Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/5Tx18B9HB4bsQgyn64WD-hsbhAg.roa
File: 5Tx18B9HB4bsQgyn64WD-hsbhAg.roa (raw, json)
Hash identifier: z0wzURUibzhDI4UIHj3lxFoJ0FEqijSSW2XkCJ70vno=
Subject key identifier: E5:3C:75:F0:1F:47:07:86:EC:42:0C:A7:EB:85:83:FA:1B:1B:84:08
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018629364D35E2526BE1773D0DB58FE2F318
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/5Tx18B9HB4bsQgyn64WD-hsbhAg.roa
Signing time: Tue 07 Feb 2023 00:11:09 +0000
ROA not before: Tue 07 Feb 2023 00:11:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:29:36:4d:35:e2:52:6b:e1:77:3d:0d:b5:8f:e2:f3:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 7 00:11:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e53c75f01f470786ec420ca7eb8583fa1b1b8408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:92:6d:84:ec:69:41:b9:fa:23:74:fc:17:ae:
ba:78:3c:e2:e5:90:6c:62:9d:18:ea:c9:d2:6d:ca:
6d:29:f7:fe:ac:fb:46:2c:19:70:03:d4:8f:b1:1d:
79:07:ec:2d:ba:12:2d:9d:8a:04:26:3d:de:9d:73:
f7:31:6e:1a:43:19:d6:38:55:7f:e3:af:98:2f:5a:
99:53:47:ec:7d:0a:41:56:3e:be:cd:03:51:25:6c:
29:0f:ae:72:ab:c6:02:cf:2b:5a:88:06:4d:81:65:
ea:bc:c4:c4:df:22:fe:75:e6:28:21:56:4c:f7:cf:
06:6c:d5:b1:be:53:12:12:18:7a:63:1a:4e:79:d4:
fe:77:7b:7d:20:73:0e:ec:cf:ef:05:b5:8a:d2:15:
66:e2:5c:37:cc:0d:4d:19:70:5d:7a:ed:f3:ea:81:
e1:26:d7:24:cf:a3:05:ae:73:36:a2:ef:e5:60:a0:
82:dc:60:c8:54:e7:7c:06:83:0f:92:32:5b:11:eb:
9d:f5:20:93:58:77:6d:7e:8a:8e:48:ba:4f:0c:40:
38:63:23:62:07:7a:7d:d0:1a:52:29:fa:83:82:7e:
78:7d:ff:a1:57:7f:aa:11:28:ee:be:1b:3b:fe:98:
b1:22:48:64:d3:df:0e:30:3a:fa:7a:f8:78:ae:0a:
c6:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:3C:75:F0:1F:47:07:86:EC:42:0C:A7:EB:85:83:FA:1B:1B:84:08
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/5Tx18B9HB4bsQgyn64WD-hsbhAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
b0:bd:7e:f6:f5:64:76:ca:ee:24:f6:ba:fc:85:3c:c6:91:b6:
ba:dc:4c:b2:94:67:b0:1b:26:92:37:95:61:a6:7b:a5:44:56:
7e:1a:fb:27:20:67:3d:cf:9f:17:40:5d:dc:25:0d:84:18:ea:
f2:64:73:54:f6:79:11:de:96:95:47:8e:94:e8:18:d9:e7:56:
2b:ed:d8:42:37:16:5a:d3:b1:5a:88:6e:42:12:b3:eb:2d:de:
1b:01:7a:4c:89:ba:96:87:c9:b1:96:8f:87:02:e8:74:d3:85:
df:34:f3:7a:0a:68:d8:29:28:7a:23:2f:80:84:10:f6:5c:a9:
80:8f:e4:17:f3:de:7a:0c:ac:cd:9f:74:7c:66:8f:7b:c3:b6:
e3:38:a4:71:c3:4d:62:90:67:3e:b4:cd:16:c4:b3:3f:cf:9c:
08:e5:3c:36:f5:36:38:6a:77:ae:f7:f7:e2:04:0a:c3:60:6d:
41:25:b6:64:e7:e2:07:24:99:02:8d:1a:1c:81:b2:40:24:0f:
3c:aa:3e:4e:81:54:cb:64:a6:cc:13:12:e3:d5:c9:40:6d:7f:
77:22:50:98:5b:62:1c:cf:9a:39:cc:1c:6d:8b:f7:69:1d:e8:
72:92:d9:18:d7:a0:14:60:6a:fa:07:dc:8b:1a:d1:55:00:ea:
cf:37:52:a0
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYYpNk014lJr4Xc9DbWP4vMYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwMjA3MDAxMTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNTNjNzVmMDFmNDcwNzg2ZWM0MjBjYTdlYjg1ODNmYTFiMWI4NDA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj5JthOxpQbn6I3T8F666eDzi5ZBs
Yp0Y6snSbcptKff+rPtGLBlwA9SPsR15B+wtuhItnYoEJj3enXP3MW4aQxnWOFV/
46+YL1qZU0fsfQpBVj6+zQNRJWwpD65yq8YCzytaiAZNgWXqvMTE3yL+deYoIVZM
988GbNWxvlMSEhh6YxpOedT+d3t9IHMO7M/vBbWK0hVm4lw3zA1NGXBdeu3z6oHh
Jtckz6MFrnM2ou/lYKCC3GDIVOd8BoMPkjJbEeud9SCTWHdtfoqOSLpPDEA4YyNi
B3p90BpSKfqDgn54ff+hV3+qESjuvhs7/pixIkhk098OMDr6evh4rgrGvwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFOU8dfAfRweG7EIMp+uFg/obG4QIMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvNVR4MThCOUhCNGJzUWd5bjY0V0QtaHNiaEFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBALC9fvb1ZHbK7iT2uvyF
PMaRtrrcTLKUZ7AbJpI3lWGme6VEVn4a+ycgZz3PnxdAXdwlDYQY6vJkc1T2eRHe
lpVHjpToGNnnVivt2EI3FlrTsVqIbkISs+st3hsBekyJupaHybGWj4cC6HTThd80
83oKaNgpKHojL4CEEPZcqYCP5Bfz3noMrM2fdHxmj3vDtuM4pHHDTWKQZz60zRbE
sz/PnAjlPDb1Njhqd6739+IECsNgbUEltmTn4gckmQKNGhyBskAkDzyqPk6BVMtk
pswTEuPVyUBtf3ciUJhbYhzPmjnMHG2L92kd6HKS2RjXoBRgavoH3Isa0VUA6s83
UqA=
-----END CERTIFICATE-----
Generated at Wed Apr 30 17:36:40 2025 by rpki-client