Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/jRgkeu2ir761RGnUDqbnLz7kXhE.roa
File: jRgkeu2ir761RGnUDqbnLz7kXhE.roa (raw, json)
Hash identifier: 06eAwx8/pu+HJ0q1nCbQ70xWd/z9z6hOicBTx3xQ2Ok=
Subject key identifier: 8D:18:24:7A:ED:A2:AF:BE:B5:44:69:D4:0E:A6:E7:2F:3E:E4:5E:11
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018A31C52A4267A303BAF96E88CDE9D9523E
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/jRgkeu2ir761RGnUDqbnLz7kXhE.roa
Signing time: Sat 26 Aug 2023 12:15:19 +0000
ROA not before: Sat 26 Aug 2023 12:15:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:31:c5:2a:42:67:a3:03:ba:f9:6e:88:cd:e9:d9:52:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 26 12:15:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d18247aeda2afbeb54469d40ea6e72f3ee45e11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c2:23:0b:58:3e:ed:05:3f:39:08:b6:f1:37:
f1:0c:d5:b0:56:e6:79:97:87:19:6b:44:a5:a2:ae:
98:70:52:ce:28:aa:48:53:e5:f5:a8:87:a5:20:5a:
0b:5a:b4:bf:44:b8:bb:23:ce:40:2a:59:08:f8:19:
16:74:29:69:cd:8b:e9:a8:3f:76:a2:bb:b6:a6:26:
3c:f8:e7:46:56:66:b6:b5:14:a0:cb:52:dc:ed:c0:
8b:85:b3:7f:fc:90:a3:a1:24:e3:1c:8b:12:b8:10:
77:0b:73:fb:09:e8:b2:2d:f3:74:72:c5:d5:73:e9:
62:bc:34:89:eb:40:ab:f3:7a:15:cd:d9:3b:bf:97:
54:90:ab:a5:e8:ce:68:cb:62:4b:ea:82:9f:ef:97:
c1:f5:2c:e2:9a:87:9c:e0:73:4d:c9:c9:33:5a:cd:
86:c2:52:c1:e0:67:25:3c:22:45:05:77:f6:c9:c5:
3a:cc:2d:0d:22:46:3f:d6:f5:97:5e:b8:91:23:36:
8f:f2:64:d1:6b:53:55:3f:ed:e1:5d:f6:ec:2b:66:
53:25:4b:de:18:14:bc:69:ce:3a:c5:f5:79:13:94:
7c:c1:1a:be:4a:0c:d2:9d:4c:20:60:70:37:1c:bc:
05:87:6f:a0:38:a9:13:1e:5f:c7:38:69:5c:f6:dd:
29:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:18:24:7A:ED:A2:AF:BE:B5:44:69:D4:0E:A6:E7:2F:3E:E4:5E:11
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/jRgkeu2ir761RGnUDqbnLz7kXhE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a4:4e:b7:2c:a2:c2:93:b9:a5:ec:60:7d:4e:f1:e0:44:5b:6c:
80:5e:dd:fc:e7:af:1a:68:f2:f4:c9:b2:14:77:54:c1:ee:c9:
47:c5:fc:65:cc:60:b1:d7:44:f7:f2:ca:5e:4a:18:46:40:92:
66:05:e8:68:cd:56:cf:39:b0:8d:8b:2d:60:0a:1b:c5:8e:e1:
65:c3:08:9f:7c:16:14:92:08:d7:be:48:74:28:22:72:53:70:
aa:fc:99:7c:b2:fd:ac:29:cf:6f:78:01:f4:04:01:b6:af:a7:
02:17:2c:6e:8d:b2:c1:4c:30:47:78:85:7b:55:68:2e:ac:65:
96:be:b4:fb:01:cf:eb:48:2f:5c:f6:b4:4b:d4:9d:fd:3a:a0:
80:af:46:b7:60:e5:5d:23:20:f5:f4:fd:c5:e0:1a:d4:c1:fe:
47:9e:b0:ea:c4:31:0a:13:a6:c2:97:aa:e0:7d:26:aa:47:94:
56:bc:d9:f8:23:83:fc:fe:0c:73:11:2e:12:79:c7:c5:7e:f3:
65:15:89:d4:7e:e8:b1:34:98:96:1e:77:14:44:dc:7b:1d:e8:
c9:04:71:0c:d6:10:14:3e:9a:63:f3:59:5e:99:2c:16:82:a0:
81:7f:d0:43:3e:69:cd:4f:d1:b8:de:f4:3f:7d:6b:2b:5e:47:
66:09:74:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 10:07:39 2025 by rpki-client