Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/27MUZCeffJaoliMW58mKM3O0sos.roa
File: 27MUZCeffJaoliMW58mKM3O0sos.roa (raw, json)
Hash identifier: RmmZNhvELMTeHdqdLdJAjs5IbKm2d24UkQJSiDrBuNY=
Subject key identifier: DB:B3:14:64:27:9F:7C:96:A8:96:23:16:E7:C9:8A:33:73:B4:B2:8B
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01884FD0338465EF113E9FFA6651F0AA08C9
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/27MUZCeffJaoliMW58mKM3O0sos.roa
Signing time: Wed 24 May 2023 22:10:24 +0000
ROA not before: Wed 24 May 2023 22:10:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4f:d0:33:84:65:ef:11:3e:9f:fa:66:51:f0:aa:08:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 24 22:10:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbb31464279f7c96a8962316e7c98a3373b4b28b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:84:51:39:c4:a9:ab:27:cb:1a:64:b3:c5:bb:
5d:d5:f7:06:a6:00:ff:a3:73:ed:eb:2f:2d:26:d8:
03:ac:45:01:57:e8:fe:66:a6:9c:32:ab:04:3c:14:
5a:c7:4e:8d:60:b8:e9:6c:64:8d:22:38:34:b8:dc:
e8:a3:af:e8:63:02:a9:d4:f5:0d:93:6f:05:c9:86:
80:03:77:7e:0c:0d:65:88:d5:0c:5b:5c:f3:1d:c3:
84:f1:29:43:00:d5:4d:67:ac:69:b8:b5:bc:ea:7d:
f7:7c:bd:bb:27:46:bd:b9:26:4a:c4:c4:18:9e:5d:
97:ac:82:78:ea:84:7d:20:15:c1:08:97:78:00:67:
c2:19:95:3d:00:4b:8a:58:38:9f:ab:d0:08:a6:49:
16:4d:de:bd:9b:91:74:50:bb:98:79:a1:65:85:ac:
bc:9c:ef:ba:0f:33:a4:90:63:67:cd:47:f7:10:6e:
da:03:77:6f:bb:a1:f0:d7:f0:a1:f9:81:ae:2c:59:
4c:83:29:b3:e0:cb:17:14:7a:6a:15:e2:b1:36:21:
a3:d0:c4:ab:66:2d:72:13:a0:01:b2:e6:db:cc:cf:
4f:dd:03:c9:cd:14:8b:cc:d0:d7:b9:c0:21:45:fb:
ca:c1:6f:e5:7b:a5:41:b3:01:f7:96:49:70:7b:7b:
a1:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B3:14:64:27:9F:7C:96:A8:96:23:16:E7:C9:8A:33:73:B4:B2:8B
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/27MUZCeffJaoliMW58mKM3O0sos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
65:b9:0e:69:50:7f:96:a8:23:94:8f:11:bf:7e:25:e7:1e:b4:
25:ca:6a:6b:41:d1:af:3b:1f:db:9d:23:21:f9:41:5b:fc:24:
60:71:33:24:1e:66:13:25:be:e7:ab:ed:ea:bb:6e:31:1f:41:
9c:33:2f:f4:86:b6:8b:ff:a4:d9:89:ea:cd:92:19:c7:e0:c7:
75:36:a3:68:90:0a:4f:de:dc:f3:68:66:4b:a3:8b:9d:5d:8c:
f2:44:61:f2:99:24:36:02:37:b6:f0:da:96:c9:3d:f9:1e:02:
4e:9f:b8:a1:2f:ea:92:49:cf:ce:be:26:a2:e8:e8:5f:54:a0:
4c:d2:6b:c7:d1:cf:03:9c:65:fd:bb:4f:59:70:cc:d2:eb:f6:
ce:53:b7:4d:68:f3:30:52:6b:58:11:38:65:80:d6:b7:7a:db:
46:2b:42:30:5e:47:dc:3f:42:0e:b6:b0:86:32:b5:a7:ea:a0:
c6:1b:2d:81:57:b0:3d:e8:e5:60:c9:10:c7:51:16:8e:26:73:
8d:6d:a2:31:ee:d9:52:df:f1:87:6f:63:bb:ff:94:4d:38:73:
d6:71:2c:26:c4:96:0f:f3:0d:ec:32:1e:57:d2:16:05:c5:61:
90:36:b9:6b:a9:45:c7:99:a4:07:94:0d:b8:4c:9c:8e:21:bd:
10:4a:b6:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 00:23:03 2025 by rpki-client