Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/4zfBmyhDIDPFq5mrPqtX0EYBF4U.roa
File: 4zfBmyhDIDPFq5mrPqtX0EYBF4U.roa (raw, json)
Hash identifier: Up+sOh2+TrvtfF5oNu4oOVtPNeP2/0aFsgQLT6hWvdc=
Subject key identifier: E3:37:C1:9B:28:43:20:33:C5:AB:99:AB:3E:AB:57:D0:46:01:17:85
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 68FEEFB3
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/4zfBmyhDIDPFq5mrPqtX0EYBF4U.roa
Signing time: Tue 08 Feb 2022 23:04:18 +0000
ROA not before: Tue 08 Feb 2022 23:04:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:17e:d592:92a4/128 maxlen: 128
2001:67c:64:ffff:0:17e:d7ee:e040/128 maxlen: 128
2001:67c:64:ffff:0:17e:d600:60b0/128 maxlen: 128
2001:67c:64:ffff:0:17e:d524:ead9/128 maxlen: 128
2001:67c:64:ffff:0:17e:d6a5:23ae/128 maxlen: 128
2001:67c:64:ffff:0:17e:d901:fecb/128 maxlen: 128
2001:67c:64:ffff:0:17e:d7b8:3101/128 maxlen: 128
2001:67c:64:ffff:0:17e:db94:a15b/128 maxlen: 128
2001:67c:64:ffff:0:17e:d9a6:5e4a/128 maxlen: 128
2001:67c:64:ffff:0:17e:a0dd:2f5b/128 maxlen: 128
2001:67c:64:ffff:0:17e:db26:e5c4/128 maxlen: 128
2001:67c:64:ffff:0:17e:dab9:26f6/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:17e:da82:41aa/128 maxlen: 128
2001:67c:64:ffff:0:17e:d826:2565/128 maxlen: 128
2001:67c:64:ffff:0:17e:db5e:7e8/128 maxlen: 128
2001:67c:64:ffff:0:17e:d713:9aeb/128 maxlen: 128
2001:67c:64:ffff:0:17e:d55b:c264/128 maxlen: 128
2001:67c:64:ffff:0:17e:d66e:8559/128 maxlen: 128
2001:67c:64:ffff:0:17e:d938:ba2e/128 maxlen: 128
2001:67c:64:ffff:0:17e:d85c:d348/128 maxlen: 128
2001:67c:64:ffff:0:17e:d96f:7a13/128 maxlen: 128
2001:67c:64:ffff:0:17e:daf0:4034/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1761537971 (0x68feefb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 8 23:04:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e337c19b28432033c5ab99ab3eab57d046011785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:d7:e6:bf:2b:23:4a:05:19:aa:fa:6c:4f:60:
92:40:3a:8e:d1:ca:71:a5:36:38:12:37:77:5d:e7:
2a:f4:22:99:07:ec:6b:fd:f2:de:78:84:3d:e3:4c:
25:41:08:97:34:bc:63:8d:01:fb:34:bc:95:78:dc:
46:8b:c1:37:52:b6:55:22:2a:e8:d0:e8:e6:d1:62:
a7:8d:3f:d8:b8:a9:8b:7f:fe:23:b7:b5:f6:78:a3:
76:d4:db:97:7b:a7:50:4a:4c:c1:1c:fb:72:4c:53:
9e:39:ec:6e:5e:14:c2:c8:81:4f:82:9a:23:17:fb:
78:3a:78:8c:7a:6d:d4:80:1d:4e:8d:a9:18:e2:42:
f7:15:5b:08:9a:31:90:ff:05:95:e8:6d:07:8e:c1:
97:ab:39:e5:56:6d:d8:3e:d6:59:4f:dc:79:39:e2:
50:48:ac:ae:09:7c:60:5b:fe:52:0b:cf:b8:b6:89:
ae:44:e7:c7:5a:67:4d:be:8e:5f:c6:fe:0f:6e:33:
5e:69:ae:b1:77:70:a8:18:eb:7e:47:d9:fb:a3:fd:
09:e5:9a:2a:6e:45:4b:fa:89:42:c4:ca:75:47:e1:
2d:62:86:1b:ae:c5:c3:b0:e7:aa:33:69:b0:03:81:
15:f6:26:fc:fb:e2:f0:34:32:1d:6e:f8:db:83:92:
e6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:37:C1:9B:28:43:20:33:C5:AB:99:AB:3E:AB:57:D0:46:01:17:85
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/4zfBmyhDIDPFq5mrPqtX0EYBF4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a6:88:7a:9a:0f:d8:34:1e:8f:5d:4c:3e:6c:e7:ea:c2:35:77:
df:98:49:ef:1f:c9:15:e5:2b:2b:94:f6:13:91:29:1b:b3:32:
6f:dd:73:0e:3b:68:ee:26:f4:fa:1c:5f:38:d4:f0:93:c4:6e:
19:0f:a9:85:24:a8:f0:c9:87:12:33:36:fa:52:d1:20:0f:6d:
db:f8:14:ba:ec:4c:59:4f:6e:05:c6:3c:2a:33:33:4a:cc:dd:
e3:72:f0:67:39:24:72:dd:86:87:68:d6:f5:ef:25:7b:af:0b:
ed:82:9c:2c:69:50:ea:81:d0:bf:bb:ce:56:56:31:3e:8a:b3:
73:29:6d:d3:f3:3f:86:64:0b:2d:b1:02:15:3d:50:2f:f4:cf:
08:38:cc:97:74:a4:90:87:cb:a2:ee:45:54:43:be:34:4c:ed:
2d:03:a9:89:1a:11:58:a9:cb:e4:d3:59:d0:8c:fd:6c:d6:fd:
a3:58:4b:92:f4:60:e2:6a:e7:bc:a3:2e:40:9a:b5:2f:bc:d5:
f5:36:e4:68:ff:93:aa:21:e5:88:fd:37:45:25:59:21:f5:1b:
04:d1:c8:9d:31:3f:47:89:12:34:99:c4:ae:3b:7c:ce:15:90:
7c:51:8b:76:fa:76:fe:5c:67:bf:e8:bb:51:1e:32:5b:58:ce:
b6:f8:58:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 00:09:38 2025 by rpki-client