Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/1-b2Vs4H58f6teAqAQRpfVQU1Zn8.roa
File: 1-b2Vs4H58f6teAqAQRpfVQU1Zn8.roa (raw, json)
Hash identifier: lNMgFLodKRIXyAzFc9Qq9xPWemTsYnRzyV3Dc00gXPE=
Subject key identifier: F9:BD:95:B3:81:F9:F1:FE:AD:78:0A:80:41:1A:5F:55:05:35:66:7F
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0186C8DF276FF9930597AE3210260E0D2F89
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/1-b2Vs4H58f6teAqAQRpfVQU1Zn8.roa
Signing time: Fri 10 Mar 2023 00:15:13 +0000
ROA not before: Fri 10 Mar 2023 00:15:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c8:df:27:6f:f9:93:05:97:ae:32:10:26:0e:0d:2f:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Mar 10 00:15:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f9bd95b381f9f1fead780a80411a5f550535667f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:f2:27:6e:08:b5:54:cc:c8:75:58:46:e4:9c:
8b:09:b1:29:77:24:2f:c5:ef:e5:51:03:ff:96:33:
aa:5d:1e:d0:88:fd:39:1b:27:8c:1f:7f:ea:44:78:
a3:64:ef:4c:37:0f:cc:e7:05:bd:45:ee:e4:f1:ad:
b7:45:3e:48:7e:08:37:05:37:f7:4f:21:d3:2e:b8:
5c:f6:32:40:3d:95:7e:43:d2:1e:ca:04:58:6d:1e:
e8:9a:34:3a:69:cf:25:d1:90:3c:f0:c2:0d:38:1e:
83:bf:83:ef:36:72:df:ac:de:db:17:f5:65:66:ec:
85:bb:70:c2:8a:72:ac:84:b5:85:c8:6f:fd:66:fb:
b6:82:0a:70:fa:54:2b:8d:df:3c:78:d1:bf:40:11:
2e:d6:bc:6c:df:20:69:4b:e4:2d:53:e5:2d:f9:d1:
32:8e:4b:f3:92:b4:d3:cb:a5:81:11:ef:63:3a:25:
ac:be:b8:bf:88:7d:19:85:6a:c2:8a:09:f3:fa:04:
c7:34:e7:39:b3:6c:2f:fd:56:20:72:08:9c:ae:a1:
90:41:c1:85:3b:5d:46:87:93:26:e7:ce:9f:17:88:
6f:e3:27:61:79:a1:a0:07:5f:d9:16:20:84:e5:cd:
53:2b:c0:7c:dd:43:2e:4c:81:4e:6f:69:e4:29:f9:
3b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:BD:95:B3:81:F9:F1:FE:AD:78:0A:80:41:1A:5F:55:05:35:66:7F
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/1-b2Vs4H58f6teAqAQRpfVQU1Zn8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
78:9c:e0:b6:9d:0e:ce:1c:7d:d3:d5:c8:2a:61:40:83:cb:ce:
a8:49:de:9f:06:ed:c0:19:22:67:f0:33:91:92:2c:fb:ac:b4:
4f:2c:91:35:57:26:05:e9:63:08:ac:f0:dd:d1:3b:33:c1:4d:
7c:54:0a:38:a1:04:2c:b7:bc:93:cb:e6:a1:e4:c6:f9:d9:2c:
4a:8a:65:43:f3:0a:71:de:b0:6c:65:17:87:52:9d:95:3a:d5:
04:56:34:5d:e4:3b:be:26:47:96:11:0b:e6:6c:c5:77:e0:24:
16:59:46:21:b1:95:96:0d:9f:87:04:ce:26:ec:37:f8:ac:05:
1e:f7:f6:0a:81:ea:a0:75:6a:e2:f9:d4:4b:6f:77:23:61:8d:
fa:ab:7c:b4:b9:e1:79:b8:5d:7f:8f:35:3d:e6:c7:6c:77:01:
4b:13:f6:47:05:e2:cd:6d:bd:2e:95:2a:f5:48:e2:0d:f1:b0:
05:cb:95:40:8a:95:a3:51:4f:1c:f8:ec:a6:a6:94:4d:a4:14:
47:7b:b4:15:b4:3b:f8:65:d7:82:ef:01:51:a5:5e:d3:b2:98:
7b:c3:61:7e:6b:10:cd:8f:47:3d:04:e9:2f:11:f8:35:3f:13:
da:da:3a:84:14:b8:d2:d4:e9:70:0d:24:54:5e:49:86:04:3a:
b8:92:f9:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 07:58:20 2025 by rpki-client