Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/zFC6D34FyS8tveaIdTYtvcvRv38.roa
File: zFC6D34FyS8tveaIdTYtvcvRv38.roa (raw, json)
Hash identifier: dI5VzZKPTC/54S4lLFTBTHaEoCc3CuxMDcXXxsXW1GU=
Subject key identifier: CC:50:BA:0F:7E:05:C9:2F:2D:BD:E6:88:75:36:2D:BD:CB:D1:BF:7F
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018A2E5AD5BFA84D6C5A6C0CDA81365414A4
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/zFC6D34FyS8tveaIdTYtvcvRv38.roa
Signing time: Fri 25 Aug 2023 20:20:19 +0000
ROA not before: Fri 25 Aug 2023 20:20:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2e:5a:d5:bf:a8:4d:6c:5a:6c:0c:da:81:36:54:14:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 25 20:20:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cc50ba0f7e05c92f2dbde68875362dbdcbd1bf7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:21:ee:fd:ba:69:50:0c:f2:4c:48:33:99:7c:
e7:b8:97:bb:e1:64:db:7b:71:96:63:a8:24:16:14:
6f:80:e3:ae:d9:00:9e:5d:01:e3:e7:4a:fd:01:33:
76:dc:17:c6:65:ca:63:ce:02:bb:d8:49:2f:15:d9:
69:8c:5e:1b:b2:b5:d6:5a:36:f1:70:88:eb:a0:19:
ea:f0:bb:4c:df:3d:17:14:f6:5b:dd:aa:13:ba:3b:
c3:2e:14:ab:56:10:d3:20:5b:fa:e6:c3:a8:5c:15:
72:2e:66:a2:f3:ec:6e:c7:9b:cd:8e:34:1e:b4:0f:
02:58:2e:18:62:02:ca:0e:9e:42:86:a8:a8:a7:d5:
d0:60:d4:c6:67:42:37:33:a1:bc:51:69:da:49:e2:
1d:4f:46:ad:f5:18:e2:84:31:91:7b:88:6a:f0:dd:
8b:3e:e2:4c:7d:74:ae:c6:a2:78:f4:7a:a5:4d:b4:
36:eb:88:70:90:eb:95:99:7c:d7:0f:be:f5:60:fc:
aa:b1:9a:5c:4b:8f:af:9c:02:a9:cb:92:b3:16:53:
1a:ed:c0:f0:df:fd:c5:9b:be:2d:40:7c:c3:d4:c2:
31:c7:ae:bb:08:04:07:b4:e9:5e:5b:8b:6e:9e:e5:
61:cd:d1:c1:35:67:4f:ee:b3:b0:eb:1c:a6:cd:55:
e3:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:50:BA:0F:7E:05:C9:2F:2D:BD:E6:88:75:36:2D:BD:CB:D1:BF:7F
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/zFC6D34FyS8tveaIdTYtvcvRv38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
86:e9:fc:80:27:52:56:22:ed:a4:8e:e0:aa:41:ce:1e:db:c0:
9e:12:91:84:7b:90:3a:d7:a6:e1:f4:37:9c:85:82:ab:6a:b7:
7d:01:c4:e6:3b:49:a0:77:d8:80:42:be:db:8c:21:24:f4:c3:
4b:c0:cb:e3:40:1f:d6:1a:02:33:cc:79:56:04:41:04:f4:78:
8e:7e:c0:29:a1:cd:f2:cf:f3:18:19:e0:64:54:9b:b0:8d:47:
66:4c:40:00:ef:91:d7:ef:bd:40:d9:8f:eb:a4:71:d8:5f:b8:
ad:da:69:c1:a7:09:c1:87:81:2d:f1:80:4f:de:93:9d:4f:fb:
67:66:4e:7d:b8:17:d2:44:20:6f:9e:6e:36:75:fa:7d:e1:9b:
7b:c5:ba:19:6a:20:8c:1c:13:ca:c5:bb:56:9d:56:5e:a6:ed:
eb:62:e6:dc:9b:e1:48:e1:93:e2:6e:f4:6e:fd:b0:07:b5:66:
34:bd:0d:b7:24:e6:ce:06:90:56:a1:89:fc:9c:89:ef:d0:d3:
a0:85:99:13:92:96:4c:1b:64:1c:8b:e7:b1:81:83:75:ba:fa:
16:d0:7f:32:b1:b6:1d:99:19:16:33:ad:bb:0d:d1:1e:dd:78:
2b:59:fa:89:1e:d7:e6:a8:c6:06:cd:12:3e:79:f9:df:f1:1b:
b6:b6:55:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 00:50:55 2025 by rpki-client