Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/nrqyRNpsboKywHknZxHkJMns4cE.roa
File: nrqyRNpsboKywHknZxHkJMns4cE.roa (raw, json)
Hash identifier: bEJzTu3fp+bOLQhOjtOjpd51IFBWTXTwWUgLv6fqB4s=
Subject key identifier: 9E:BA:B2:44:DA:6C:6E:82:B2:C0:79:27:67:11:E4:24:C9:EC:E1:C1
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018853E21290E9E5D8F58472B7F2915C71CC
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/nrqyRNpsboKywHknZxHkJMns4cE.roa
Signing time: Thu 25 May 2023 17:08:24 +0000
ROA not before: Thu 25 May 2023 17:08:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:53:e2:12:90:e9:e5:d8:f5:84:72:b7:f2:91:5c:71:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 25 17:08:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9ebab244da6c6e82b2c079276711e424c9ece1c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:31:cb:48:84:91:68:74:05:54:39:5a:dd:86:
3b:69:af:d2:7a:8d:f0:64:98:df:81:c5:42:b8:a0:
2f:6f:46:df:96:12:44:51:1d:6e:c8:38:f1:0c:5d:
a8:48:6c:bc:25:dd:b1:ad:a1:29:92:85:c0:44:a0:
0f:f4:94:dc:0a:1b:67:7a:d8:bc:01:9f:59:bd:95:
56:f1:c2:6e:76:53:17:76:70:13:22:0b:a5:65:8d:
2d:80:49:ac:22:fe:12:8b:51:c5:5f:d8:6e:ac:8c:
3e:06:49:c8:d3:bd:9c:42:ab:f5:01:17:cc:b0:a8:
c0:89:52:1b:d4:a9:bd:c2:50:3d:84:31:a2:a8:5e:
f0:fc:fe:23:e3:46:bd:57:3f:a5:61:34:a5:12:00:
a9:f1:2b:b8:a9:e0:48:0c:81:4e:e3:58:24:32:5c:
fb:ee:ee:56:63:e0:a5:24:d7:5c:dd:52:0a:33:82:
eb:54:7c:f9:71:d9:6d:6a:a3:9e:59:42:69:ba:b3:
90:52:ef:3d:4a:b4:49:4c:0f:2a:2f:95:de:6b:e4:
66:5b:f6:90:ee:b5:bb:c8:89:6d:df:5b:9a:b7:61:
2e:54:2f:04:56:0a:d5:68:b9:90:f0:d2:2c:58:4c:
83:f0:3d:e4:d4:09:ce:07:83:42:91:e4:83:bb:79:
6e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:BA:B2:44:DA:6C:6E:82:B2:C0:79:27:67:11:E4:24:C9:EC:E1:C1
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/nrqyRNpsboKywHknZxHkJMns4cE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7f:ee:37:ca:e4:9f:fd:81:2d:30:2e:3f:80:66:70:ac:51:69:
99:00:30:f9:32:69:a3:bf:1d:77:9e:58:fd:73:d9:65:b8:71:
58:44:25:e5:ce:5a:3a:9e:05:04:49:40:da:b9:ec:05:82:ca:
b6:1d:44:d0:f9:99:71:b3:0e:1a:c8:e4:65:53:dc:97:6f:29:
ce:e2:c4:0c:87:16:ae:db:12:95:f9:5f:7f:c6:f2:03:e6:8d:
6e:e3:9c:47:a8:50:b6:df:35:db:d2:84:a2:ed:ed:39:4e:7e:
35:00:a5:79:08:ea:92:bb:92:71:3a:cf:0a:e1:09:98:26:10:
e2:bb:db:2f:bc:b1:2c:1a:23:08:62:a6:b3:0d:c7:59:65:65:
5f:b9:db:e6:79:f9:10:ea:bd:6b:ba:a6:fa:08:73:fd:f0:0f:
09:0d:a2:22:d6:38:9f:01:74:dc:eb:af:30:9d:d1:0a:b5:e3:
66:21:d5:45:cf:8f:c4:03:d0:ee:51:d0:7b:f9:96:12:1d:d3:
e3:65:ef:66:30:47:1a:b1:6e:8d:8f:9f:79:f9:d5:2d:93:10:
ec:a0:0c:29:3d:35:d8:22:de:1c:d6:18:36:6a:17:16:86:35:
14:6a:37:11:a9:af:11:02:1f:d3:25:95:18:bb:6e:8f:c2:b3:
58:b7:6f:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 00:20:22 2025 by rpki-client