Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/uFsR-b7Lh2hXiOBmYNw6qZbTZfc.roa
File: uFsR-b7Lh2hXiOBmYNw6qZbTZfc.roa (raw, json)
Hash identifier: qhatyI5A4ehWla6SD41pbvNombLm8Q6TXhwGZLjyS58=
Subject key identifier: B8:5B:11:F9:BE:CB:87:68:57:88:E0:66:60:DC:3A:A9:96:D3:65:F7
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0188E3DE98898020314E92C2644F7D08BF19
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/uFsR-b7Lh2hXiOBmYNw6qZbTZfc.roa
Signing time: Thu 22 Jun 2023 16:09:55 +0000
ROA not before: Thu 22 Jun 2023 16:09:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e3:de:98:89:80:20:31:4e:92:c2:64:4f:7d:08:bf:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jun 22 16:09:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b85b11f9becb87685788e06660dc3aa996d365f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:eb:cc:c3:d2:9c:3e:99:2b:2c:78:08:b6:91:
bb:8b:fe:70:01:35:eb:1d:79:6d:e3:33:ec:61:eb:
a6:5d:27:2f:76:f7:de:01:05:35:58:28:8d:6a:14:
8e:04:0b:98:2c:a6:0b:17:21:b7:00:d0:7e:b1:44:
78:2e:7e:6c:c1:f0:31:5a:a1:69:f8:ef:8e:d1:92:
1f:2e:e4:c0:48:7a:42:dc:c7:08:63:3a:b4:7a:32:
de:52:3f:9c:38:32:00:37:e7:f5:4b:a2:dc:5e:84:
48:57:53:0c:38:62:c6:5c:c6:76:de:ac:68:f0:04:
a5:45:a0:3a:59:27:e0:93:f8:89:90:00:0a:75:3b:
5b:8e:2b:1e:a3:9d:e2:33:b3:26:7c:8d:8a:40:2c:
74:75:db:62:cc:60:3e:16:bf:be:35:ce:63:d5:31:
f2:e1:d8:ad:9d:0c:66:76:6c:1c:be:8c:6b:f5:b2:
d7:87:fb:3a:4c:21:89:bf:c8:f9:26:24:94:69:e7:
96:90:63:de:93:d9:9a:1d:54:cc:a1:9c:07:1f:92:
08:23:23:73:70:16:5a:22:52:4e:4e:8e:ec:4a:c9:
0e:65:b4:0b:3f:5e:f5:2d:7c:0e:47:46:31:ba:66:
b5:16:9c:e4:5b:b7:23:09:01:5f:67:04:d6:41:bb:
31:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:5B:11:F9:BE:CB:87:68:57:88:E0:66:60:DC:3A:A9:96:D3:65:F7
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/uFsR-b7Lh2hXiOBmYNw6qZbTZfc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5e:f9:e2:9d:27:5c:7c:23:20:c5:59:e5:ea:8a:63:42:fd:78:
7d:82:4c:14:2b:85:e7:14:3d:df:43:47:da:5a:53:cf:bd:f7:
93:4c:ed:f2:fa:55:2e:e5:a4:6c:84:29:2f:bd:63:d3:7a:1e:
5d:65:c4:f6:a7:e1:8d:fe:66:15:6c:91:ec:e2:70:a2:29:8c:
49:8f:10:48:d2:d9:b9:fc:c2:fe:7b:30:34:1d:9c:55:d4:13:
66:57:ad:d8:22:37:aa:6b:3b:f3:e8:8b:33:06:e5:b1:ad:3f:
a9:c4:56:60:83:dc:0f:26:19:c4:37:07:97:64:2f:95:88:da:
d0:45:fa:ef:f8:a9:46:23:23:fb:3e:93:45:49:77:9b:3c:04:
48:f1:85:e7:5b:7f:f3:6e:ec:f4:40:c7:55:1f:45:1c:ee:51:
51:b5:bb:5a:e8:72:f9:fd:c3:64:3e:8f:12:13:e6:a4:6c:d9:
b8:3c:d2:88:f5:e3:62:12:c4:fd:2f:f7:ad:fb:82:7a:22:08:
be:25:12:5a:4c:2c:1d:49:36:05:ff:4a:29:38:92:3b:01:31:
5f:d0:a9:d6:ec:db:7d:6f:38:a1:d3:a3:70:da:3a:bf:93:a4:
f3:99:90:e6:27:0a:ee:44:e0:76:81:80:4e:20:43:90:19:b8:
a1:bf:1f:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 00:18:11 2025 by rpki-client