Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/174f32-1ad1-44f8-8a7f-5fdb9563113c/1/5ZHicMyiraaTfK4_G8XbaHrwex0.roa
File: 5ZHicMyiraaTfK4_G8XbaHrwex0.roa (raw, json)
Hash identifier: nPIGVs0fxKhtpKEuUiAyYcC29sNPJT9gSEPruXOqnRU=
Subject key identifier: E5:91:E2:70:CC:A2:AD:A6:93:7C:AE:3F:1B:C5:DB:68:7A:F0:7B:1D
Certificate issuer: /CN=e48345aa0cd7026d621c50084f9d9dbb5b9cc2f0
Certificate serial: 019B797F449BA747ED9F2C43E665892DEE9B
Authority key identifier: E4:83:45:AA:0C:D7:02:6D:62:1C:50:08:4F:9D:9D:BB:5B:9C:C2:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5INFqgzXAm1iHFAIT52du1ucwvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/174f32-1ad1-44f8-8a7f-5fdb9563113c/1/5ZHicMyiraaTfK4_G8XbaHrwex0.roa
Signing time: Thu 01 Jan 2026 12:19:02 +0000
ROA not before: Thu 01 Jan 2026 12:19:02 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 212608
IP address blocks: 193.163.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:79:7f:44:9b:a7:47:ed:9f:2c:43:e6:65:89:2d:ee:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e48345aa0cd7026d621c50084f9d9dbb5b9cc2f0
Validity
Not Before: Jan 1 12:19:02 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e591e270cca2ada6937cae3f1bc5db687af07b1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:18:b4:cf:26:02:ba:26:cf:c7:4f:f5:ef:ef:
c9:f2:6d:8e:4d:89:51:8c:4d:2b:23:b4:d3:0f:8a:
d5:00:b8:14:b9:5a:96:17:34:8d:3c:93:05:05:d1:
38:f0:99:6b:96:ba:6d:e4:94:9c:34:8a:21:85:d9:
43:1b:f6:f2:cc:83:bd:c3:fc:60:d7:fb:c4:ec:e7:
0a:ec:cc:07:16:6f:29:c5:df:a9:ef:65:59:97:a4:
16:d6:a9:24:ed:d0:d8:c4:54:41:db:0a:7b:3d:71:
ef:7f:de:b3:3a:4c:5d:7c:27:6b:27:45:1f:3c:59:
c8:e0:d5:9e:10:75:be:06:62:a1:a8:a7:a9:f1:d6:
3e:38:49:fa:6a:55:45:a6:45:cc:e7:d9:6f:df:7a:
23:49:f5:39:fa:65:fb:8a:78:c4:c8:8d:11:9a:51:
17:be:70:a4:ac:e9:68:e5:1f:45:ce:de:01:98:79:
99:06:e6:00:19:a7:31:82:8d:d1:94:be:ea:6f:88:
e5:5c:63:45:c6:66:11:c3:13:9e:1f:2a:35:9e:01:
16:15:41:1d:0f:8d:c3:d4:00:6a:5d:12:6f:46:92:
a9:9b:93:38:7f:02:fa:9a:3c:10:0c:63:23:8c:a5:
ae:59:ec:65:6b:b2:50:4a:e2:2b:c3:e3:bb:cc:d8:
20:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:91:E2:70:CC:A2:AD:A6:93:7C:AE:3F:1B:C5:DB:68:7A:F0:7B:1D
X509v3 Authority Key Identifier:
keyid:E4:83:45:AA:0C:D7:02:6D:62:1C:50:08:4F:9D:9D:BB:5B:9C:C2:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5INFqgzXAm1iHFAIT52du1ucwvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/174f32-1ad1-44f8-8a7f-5fdb9563113c/1/5ZHicMyiraaTfK4_G8XbaHrwex0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/174f32-1ad1-44f8-8a7f-5fdb9563113c/1/5INFqgzXAm1iHFAIT52du1ucwvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.53.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:b5:8e:2e:2b:5a:d2:e2:6c:1b:25:e3:6a:34:d8:ba:2e:74:
