Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/7E5gtIbWZd_mRFN_qWnfN8dyNds.roa
File: 7E5gtIbWZd_mRFN_qWnfN8dyNds.roa (raw, json)
Hash identifier: NiIr20Ed32k4hAiYdJCb9ztSK1Vl3IIBoi2+iHPcxYw=
Subject key identifier: EC:4E:60:B4:86:D6:65:DF:E6:44:53:7F:A9:69:DF:37:C7:72:35:DB
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018780F65B86C25264A1DF25A50D0B51BC34
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/7E5gtIbWZd_mRFN_qWnfN8dyNds.roa
Signing time: Fri 14 Apr 2023 18:10:41 +0000
ROA not before: Fri 14 Apr 2023 18:10:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:80:f6:5b:86:c2:52:64:a1:df:25:a5:0d:0b:51:bc:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 14 18:10:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec4e60b486d665dfe644537fa969df37c77235db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:35:d3:34:c6:f2:83:72:a5:d8:35:06:19:58:
e3:7a:d9:fc:f7:f9:19:e5:96:e6:d0:08:50:a8:79:
bd:74:f8:96:86:ab:d0:9e:a3:10:cf:9a:0f:85:85:
91:af:10:a0:c1:5c:80:7c:7e:02:1a:1b:14:2e:9f:
d4:bd:a1:eb:f1:91:0f:32:c0:45:d2:b4:3f:94:7e:
bb:9f:a4:bd:fb:fd:f3:1c:58:40:ac:1a:bc:39:52:
4f:71:40:6f:d3:ae:f9:b4:03:e4:57:7e:23:64:cd:
5c:66:fe:b0:0b:eb:e4:9f:f2:a1:97:95:bf:66:2d:
1f:90:6f:19:df:8d:70:8f:58:8e:00:eb:4a:f0:0a:
c3:92:b9:cf:39:d0:96:67:bb:f0:f9:f4:11:f5:51:
01:bf:07:3d:6f:92:02:06:e6:ec:dd:aa:aa:06:27:
22:25:63:ab:13:a2:3d:b2:b2:4e:f9:53:f1:06:57:
b7:ea:af:44:34:15:55:56:ef:00:ce:26:77:45:be:
11:3f:37:0d:87:c3:2a:4c:4e:77:3b:d3:83:26:f5:
14:6e:99:92:d4:f4:03:ce:4a:a4:d1:a9:28:44:df:
8b:e7:92:26:0a:14:ff:a9:5e:ef:10:46:b1:48:97:
5f:a0:62:16:16:ee:9a:ec:5e:97:b2:b5:0f:32:2b:
48:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:4E:60:B4:86:D6:65:DF:E6:44:53:7F:A9:69:DF:37:C7:72:35:DB
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/7E5gtIbWZd_mRFN_qWnfN8dyNds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a9:b1:a0:04:c9:41:0d:16:c7:b9:06:46:b1:05:a6:b4:fc:43:
a4:57:9c:a1:62:e3:dc:33:55:91:c1:25:40:70:06:d0:e0:6b:
89:70:6f:62:48:21:24:f7:c4:4a:ec:3e:f1:96:5a:eb:34:88:
62:ca:3a:77:0a:4b:5e:0e:1a:da:92:ae:46:51:ce:a2:1a:9d:
87:18:a2:17:39:bc:40:76:0d:6e:90:40:8e:83:75:d3:1b:c5:
48:ae:e9:3c:3b:8d:79:e2:d7:2f:36:6a:87:7a:a4:d0:48:77:
03:21:62:fd:05:c1:e8:b6:ab:ef:b6:fb:9f:62:9b:c6:0f:81:
86:55:5e:9e:0e:eb:c3:a6:8e:35:e7:5b:52:c5:b3:d1:28:2c:
4c:c8:f0:f3:6b:8e:50:94:7a:40:a8:0d:77:c0:6d:6d:e3:cd:
31:47:df:b1:c2:c7:29:de:4d:05:19:67:a2:f6:9e:0e:58:94:
55:55:4c:ac:46:eb:57:c2:d9:89:97:db:99:74:d2:24:fc:a0:
73:ff:0f:3c:a6:01:0f:8b:80:0b:04:dd:e4:6a:ae:74:12:cd:
44:04:64:b4:71:ea:6b:50:8e:09:ca:45:fc:cb:ed:62:b3:e9:
7e:63:8c:21:8e:45:d9:c1:60:fd:77:8e:2b:db:ed:82:8b:45:
7a:b4:14:34
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYeA9luGwlJkod8lpQ0LUbw0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwNDE0MTgxMDQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYzRlNjBiNDg2ZDY2NWRmZTY0NDUzN2ZhOTY5ZGYzN2M3NzIzNWRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwzXTNMbyg3Kl2DUGGVjjetn89/kZ
5Zbm0AhQqHm9dPiWhqvQnqMQz5oPhYWRrxCgwVyAfH4CGhsULp/UvaHr8ZEPMsBF
0rQ/lH67n6S9+/3zHFhArBq8OVJPcUBv0675tAPkV34jZM1cZv6wC+vkn/Khl5W/
Zi0fkG8Z341wj1iOAOtK8ArDkrnPOdCWZ7vw+fQR9VEBvwc9b5ICBubs3aqqBici
JWOrE6I9srJO+VPxBle36q9ENBVVVu8AziZ3Rb4RPzcNh8MqTE53O9ODJvUUbpmS
1PQDzkqk0akoRN+L55ImChT/qV7vEEaxSJdfoGIWFu6a7F6XsrUPMitIHwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFOxOYLSG1mXf5kRTf6lp3zfHcjXbMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvN0U1Z3RJYldaZF9tUkZOX3FXbmZOOGR5TmRzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAKmxoATJQQ0Wx7kGRrEF
prT8Q6RXnKFi49wzVZHBJUBwBtDga4lwb2JIIST3xErsPvGWWus0iGLKOncKS14O
GtqSrkZRzqIanYcYohc5vEB2DW6QQI6DddMbxUiu6Tw7jXni1y82aod6pNBIdwMh
Yv0Fwei2q++2+59im8YPgYZVXp4O68OmjjXnW1LFs9EoLEzI8PNrjlCUekCoDXfA
bW3jzTFH37HCxyneTQUZZ6L2ng5YlFVVTKxG61fC2YmX25l00iT8oHP/DzymAQ+L
gAsE3eRqrnQSzUQEZLRx6mtQjgnKRfzL7WKz6X5jjCGORdnBYP13jivb7YKLRXq0
FDQ=
-----END CERTIFICATE-----
Generated at Wed Apr 30 21:29:55 2025 by rpki-client