Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/6xMKRK8MBSk1DQ-xXJx1HxMFZ2k.roa
File: 6xMKRK8MBSk1DQ-xXJx1HxMFZ2k.roa (raw, json)
Hash identifier: qdNqTr32/oEAuCUkw5ZM2XMij5xz/ckV/lYcIIYMkqs=
Subject key identifier: EB:13:0A:44:AF:0C:05:29:35:0D:0F:B1:5C:9C:75:1F:13:05:67:69
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0187C5A07AAD8B7384286CBDA2AB0F56A920
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/6xMKRK8MBSk1DQ-xXJx1HxMFZ2k.roa
Signing time: Fri 28 Apr 2023 02:10:41 +0000
ROA not before: Fri 28 Apr 2023 02:10:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c5:a0:7a:ad:8b:73:84:28:6c:bd:a2:ab:0f:56:a9:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 28 02:10:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb130a44af0c0529350d0fb15c9c751f13056769
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:96:e7:27:47:d5:ee:ea:5a:58:87:29:40:38:
29:e6:2e:c0:0c:15:fe:c4:5a:1e:bb:79:75:a2:82:
c0:aa:97:94:ff:95:3c:52:4e:4b:69:ae:3a:68:f0:
6c:2d:0e:8a:1a:73:59:a0:85:ad:d9:8e:48:eb:a2:
23:6b:28:01:2b:e1:c1:04:51:25:f8:b3:af:57:ae:
c5:46:d8:cd:2c:11:01:79:6d:95:6c:56:53:64:b5:
80:4f:65:7d:b5:72:2f:c9:61:ae:c3:a0:a9:bd:b1:
6c:a5:fc:68:c1:53:e8:d8:dc:7d:91:cb:2a:06:fd:
1e:98:f3:5e:e5:0e:44:a4:58:98:ea:50:dc:ad:71:
0e:55:26:6c:ed:1e:94:7e:3f:b5:11:e4:62:07:9f:
3c:1a:52:53:d9:ce:59:9b:eb:d0:57:99:6e:c9:4e:
10:0b:49:54:e9:b2:00:3a:c7:e3:ab:cf:13:99:64:
b0:99:aa:00:03:32:40:08:e6:65:e1:19:c0:ec:3e:
e7:31:05:01:ee:6a:e6:4e:3b:5c:19:bb:d2:48:7e:
65:7f:28:17:79:72:bc:f8:5c:9d:7a:f4:55:26:5a:
0b:c6:26:03:9a:69:35:30:52:31:62:c3:00:9c:5e:
60:02:31:1d:ec:6c:53:ac:00:14:86:4d:1c:98:93:
b4:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:13:0A:44:AF:0C:05:29:35:0D:0F:B1:5C:9C:75:1F:13:05:67:69
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/6xMKRK8MBSk1DQ-xXJx1HxMFZ2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3b:f6:0c:41:b5:21:cd:b8:78:b1:c7:00:3b:95:32:22:b4:5f:
b0:7c:71:52:f2:33:3c:53:0c:6b:a1:d5:6f:a0:b4:0d:c6:f8:
53:2a:cd:1d:ee:f0:d3:8e:87:b7:35:de:b2:a7:80:55:24:ab:
cc:b1:8b:83:0e:bf:5b:2f:7c:13:af:af:58:23:a1:2f:40:94:
4b:ca:99:fa:e9:78:1b:7f:cb:ae:98:40:8b:05:45:72:e5:63:
ec:3b:1c:cc:bc:93:60:3d:c7:84:81:34:3e:c9:0f:6a:99:97:
37:e6:09:32:95:be:4d:ac:1c:dc:f9:c9:08:13:ca:f3:a0:d9:
cb:57:3e:76:f2:1f:f7:7c:e7:71:80:ad:5f:bc:f1:ec:2d:70:
89:89:bf:a9:a0:92:5d:3c:9b:0d:b4:ad:98:0d:07:98:bd:12:
7b:8c:c5:5b:a1:fe:7c:4e:18:b3:c7:28:95:2f:e6:08:54:6d:
95:e9:7d:8f:6f:ec:f0:b7:cd:85:d6:94:fa:28:4d:39:68:7a:
13:82:ce:31:b0:f4:2c:41:52:71:87:cc:9f:af:17:e9:b4:4e:
d3:7a:dd:53:9a:62:b3:26:0b:07:6d:02:fa:df:1b:c3:53:76:
8b:a6:03:05:dc:53:99:35:0e:13:c3:9e:d1:84:09:2e:97:ba:
37:3a:4b:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:27:45 2025 by rpki-client