Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/0c92pyAfdJATEgJSZzEBbqjfSdE.roa
File: 0c92pyAfdJATEgJSZzEBbqjfSdE.roa (raw, json)
Hash identifier: ZPTSBLx1nT4blmJ9rLybTbWnZ53tV1vx0CgDlbFZ5I8=
Subject key identifier: D1:CF:76:A7:20:1F:74:90:13:12:02:52:67:31:01:6E:A8:DF:49:D1
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018A3350A4114BCA5D2F9ABA31FDA67C3EA5
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/0c92pyAfdJATEgJSZzEBbqjfSdE.roa
Signing time: Sat 26 Aug 2023 19:27:17 +0000
ROA not before: Sat 26 Aug 2023 19:27:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:33:50:a4:11:4b:ca:5d:2f:9a:ba:31:fd:a6:7c:3e:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 26 19:27:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1cf76a7201f7490131202526731016ea8df49d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a2:77:0e:a2:54:93:8a:0e:e3:ab:67:31:a4:
a3:04:12:d1:56:a2:23:cf:05:ce:a7:af:4d:89:5b:
d0:14:2b:95:d8:d1:06:0b:0e:9f:2b:a0:86:5e:9d:
d4:ce:5a:00:82:19:58:74:f6:3c:8f:80:9d:4a:da:
be:a8:14:7d:60:65:8f:f9:9c:14:8a:fd:da:24:b6:
0b:73:76:16:63:43:0b:ad:28:0f:1a:3d:32:ba:53:
af:50:da:c4:54:cb:5b:09:58:af:18:13:7a:9b:35:
ec:f0:ec:db:39:76:20:00:18:6a:40:cc:c2:d9:35:
4d:0f:e1:14:28:c2:4d:c9:9a:9d:76:c0:3f:f6:7d:
4d:9d:83:d0:fc:10:8a:51:e0:96:46:58:51:70:4e:
d0:80:38:fd:0f:27:47:b4:8c:11:44:4e:d4:98:87:
c6:93:1a:13:36:9c:bd:9a:25:af:ae:69:17:56:92:
1f:c4:97:c1:41:1b:6f:b3:40:3a:4a:00:0f:82:a5:
70:96:4c:1b:29:82:5e:8c:8a:9d:a2:9e:15:58:a3:
01:cd:eb:48:4e:d8:82:03:1d:e3:af:5f:1b:39:b7:
e6:a2:7b:ef:9b:6c:0b:5d:10:54:e7:63:8e:78:2c:
b2:13:f7:73:fa:13:b0:54:1c:6b:04:c0:aa:e3:a2:
0a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:CF:76:A7:20:1F:74:90:13:12:02:52:67:31:01:6E:A8:DF:49:D1
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/0c92pyAfdJATEgJSZzEBbqjfSdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
59:19:88:a1:99:68:dc:90:52:ec:ec:58:ef:56:2c:29:c4:b2:
43:b0:96:89:0f:88:b1:32:04:e3:26:57:8c:9d:bb:40:59:b3:
ae:04:5d:3e:a9:47:b6:a3:85:a3:50:51:02:ef:75:34:de:b5:
07:1d:cc:77:ff:20:0f:52:ea:74:fd:5f:8c:fe:fa:e6:9d:ae:
2a:ae:dd:ef:42:6d:fe:51:44:3a:20:53:9a:47:ba:2e:41:db:
27:23:7e:f7:ae:af:98:19:79:5f:f5:7b:e0:9a:61:4d:2e:2e:
4a:29:5c:b6:3b:bc:3e:11:f1:ea:c0:20:42:29:31:1b:df:b6:
d9:07:5e:b6:f9:68:0d:14:5e:56:77:10:28:77:b5:df:bf:f9:
05:22:09:1b:8d:53:bb:1d:a8:fe:0c:8c:4a:d4:b3:fc:ec:a5:
fb:81:ba:6f:e8:67:e6:ee:95:ae:94:69:ee:f9:2c:d4:26:96:
1e:a4:b0:4a:c9:30:c4:2e:bb:e7:f7:2a:50:27:c9:f7:27:01:
8d:3c:e8:db:01:58:f6:50:f7:06:60:77:fc:9d:ad:48:37:e7:
d9:fe:85:94:b6:e9:04:32:67:ec:21:b6:98:6d:7c:b5:07:e7:
2e:50:95:86:97:d2:57:fa:92:12:a0:6e:e1:a0:2a:d9:8e:ab:
cc:cd:be:2b
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYozUKQRS8pdL5q6Mf2mfD6lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwODI2MTkyNzE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMWNmNzZhNzIwMWY3NDkwMTMxMjAyNTI2NzMxMDE2ZWE4ZGY0OWQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoaJ3DqJUk4oO46tnMaSjBBLRVqIj
zwXOp69NiVvQFCuV2NEGCw6fK6CGXp3UzloAghlYdPY8j4CdStq+qBR9YGWP+ZwU
iv3aJLYLc3YWY0MLrSgPGj0yulOvUNrEVMtbCVivGBN6mzXs8OzbOXYgABhqQMzC
2TVND+EUKMJNyZqddsA/9n1NnYPQ/BCKUeCWRlhRcE7QgDj9DydHtIwRRE7UmIfG
kxoTNpy9miWvrmkXVpIfxJfBQRtvs0A6SgAPgqVwlkwbKYJejIqdop4VWKMBzetI
TtiCAx3jr18bObfmonvvm2wLXRBU52OOeCyyE/dz+hOwVBxrBMCq46IKiwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFNHPdqcgH3SQExICUmcxAW6o30nRMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvMGM5MnB5QWZkSkFURWdKU1p6RUJicWpmU2RFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAFkZiKGZaNyQUuzsWO9W
LCnEskOwlokPiLEyBOMmV4ydu0BZs64EXT6pR7ajhaNQUQLvdTTetQcdzHf/IA9S
6nT9X4z++uadriqu3e9Cbf5RRDogU5pHui5B2ycjfveur5gZeV/1e+CaYU0uLkop
XLY7vD4R8erAIEIpMRvfttkHXrb5aA0UXlZ3ECh3td+/+QUiCRuNU7sdqP4MjErU
s/zspfuBum/oZ+bula6Uae75LNQmlh6ksErJMMQuu+f3KlAnyfcnAY086NsBWPZQ
9wZgd/ydrUg359n+hZS26QQyZ+whtphtfLUH5y5QlYaX0lf6khKgbuGgKtmOq8zN
vis=
-----END CERTIFICATE-----
Generated at Wed Apr 30 21:56:32 2025 by rpki-client