Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/znlHu3xGyQYPyJj_dIF1pu4oCVE.roa
File: znlHu3xGyQYPyJj_dIF1pu4oCVE.roa (raw, json)
Hash identifier: cWrpOLvhtpxyi/qyjN2l7nWrItk/5NiE0E4UdRymO+M=
Subject key identifier: CE:79:47:BB:7C:46:C9:06:0F:C8:98:FF:74:81:75:A6:EE:28:09:51
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0189571D673E90A2BA3368D0EC5C481CC810
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/znlHu3xGyQYPyJj_dIF1pu4oCVE.roa
Signing time: Sat 15 Jul 2023 01:14:52 +0000
ROA not before: Sat 15 Jul 2023 01:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:57:1d:67:3e:90:a2:ba:33:68:d0:ec:5c:48:1c:c8:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 15 01:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce7947bb7c46c9060fc898ff748175a6ee280951
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:4a:94:f8:19:08:dc:6e:9e:83:aa:38:a0:77:
de:06:1b:41:46:93:42:68:79:ed:e2:90:76:43:b1:
fc:30:d1:06:21:ed:2a:e8:a0:28:52:62:c1:91:ea:
02:7b:45:9d:5b:1e:cb:25:c5:22:3e:b2:00:dc:43:
e7:a9:6a:90:28:01:f4:bc:24:ed:6a:1d:ad:b9:55:
dc:3e:1b:da:e4:d2:cf:04:7b:f0:de:57:aa:87:70:
80:4c:63:48:49:70:eb:ad:f1:d0:ff:dc:00:6c:3c:
20:c2:02:82:b1:d6:9d:0b:ce:ac:61:99:e4:ee:7c:
ea:23:f3:e0:3f:e9:26:d6:38:ce:67:bc:e5:23:6d:
a6:d7:1b:a3:f4:03:aa:b8:54:27:da:e8:8a:47:e9:
07:de:41:20:5f:64:a0:ca:82:46:c4:6c:cd:c0:94:
a5:b3:f7:0b:91:cb:3b:84:45:ab:5a:fb:bb:a4:2f:
66:79:00:f9:5d:73:ac:ec:ba:50:27:9e:70:87:8f:
6c:aa:ee:90:54:16:8e:c6:a2:e5:b0:43:b8:be:eb:
f4:6a:b3:32:2e:e7:5e:af:80:20:f8:54:cf:b4:2e:
24:bf:97:3d:08:57:69:1d:ae:07:a6:ff:01:7c:34:
18:8e:58:5e:25:56:de:61:a5:bf:f4:9e:be:ca:bf:
84:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:79:47:BB:7C:46:C9:06:0F:C8:98:FF:74:81:75:A6:EE:28:09:51
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/znlHu3xGyQYPyJj_dIF1pu4oCVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
0b:ef:29:33:79:e7:e1:b8:89:66:48:0e:82:10:b8:68:41:a1:
2e:21:87:1a:10:a8:6d:8c:d0:46:6e:ad:0e:14:26:56:7b:3b:
4d:75:02:ee:65:ee:e2:c5:cd:3a:41:28:46:67:05:a0:8b:65:
13:6a:b5:3d:91:f5:97:ac:e4:8d:d1:c8:e2:1b:ae:5f:79:2f:
3e:3f:50:b8:4a:91:c5:e2:2f:97:b9:c6:66:f9:c7:e2:e8:21:
92:76:32:df:ac:31:7e:5a:c7:78:92:78:d5:eb:60:c4:be:75:
91:3f:29:07:ef:33:25:a5:d2:2a:22:90:10:94:5d:18:57:ba:
9d:d9:a2:5c:74:92:46:a4:75:7c:64:3e:84:2f:90:21:63:19:
1a:ab:61:76:53:e2:a9:f0:d7:da:b9:e5:9e:f0:68:f7:0f:ab:
e4:35:4d:ae:82:e9:ab:eb:83:68:a2:e9:18:ed:84:0a:65:70:
f7:ed:7d:7a:43:e6:8c:91:78:8a:fd:06:20:3b:46:cb:32:25:
db:b2:ee:93:89:0d:1f:4a:0a:6c:86:e2:30:6a:39:c4:3c:b9:
7f:28:e6:cb:64:2c:58:81:08:52:f5:fd:89:b4:09:64:d0:3c:
fa:98:1a:ed:67:4c:b3:5f:c0:fa:5f:c2:13:01:c1:a6:58:81:
c6:f4:59:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 22:23:56 2025 by rpki-client