:75:5e:1f:ed:a7:
97:c9:5d:7f:55:32:65:7a:ce:f0:88:32:99:55:65:
42:7c:3b:3c:77:a5:fb:8a:1c:c3:be:67:1e:9b:1f:
47:b9:c1:f0:cd:d6:06:da:eb:fe:03:25:74:cf:78:
ee:57:51:af:52:e7:1c:cb:2b:43:bc:8e:16:d0:25:
e8:48:ca:9c:c8:f6:d1:5f:c7:47:aa:7e:3c:a9:2f:
9f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:00:1A:21:56:41:2A:53:5A:71:3F:0A:D8:EC:23:6C:FC:A5:D8:44
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ywAaIVZBKlNacT8K2OwjbPyl2EQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
06:43:80:67:ca:e3:77:62:99:55:bb:e8:10:e5:2d:c4:e3:5b:
c7:50:89:37:f2:7d:b4:5a:b8:a2:c1:b5:70:36:a1:41:0a:97:
8c:8a:11:fd:6e:50:23:f1:3d:10:fa:a5:5a:bf:6c:bb:7b:fa:
34:fe:05:04:9a:57:55:24:db:8d:5b:cc:99:2c:ac:61:6c:2d:
e8:ee:e3:e7:e1:d3:6f:19:91:04:e1:a9:80:6b:69:53:2d:c7:
d0:65:69:ab:8f:39:0f:c6:15:0e:2b:54:94:96:a2:a9:fc:29:
5d:c4:99:7f:1c:87:01:4a:79:5b:22:c3:f1:89:68:88:0a:3c:
64:af:cf:3b:f6:ea:87:10:5a:03:6b:37:91:e1:88:7c:6b:a4:
25:33:af:23:94:a1:b4:33:82:37:60:af:36:c2:ad:77:0f:78:
82:60:09:61:c0:ef:82:43:6c:f5:ff:09:07:25:33:cc:22:47:
cd:83:22:dd:83:c9:a8:1b:b9:fa:1c:e9:bb:19:53:e5:46:37:
02:0a:df:26:42:92:7f:45:39:f6:e0:a6:7a:b5:d4:dc:fe:57:
2c:12:a1:ea:cf:3a:50:05:cf:3d:99:0d:96:6e:7c:76:a5:62:
77:98:b1:aa:6e:27:a8:b2:df:71:fc:99:34:a6:22:4d:97:e4:
df:da:b8:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 08:20:29 2025 by rpki-client