Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/8sIw71dS0x_AQR4m5Pc5qPTTdto.roa
File: 8sIw71dS0x_AQR4m5Pc5qPTTdto.roa (raw, json)
Hash identifier: wMHmM4KM/Rd+rzIc5HT5jVmkGKThMbHXx4FD+v1wnDM=
Subject key identifier: F2:C2:30:EF:57:52:D3:1F:C0:41:1E:26:E4:F7:39:A8:F4:D3:76:DA
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01889EFD04EC45D04C5B8F70D3B40A6C0E78
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/8sIw71dS0x_AQR4m5Pc5qPTTdto.roa
Signing time: Fri 09 Jun 2023 07:09:22 +0000
ROA not before: Fri 09 Jun 2023 07:09:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9e:fd:04:ec:45:d0:4c:5b:8f:70:d3:b4:0a:6c:0e:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jun 9 07:09:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2c230ef5752d31fc0411e26e4f739a8f4d376da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a8:ab:21:07:7d:a3:82:73:c4:ed:8d:3c:2a:
96:96:20:5d:b3:fa:b9:cb:4f:6c:45:75:f3:67:4b:
86:3a:e2:f2:82:ea:18:1e:ab:92:0a:1f:d4:d0:4c:
df:1e:e7:ca:5c:6a:92:93:39:6f:4f:63:ce:a9:56:
a0:0c:eb:5f:2d:f1:e7:5c:b9:df:58:d4:1d:da:55:
c5:15:da:00:4a:6c:00:15:e9:e1:dd:ab:82:1d:14:
d4:b1:8b:bf:90:28:3d:be:19:38:b4:19:39:1a:1f:
72:fd:74:6b:2c:3a:cf:71:82:3c:22:63:07:2a:be:
40:14:c5:02:f7:75:fe:e7:a7:cc:05:f5:5f:50:54:
32:a1:61:61:4a:d2:0d:44:18:e9:10:6c:9a:e9:e3:
6d:bb:5b:cd:af:99:6d:44:23:e0:63:42:b0:17:46:
2e:27:ee:69:65:6b:15:21:18:2f:e5:1b:12:8c:31:
fd:f9:12:90:ad:8b:61:b0:d0:19:70:66:a0:b8:2f:
27:19:cd:92:90:f0:b8:c9:d6:98:49:da:32:bd:fd:
bf:f6:5a:f5:fa:b2:ed:55:9d:68:e9:1f:9e:52:ec:
95:d2:ca:2c:0d:bc:e8:8f:d2:d4:2e:0f:20:81:01:
45:46:52:74:5b:b3:40:ff:65:b0:a5:cc:11:46:f5:
c8:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:C2:30:EF:57:52:D3:1F:C0:41:1E:26:E4:F7:39:A8:F4:D3:76:DA
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/8sIw71dS0x_AQR4m5Pc5qPTTdto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
b2:7e:87:45:1b:36:d3:a9:6e:24:5b:10:65:dd:70:e2:96:b2:
30:9e:4d:50:fc:08:f7:d0:5a:b6:e4:33:e7:6d:e5:05:f5:42:
82:e5:25:6a:b4:e7:19:ef:61:b7:ac:ac:30:e0:57:cb:62:87:
34:87:12:d8:bf:07:68:67:8b:5e:73:a1:2f:07:82:ef:ce:74:
2b:35:a5:69:69:b7:d9:35:e9:07:80:a4:ab:99:26:b7:92:20:
0c:f8:74:6f:92:7d:a8:fc:75:82:1d:0e:8b:ae:47:87:c1:5a:
ad:68:99:7e:3e:a2:ab:10:24:d1:4a:98:0f:56:d2:7e:88:83:
4c:9e:49:d7:36:bc:a1:ed:c7:3b:fc:ba:24:0a:13:ae:81:b4:
b3:d3:00:79:cf:8f:76:ae:0e:51:9f:07:63:b5:35:5d:b1:4d:
7d:6d:a4:7e:05:c5:27:7f:5b:f8:74:68:d1:1f:6d:08:87:0b:
47:96:f1:9b:a3:22:6a:35:bf:39:b8:b8:6e:df:aa:79:64:21:
98:e0:cd:0b:dd:a1:d7:79:71:68:bb:19:69:24:b9:a9:87:ed:
5b:3e:8e:87:dd:af:b0:5f:b2:fd:9b:1d:53:ef:e6:ab:29:a0:
8e:07:74:73:f6:45:a1:52:b9:35:13:6b:f0:cd:e6:ba:4f:1d:
af:f4:ff:46
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYie/QTsRdBMW49w07QKbA54MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwNjA5MDcwOTIyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMmMyMzBlZjU3NTJkMzFmYzA0MTFlMjZlNGY3MzlhOGY0ZDM3NmRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn6irIQd9o4JzxO2NPCqWliBds/q5
y09sRXXzZ0uGOuLyguoYHquSCh/U0EzfHufKXGqSkzlvT2POqVagDOtfLfHnXLnf
WNQd2lXFFdoASmwAFenh3auCHRTUsYu/kCg9vhk4tBk5Gh9y/XRrLDrPcYI8ImMH
Kr5AFMUC93X+56fMBfVfUFQyoWFhStINRBjpEGya6eNtu1vNr5ltRCPgY0KwF0Yu
J+5pZWsVIRgv5RsSjDH9+RKQrYthsNAZcGaguC8nGc2SkPC4ydaYSdoyvf2/9lr1
+rLtVZ1o6R+eUuyV0sosDbzoj9LULg8ggQFFRlJ0W7NA/2WwpcwRRvXIiwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFPLCMO9XUtMfwEEeJuT3Oaj003baMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvOHNJdzcxZFMweF9BUVI0bTVQYzVxUFRUZHRvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBALJ+h0UbNtOpbiRbEGXd
cOKWsjCeTVD8CPfQWrbkM+dt5QX1QoLlJWq05xnvYbesrDDgV8tihzSHEti/B2hn
i15zoS8Hgu/OdCs1pWlpt9k16QeApKuZJreSIAz4dG+Sfaj8dYIdDouuR4fBWq1o
mX4+oqsQJNFKmA9W0n6Ig0yeSdc2vKHtxzv8uiQKE66BtLPTAHnPj3auDlGfB2O1
NV2xTX1tpH4FxSd/W/h0aNEfbQiHC0eW8ZujImo1vzm4uG7fqnlkIZjgzQvdodd5
cWi7GWkkuamH7Vs+jofdr7Bfsv2bHVPv5qspoI4HdHP2RaFSuTUTa/DN5rpPHa/0
/0Y=
-----END CERTIFICATE-----
Generated at Wed Apr 30 17:36:20 2025 by rpki-client