d6:40:58:85:6c:d7:6d:3e:bf:ef:6b:70:71:1b:c5:6d:9d:73:
27:27:7b:55:c2:1b:3a:7e:02:54:49:a7:0c:80:6f:16:58:61:
ab:bf:74:52:61:f1:4c:19:ae:68:20:2b:7b:ea:8d:d7:d7:cf:
55:fe:17:c2:d1:b0:22:07:74:c1:42:ab:2d:bb:62:a6:6a:88:
51:f6:03:08:2e:a0:41:00:54:98:82:c9:52:b0:63:40:2a:73:
c7:d5:bd:1a:01:dc:83:72:a0:34:74:08:be:69:c4:72:59:b0:
46:2c:16:ea:ce:f9:71:97:80:af:5e:5f:e4:aa:35:8c:89:43:
4e:cd:5f:24:51:97:59:36:ba:50:00:e1:20:b8:a6:42:21:83:
eb:d2:4a:48:2c:41:26:57:cc:c5:37:e8:a6:6e:e0:c7:94:e6:
7b:ad:ad:c5:be:ea:2b:f9:3a:b4:75:69:2d:97:80:14:fc:29:
b1:a8:31:cf:3e:d7:ee:8f:ec:97:1c:45:43:25:c0:93:e4:27:
18:b7:8d:b1:8b:ee:ca:07:ce:8a:e9:03:bb:b9:db:38:74:68:
39:99:6a:7c:b1:e7:f0:64:4a:9d:b7:95:c2:91:5e:5b:cf:60:
7d:7b:be:55
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZt5f0Sbp0ftnyxD5mWJLe6bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0ODM0NWFhMGNkNzAyNmQ2MjFjNTAwODRmOWQ5ZGJiNWI5
Y2MyZjAwHhcNMjYwMTAxMTIxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNTkxZTI3MGNjYTJhZGE2OTM3Y2FlM2YxYmM1ZGI2ODdhZjA3YjFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoBi0zyYCuibPx0/17+/J8m2OTYlR
jE0rI7TTD4rVALgUuVqWFzSNPJMFBdE48Jlrlrpt5JScNIohhdlDG/byzIO9w/xg
1/vE7OcK7MwHFm8pxd+p72VZl6QW1qkk7dDYxFRB2wp7PXHvf96zOkxdfCdrJ0Uf
PFnI4NWeEHW+BmKhqKep8dY+OEn6alVFpkXM59lv33ojSfU5+mX7injEyI0RmlEX
vnCkrOlo5R9Fzt4BmHmZBuYAGacxgo3RlL7qb4jlXGNFxmYRwxOeHyo1ngEWFUEd
D43D1ABqXRJvRpKpm5M4fwL6mjwQDGMjjKWuWexla7JQSuIrw+O7zNggJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOWR4nDMoq2mk3yuPxvF22h68HsdMB8GA1UdIwQY
MBaAFOSDRaoM1wJtYhxQCE+dnbtbnMLwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUlORnFnelhBbTFpSEZBSVQ1MmR1MXVjd3ZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi8xNzRmMzItMWFkMS00NGY4LThhN2Yt
NWZkYjk1NjMxMTNjLzEvNVpIaWNNeWlyYWFUZks0X0c4WGJhSHJ3ZXgwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi8xNzRmMzItMWFkMS00NGY4LThhN2YtNWZkYjk1NjMxMTNj
LzEvNUlORnFnelhBbTFpSEZBSVQ1MmR1MXVjd3ZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaM1MA0G
CSqGSIb3DQEBCwUAA4IBAQB/tY4uK1rS4mwbJeNqNNi6LnTWQFiFbNdtPr/va3Bx
G8VtnXMnJ3tVwhs6fgJUSacMgG8WWGGrv3RSYfFMGa5oICt76o3X189V/hfC0bAi
B3TBQqstu2KmaohR9gMILqBBAFSYgslSsGNAKnPH1b0aAdyDcqA0dAi+acRyWbBG
LBbqzvlxl4CvXl/kqjWMiUNOzV8kUZdZNrpQAOEguKZCIYPr0kpILEEmV8zFN+im
buDHlOZ7ra3Fvuor+Tq0dWktl4AU/CmxqDHPPtfuj+yXHEVDJcCT5CcYt42xi+7K
B86K6QO7uds4dGg5mWp8sefwZEqdt5XCkV5bz2B9e75V
-----END CERTIFICATE-----
Generated at Mon Mar 2 02:58:43 2026 by rpki-client