Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Zomlv7xElyH7F-Ok1VjBDXybJ58.roa
File: Zomlv7xElyH7F-Ok1VjBDXybJ58.roa (raw, json)
Hash identifier: U6WR5uaVeohensEYzqV/qRjfmJ6xJhqjOGX8ClPBMX8=
Subject key identifier: 66:89:A5:BF:BC:44:97:21:FB:17:E3:A4:D5:58:C1:0D:7C:9B:27:9F
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01852969C3F87A35CB88C397833D1B13AF81
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Zomlv7xElyH7F-Ok1VjBDXybJ58.roa
Signing time: Mon 19 Dec 2022 08:04:35 +0000
ROA not before: Mon 19 Dec 2022 08:04:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:185:2969:65c0/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:29:69:c3:f8:7a:35:cb:88:c3:97:83:3d:1b:13:af:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Dec 19 08:04:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6689a5bfbc449721fb17e3a4d558c10d7c9b279f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3c:1d:a3:be:4a:ab:7f:01:b0:4d:e0:c6:4b:
37:7f:4b:93:29:97:34:48:a9:d8:b9:0b:c2:ca:9f:
07:aa:8f:34:e6:46:83:c8:87:8b:a0:a7:68:8b:b3:
8a:3d:b3:b7:e3:a7:44:df:30:36:07:4e:3e:ff:86:
80:30:3e:0c:86:91:f2:1b:d7:d2:b5:5d:de:38:18:
1a:5e:0d:55:e4:36:e5:ef:ec:32:9f:65:bd:bd:e0:
24:d5:78:df:e4:13:c0:e7:5b:7b:4e:47:1c:4a:84:
5a:61:45:5e:83:4e:13:1d:dd:42:7a:e0:70:b2:44:
0f:e7:20:1e:2b:ad:c6:f3:68:43:8c:c8:c8:1d:66:
38:9d:ef:60:af:a7:2b:4a:a7:95:08:38:c2:52:21:
9d:40:85:86:6c:8a:85:ac:e7:bf:bb:84:73:ae:be:
a6:9a:0d:d5:39:16:aa:9e:5c:85:d9:76:89:36:72:
a4:d3:1e:5c:92:ed:6f:f5:23:5e:1a:70:b7:cf:2b:
b6:e0:65:db:9b:ee:6f:d6:f4:1e:20:4d:9e:07:ea:
01:aa:55:93:00:8c:14:84:c4:04:b3:1b:8d:6b:30:
d7:68:14:ef:ca:6e:d2:6e:df:73:ca:f7:cc:37:fb:
6a:39:25:62:d5:84:a4:4f:f9:f4:54:59:50:62:60:
44:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:89:A5:BF:BC:44:97:21:FB:17:E3:A4:D5:58:C1:0D:7C:9B:27:9F
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Zomlv7xElyH7F-Ok1VjBDXybJ58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
41:d6:5a:01:ea:d2:6e:7f:1e:cb:2b:8a:21:ee:99:1f:37:0f:
46:0c:c3:73:bc:91:b6:7c:f8:45:15:cf:74:a2:da:23:fd:84:
56:01:ca:83:fa:0c:fd:9f:b6:07:e2:0c:64:87:92:29:82:1f:
30:c3:f9:53:ea:14:c3:ef:f4:14:a2:01:db:1c:ac:14:bd:22:
8b:ed:dd:32:c5:9e:4d:ba:e8:1a:64:14:14:35:c1:53:bf:d7:
df:d8:62:a1:d8:8f:6a:fc:52:e8:ef:c5:4c:34:a2:d4:04:d2:
75:2a:1c:d4:1f:c9:b8:2b:e9:61:e8:73:ef:1c:88:6f:f9:b7:
e6:14:92:31:9f:c9:28:ec:1e:59:32:14:7e:98:8e:7f:41:4a:
f5:31:91:35:44:29:17:84:72:fd:57:19:af:a4:86:6b:b4:2a:
7c:4e:87:88:7e:0f:09:96:02:61:25:fa:76:e1:6d:01:74:30:
3c:fd:29:f7:49:1e:ca:23:75:cf:74:71:db:07:7c:40:9e:8a:
e0:3d:63:b2:a7:29:98:69:0c:93:81:7e:d1:b0:2d:4b:72:db:
7e:bc:fd:37:62:62:dc:c8:c8:ae:8f:5d:65:96:5c:84:51:d7:
c6:51:c5:ba:e4:28:e3:36:a0:c3:74:41:4a:6a:8f:a6:fb:38:
83:26:65:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 22:41:03 2025 by rpki-client