Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/19yjZiwRcch40ALrETsyUCBXUbw.roa
File: 19yjZiwRcch40ALrETsyUCBXUbw.roa (raw, json)
Hash identifier: JS6Wce+vYPQ8usZgBRHlC6pzcnjErRNq6BWc0UM+rEk=
Subject key identifier: D7:DC:A3:66:2C:11:71:C8:78:D0:02:EB:11:3B:32:50:20:57:51:BC
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0187928DD617A85CE9A79C3E6E911F29F397
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/19yjZiwRcch40ALrETsyUCBXUbw.roa
Signing time: Tue 18 Apr 2023 04:09:41 +0000
ROA not before: Tue 18 Apr 2023 04:09:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:92:8d:d6:17:a8:5c:e9:a7:9c:3e:6e:91:1f:29:f3:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 18 04:09:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7dca3662c1171c878d002eb113b3250205751bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:94:f1:8c:31:16:bd:87:c3:0a:e9:9b:99:de:
23:a2:5e:3e:18:4b:3f:ad:33:f8:5a:ae:e3:29:2e:
88:49:89:08:99:a4:48:a3:b5:94:55:21:49:33:91:
9d:66:fd:be:8c:38:30:f2:b3:aa:bf:91:66:22:fb:
15:d7:13:d0:a3:3d:53:99:d6:22:eb:02:fe:93:52:
13:a3:56:a1:91:ec:7c:88:7c:02:fb:7d:cd:40:f5:
e5:55:5f:09:ed:7a:ad:83:55:35:91:33:32:d5:51:
ea:2a:1d:b1:a7:87:6f:a8:a4:ab:19:a7:ee:af:bb:
d0:06:53:73:d2:07:7e:00:11:52:b8:36:af:fe:39:
5c:9d:58:df:9a:f7:c5:f7:ec:24:f5:0c:1d:eb:dc:
06:e6:59:75:81:b0:15:05:d7:ee:73:6c:67:a8:f9:
56:b3:c0:16:62:49:e1:40:40:d9:e3:66:6e:d3:1d:
7a:14:a9:cd:73:25:43:d3:c3:17:65:8b:19:32:ba:
99:45:1e:3d:09:ce:da:25:6f:1f:7e:8e:a0:42:43:
b6:88:a2:c2:d1:02:b8:7d:05:8e:6a:9b:70:54:6a:
02:b3:2b:02:f2:76:9b:90:2e:15:47:ae:e5:5f:56:
46:2c:a5:6d:6b:7e:67:95:86:59:d4:00:1b:8d:6b:
e6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:DC:A3:66:2C:11:71:C8:78:D0:02:EB:11:3B:32:50:20:57:51:BC
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/19yjZiwRcch40ALrETsyUCBXUbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
87:04:f6:d7:b9:fd:bf:f1:e3:a4:50:17:11:cc:64:03:91:0e:
e6:27:99:cc:70:bd:95:33:f2:53:6b:e0:b6:e6:ec:ae:96:09:
b7:57:9f:82:21:68:66:f2:03:ca:ed:39:7f:27:9d:b7:c8:57:
38:eb:a8:84:e3:d1:3e:ec:20:44:00:c6:c0:c0:00:cd:6b:66:
13:fd:ef:b6:23:35:bd:f1:3b:b8:5e:b8:19:4e:54:38:d2:44:
b5:2e:6b:24:26:73:27:2e:81:e0:76:5e:60:9f:4d:25:08:d2:
c9:26:4f:58:8e:2e:72:8f:bb:54:a5:95:93:07:5c:19:24:4b:
b3:ee:f1:ab:3d:fc:97:0a:51:c7:8d:a4:e9:92:0a:f3:6e:26:
a8:20:69:5b:29:59:4a:7e:66:0f:6a:ae:5d:6a:93:6f:a8:89:
96:60:22:a1:80:5e:ce:1c:71:95:2c:ff:4f:ef:9a:20:98:02:
20:6f:8f:43:4e:2b:e7:05:6f:53:f3:07:54:9f:fa:37:e3:b4:
d9:85:96:0b:89:ac:5e:ef:9b:f4:2e:dd:7f:79:70:21:4e:54:
59:d6:52:e4:bb:bf:0e:86:ad:db:b3:6e:a0:0f:ff:2d:a5:ad:
93:f0:3e:b0:c5:a7:c5:a7:10:a7:d8:8d:26:1c:ee:3c:5d:71:
6a:98:40:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 12:03:55 2025 by rpki-client