Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/O2nyfZogqQ0XFx-VPh71kYLLhlM.roa
File: O2nyfZogqQ0XFx-VPh71kYLLhlM.roa (raw, json)
Hash identifier: WWTMExNmNj9W7WPZKdk7W3X1xRZQPXqwUVg3Wj51D2k=
Subject key identifier: 3B:69:F2:7D:9A:20:A9:0D:17:17:1F:95:3E:1E:F5:91:82:CB:86:53
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 780A13EB
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/O2nyfZogqQ0XFx-VPh71kYLLhlM.roa
Signing time: Sun 03 Apr 2022 09:10:55 +0000
ROA not before: Sun 03 Apr 2022 09:10:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2013926379 (0x780a13eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 3 09:10:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b69f27d9a20a90d17171f953e1ef59182cb8653
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1f:d9:50:73:93:78:f9:ad:0f:a8:0d:71:a1:
df:75:e5:17:96:78:93:76:d7:76:6e:ac:d5:38:e7:
b6:1b:f6:2d:3d:38:66:57:be:a3:55:22:03:a1:d5:
ad:87:f9:1a:ad:6a:a3:17:b8:a4:44:b2:30:27:7a:
73:aa:95:38:d4:99:de:9c:d8:9c:cd:55:c3:f8:96:
6d:f7:a0:a1:b2:bb:22:69:0f:41:9c:6a:da:97:6b:
52:7d:db:13:0d:82:d9:e8:a3:02:b5:c3:c5:0f:b1:
fe:21:9b:b2:26:32:5c:d8:60:5b:1d:84:4e:df:47:
99:83:26:3c:07:ad:4d:ac:2b:44:ba:99:6e:ba:4c:
41:7f:61:d7:18:f7:42:35:2a:83:9f:13:89:0d:48:
fb:03:cf:5f:c8:28:70:05:ff:a0:c9:0d:2c:39:2c:
c9:76:ea:83:eb:6f:05:b5:8d:87:01:fb:a6:03:ff:
15:51:72:da:f9:4c:a9:80:4a:78:e6:63:81:2f:84:
ae:0d:a8:fe:df:b1:8c:a9:e4:58:04:e0:8e:ef:cc:
a4:ee:5b:cb:d8:20:08:e6:35:95:67:61:50:60:a7:
3f:fb:17:c0:2d:43:f8:35:ec:8f:8e:d9:cb:82:75:
2c:a2:69:df:2b:9a:1f:b5:09:a8:48:cf:fa:9c:66:
d4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:69:F2:7D:9A:20:A9:0D:17:17:1F:95:3E:1E:F5:91:82:CB:86:53
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/O2nyfZogqQ0XFx-VPh71kYLLhlM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
67:08:8f:b4:97:9b:6c:51:61:63:24:bf:1f:bf:dc:f8:c0:cc:
43:70:1c:3b:9f:c2:46:8c:03:1a:88:7e:9d:32:c5:7e:8e:34:
d9:f6:c6:9b:26:19:43:b5:a2:53:34:8e:d3:aa:14:dd:3a:0c:
b2:6d:9e:91:a3:fb:cc:3f:be:e1:37:f6:ee:c4:39:e6:dc:08:
14:b7:30:a7:84:94:3c:88:8e:25:4e:a5:5c:96:c4:ba:73:b4:
15:e6:30:52:a4:20:66:6a:fa:25:e6:ec:4b:d8:94:fb:96:26:
8c:11:ad:8e:bd:00:2e:97:2e:d8:c0:7c:47:0e:ed:7a:f9:b2:
4d:b7:77:de:5d:f6:95:9b:da:68:42:15:02:66:3f:ad:7f:d5:
4b:53:5d:c9:19:cf:a5:87:61:c4:2e:b4:c6:da:c0:80:4e:d8:
74:68:3d:fa:80:27:28:01:70:d1:4c:d4:19:0f:92:66:c5:81:
d4:ba:46:cf:f2:d0:eb:a8:6c:c6:d1:ed:e8:32:91:63:87:d1:
7b:29:a3:78:d9:c5:45:8b:ad:e8:ff:ab:b3:84:8d:e7:75:e9:
94:60:89:d4:a3:18:6b:e4:37:11:22:29:38:ca:68:6b:b2:b0:
40:f8:df:b3:86:6c:9e:95:d5:69:54:9c:3f:7f:e2:83:ad:d4:
6a:41:8f:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 07:20:53 2025 by rpki-client