Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/vuDy4bEw_AcKKk9mGTNQPGap25Q.roa
File: vuDy4bEw_AcKKk9mGTNQPGap25Q.roa (raw, json)
Hash identifier: pLHayVqfvfpZuSh21asBnLCNKjZDiE0EZ+YW96bh/mc=
Subject key identifier: BE:E0:F2:E1:B1:30:FC:07:0A:2A:4F:66:19:33:50:3C:66:A9:DB:94
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018966598C5CE3202BECB9C48332492C54D5
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/vuDy4bEw_AcKKk9mGTNQPGap25Q.roa
Signing time: Tue 18 Jul 2023 00:14:51 +0000
ROA not before: Tue 18 Jul 2023 00:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:66:59:8c:5c:e3:20:2b:ec:b9:c4:83:32:49:2c:54:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 18 00:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bee0f2e1b130fc070a2a4f661933503c66a9db94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:0a:6c:ce:a8:60:03:d7:16:6c:ee:1f:6b:17:
dc:2f:ce:d2:a7:d6:ca:71:06:c8:83:44:0b:dd:1e:
fd:6f:6b:58:cb:d2:15:4d:4c:ff:23:0b:98:0d:2d:
35:a1:35:a0:cd:1b:3b:ec:6b:00:a2:34:5b:ac:28:
52:22:db:75:6b:3a:c1:2f:62:e2:c3:a8:db:81:ed:
35:d7:c8:95:74:21:de:e8:8f:f3:9a:7b:fb:ed:e0:
04:9b:91:77:09:51:b2:8f:53:31:91:61:fd:54:14:
ec:78:da:f5:82:27:10:14:84:a3:44:33:f8:f6:14:
bf:ec:f3:e7:ff:e6:d7:13:d0:a3:66:ef:91:51:30:
6d:82:ac:bd:10:fe:43:64:b4:46:fb:c6:f6:9f:52:
ff:c8:83:4d:70:ff:01:b8:db:33:23:89:01:40:c8:
98:97:55:96:65:83:f7:a7:7d:40:73:a0:05:ee:38:
2f:4b:cb:bf:7f:2f:5d:9c:5f:9d:9e:21:e9:c7:5a:
70:c0:a0:4c:b0:43:ed:7a:de:e8:65:bb:30:1d:02:
d7:bb:bc:c7:9f:7c:4d:e3:3c:c1:45:97:23:26:12:
06:e5:24:a2:71:8b:0e:c5:ab:d0:13:0b:7d:e4:48:
eb:74:c9:18:f0:73:30:65:4f:3f:17:ec:11:45:be:
8c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:E0:F2:E1:B1:30:FC:07:0A:2A:4F:66:19:33:50:3C:66:A9:DB:94
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/vuDy4bEw_AcKKk9mGTNQPGap25Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
06:73:08:84:7d:dc:a8:2a:90:47:e2:df:ec:0a:8f:43:7d:4f:
bf:5a:d0:af:d4:a0:3f:ad:5e:62:25:e3:40:60:c9:f0:5a:66:
a5:08:d0:de:fd:40:0d:c1:6f:4e:ff:96:4b:ff:25:00:d9:a2:
9d:72:83:2d:d5:b4:92:22:3b:f9:5a:8f:cd:c8:8d:49:b2:ce:
b4:b6:55:d5:c4:25:58:72:00:e3:ef:7d:6a:ca:8f:61:a7:65:
ce:12:b4:fb:51:e3:98:4c:a9:4d:ab:5a:3c:c3:53:e3:8e:93:
11:9f:a8:1f:c2:53:c1:ed:58:76:72:b0:14:8d:9c:8a:d3:d7:
ab:33:46:15:63:e5:49:ef:4e:00:47:b2:03:20:2c:e8:4c:ff:
28:ab:2c:02:51:74:ea:e5:d7:04:44:4b:5b:bd:fd:6b:04:6c:
07:7f:84:64:26:ef:f0:3d:8b:4f:b6:ff:cc:f9:47:54:3b:60:
61:a1:50:4e:b7:5b:5f:87:00:13:dc:06:54:d3:13:98:3d:80:
60:0a:87:e9:0d:fe:b3:d9:cb:24:94:66:6d:b9:76:93:6f:61:
c8:e0:7f:0f:14:73:f2:7f:2c:bf:a0:37:fd:10:c4:5f:c1:4d:
3f:44:76:89:e8:c8:4b:07:8d:0a:1c:59:b4:0d:1f:a9:bd:1d:
17:d6:7c:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 11:59:33 2025 by rpki-client