Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/4zn2qBUbmMLW_vH-6_dBWBa3gWY.roa
File: 4zn2qBUbmMLW_vH-6_dBWBa3gWY.roa (raw, json)
Hash identifier: H75KEMqgSbbzpRnhfqxLgfMbv1Ugf6OYyMIR4we/4AE=
Subject key identifier: E3:39:F6:A8:15:1B:98:C2:D6:FE:F1:FE:EB:F7:41:58:16:B7:81:66
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0188405C36906DD8B74AC9125DB247C4675B
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/4zn2qBUbmMLW_vH-6_dBWBa3gWY.roa
Signing time: Sun 21 May 2023 22:09:25 +0000
ROA not before: Sun 21 May 2023 22:09:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:40:5c:36:90:6d:d8:b7:4a:c9:12:5d:b2:47:c4:67:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 21 22:09:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e339f6a8151b98c2d6fef1feebf7415816b78166
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:67:78:c8:6c:14:35:a5:de:00:9a:0f:e5:0f:
f2:b6:d1:e2:ec:a8:77:36:fb:3c:9b:14:e7:de:37:
6a:8a:8a:0e:52:28:55:fd:10:5d:c0:7f:45:7e:f4:
66:3a:3a:2e:39:12:75:42:19:8d:e5:69:df:65:13:
a2:b3:81:50:ec:8e:f7:e6:5b:21:61:b1:e3:29:28:
12:4c:c0:ea:e9:a9:83:65:92:0e:f3:96:a8:46:ef:
06:0f:45:cf:5d:a6:52:0b:2f:ed:86:ef:9e:a1:b1:
64:38:0b:9e:8b:f6:49:9c:33:5f:f6:98:d2:e4:bb:
ec:0f:2e:83:15:51:03:f1:12:d6:99:1a:7d:fd:c1:
16:15:cd:99:a4:12:ed:97:de:3f:20:e9:47:f5:07:
96:9e:24:76:97:2c:6e:df:57:1b:07:58:59:cf:36:
de:7b:24:38:8e:41:a3:ea:62:fe:d8:18:0b:64:6d:
16:d7:21:f3:ef:62:24:82:e4:26:f6:91:74:ce:34:
9e:a7:7d:eb:2f:87:be:1c:3a:0a:15:09:94:32:fe:
2b:51:66:0f:a7:51:5a:c6:70:c9:52:3a:4b:08:dc:
d0:ec:90:fb:26:64:9d:2c:ad:4a:61:18:9e:16:30:
62:74:c2:27:46:72:d1:99:e3:0c:ce:de:94:10:08:
11:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:39:F6:A8:15:1B:98:C2:D6:FE:F1:FE:EB:F7:41:58:16:B7:81:66
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/4zn2qBUbmMLW_vH-6_dBWBa3gWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
b4:ff:ea:85:95:39:49:8c:39:15:65:95:b5:39:22:cc:1a:ba:
36:d2:b6:f3:3e:a7:6f:e7:16:3c:3c:40:b3:ed:96:f0:bd:5a:
0d:04:ee:d6:7c:59:52:26:d8:97:18:b8:6a:01:22:02:57:47:
72:64:20:ee:f3:5a:72:77:88:e1:5d:4d:10:50:a0:d7:21:6e:
72:a2:8c:08:c8:36:1c:91:54:95:44:2b:9b:6f:55:f7:ea:8e:
8f:f7:d0:45:ed:f4:7b:06:ce:86:8d:80:d5:75:ea:fb:93:17:
da:49:99:b6:72:0d:15:dd:ef:ae:ee:da:23:13:71:2f:3c:f1:
22:c3:dc:b3:41:e2:23:f4:e7:b3:18:67:0c:bf:1e:36:47:47:
52:08:59:e0:a4:f1:4f:90:74:67:0d:e7:a5:a4:9a:d0:8d:bd:
63:7b:48:22:87:6d:4a:b0:af:9e:70:e0:3a:b1:84:fd:6c:b3:
c6:e2:02:78:18:16:c4:99:12:fc:48:05:54:0f:a7:37:6d:40:
d5:a9:3e:58:e5:41:fd:af:05:d4:89:d5:29:a1:ee:05:45:ef:
45:6a:f1:86:9f:38:c2:4c:94:b9:19:1c:0a:8a:f5:09:55:98:
bd:af:0a:2b:8e:1c:51:fa:80:51:56:51:f5:17:47:80:eb:ee:
1e:6b:81:fd
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYhAXDaQbdi3SskSXbJHxGdbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwNTIxMjIwOTI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzM5ZjZhODE1MWI5OGMyZDZmZWYxZmVlYmY3NDE1ODE2Yjc4MTY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Gd4yGwUNaXeAJoP5Q/yttHi7Kh3
Nvs8mxTn3jdqiooOUihV/RBdwH9FfvRmOjouORJ1QhmN5WnfZROis4FQ7I735lsh
YbHjKSgSTMDq6amDZZIO85aoRu8GD0XPXaZSCy/thu+eobFkOAuei/ZJnDNf9pjS
5LvsDy6DFVED8RLWmRp9/cEWFc2ZpBLtl94/IOlH9QeWniR2lyxu31cbB1hZzzbe
eyQ4jkGj6mL+2BgLZG0W1yHz72IkguQm9pF0zjSep33rL4e+HDoKFQmUMv4rUWYP
p1FaxnDJUjpLCNzQ7JD7JmSdLK1KYRieFjBidMInRnLRmeMMzt6UEAgRJQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFOM59qgVG5jC1v7x/uv3QVgWt4FmMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvNHpuMnFCVWJtTUxXX3ZILTZfZEJXQmEzZ1dZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBALT/6oWVOUmMORVllbU5
IswaujbStvM+p2/nFjw8QLPtlvC9Wg0E7tZ8WVIm2JcYuGoBIgJXR3JkIO7zWnJ3
iOFdTRBQoNchbnKijAjINhyRVJVEK5tvVffqjo/30EXt9HsGzoaNgNV16vuTF9pJ
mbZyDRXd767u2iMTcS888SLD3LNB4iP057MYZwy/HjZHR1IIWeCk8U+QdGcN56Wk
mtCNvWN7SCKHbUqwr55w4DqxhP1ss8biAngYFsSZEvxIBVQPpzdtQNWpPljlQf2v
BdSJ1Smh7gVF70Vq8YafOMJMlLkZHAqK9QlVmL2vCiuOHFH6gFFWUfUXR4Dr7h5r
gf0=
-----END CERTIFICATE-----
Generated at Fri May 2 10:50:47 2025 by rpki-client