Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/AOHLR-Q8sWz7d4ARSkv66590gno.roa
File: AOHLR-Q8sWz7d4ARSkv66590gno.roa (raw, json)
Hash identifier: UKmjanJHQE8aMtY3byvdGOryBMGEDsHY+yYzfRlN5gk=
Subject key identifier: 00:E1:CB:47:E4:3C:B1:6C:FB:77:80:11:4A:4B:FA:EB:9F:74:82:7A
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 87247B44
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/AOHLR-Q8sWz7d4ARSkv66590gno.roa
Signing time: Wed 25 May 2022 19:09:13 +0000
ROA not before: Wed 25 May 2022 19:09:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2267315012 (0x87247b44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 25 19:09:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00e1cb47e43cb16cfb7780114a4bfaeb9f74827a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:78:65:a3:02:ec:36:d8:ea:3f:2f:69:70:c4:
07:12:75:a4:49:89:3a:98:00:6a:0f:3e:86:67:3c:
59:e5:5c:37:ab:fc:ce:53:28:ae:a6:2c:34:f9:f8:
c7:61:c0:95:fe:32:7a:e1:8e:bc:02:72:95:e1:71:
a3:b8:02:92:45:e4:ad:90:b7:b1:a5:3f:2b:b2:c8:
89:3c:b0:ae:89:1b:db:f1:45:62:81:f2:49:11:4b:
64:e5:d0:07:d3:a1:5f:f3:f9:33:36:79:01:2a:7d:
ae:9f:9a:c5:2d:1e:5d:a6:dd:f9:56:63:d1:7d:27:
ca:da:02:3d:52:93:2a:8b:57:a0:27:a9:63:ff:04:
9c:71:0e:79:a1:14:e2:ef:82:78:d4:aa:8a:df:99:
40:ca:9e:5d:7a:72:dd:6d:5d:fd:2d:f8:f1:a7:a8:
4a:73:59:9c:c2:62:40:7b:48:f3:ba:97:5c:fd:c9:
17:93:eb:79:dc:67:04:e2:b3:ce:07:e8:de:e8:b8:
65:c6:cd:b5:ec:ff:35:d2:b7:08:c0:5c:64:65:74:
b2:6d:5f:5b:c1:4e:4c:10:34:25:7f:35:f9:d5:b9:
31:58:41:1e:8b:a3:4f:be:cf:6c:9c:98:6c:dc:92:
c9:51:c1:b8:ba:c4:ae:23:a6:a2:34:54:a5:9b:e9:
9b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E1:CB:47:E4:3C:B1:6C:FB:77:80:11:4A:4B:FA:EB:9F:74:82:7A
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/AOHLR-Q8sWz7d4ARSkv66590gno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
2e:c4:fd:0b:b6:49:de:b0:f4:0c:59:d6:0e:b0:66:42:f2:b1:
79:28:3c:c9:5b:4a:17:ce:f0:ed:e0:bd:9d:13:9d:a5:db:27:
4e:f7:ec:d3:53:e5:ac:2f:7d:3f:f9:40:8f:c0:bc:19:03:f1:
e8:f5:35:16:91:18:a1:4f:50:6a:e2:be:11:16:48:ac:da:1e:
31:40:ce:db:2c:ad:3b:54:75:3e:96:22:05:2b:9d:fc:dd:dd:
40:5d:98:98:5e:d1:b0:82:a1:46:63:71:5b:b3:c4:83:21:b0:
dd:18:79:1d:7f:32:18:b3:74:68:61:cd:68:7d:d1:a8:7a:6b:
2f:ef:2c:0d:45:e0:52:20:e2:d7:39:f5:6c:1c:fc:43:ed:16:
28:a4:ca:29:58:b4:5e:6f:e1:ed:a0:d6:ff:c5:fa:36:8c:db:
67:74:d7:5d:ac:96:9f:2c:2f:d7:c7:de:97:b7:45:d5:cb:9d:
d7:17:b4:c0:54:54:4f:c7:44:43:75:e3:75:07:80:e7:60:89:
5f:5a:84:3b:d0:0f:15:6a:23:06:00:8d:7c:f4:e1:69:72:93:
4d:d0:59:2d:62:4b:10:0d:ad:e5:0f:f8:e4:d3:7f:ae:c1:79:
46:78:88:a9:07:dd:f9:ec:62:70:af:22:8c:27:ed:59:1e:89:
f8:39:c9:31
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgIFAIcke0QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMo
NzIwNDdiZTE1YjI3NTkwMmRjZjYxN2RjM2QwZTE2ZGMxZjMwODAyMjAeFw0yMjA1
MjUxOTA5MTNaFw0yMzA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDAwZTFjYjQ3ZTQz
Y2IxNmNmYjc3ODAxMTRhNGJmYWViOWY3NDgyN2EwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCReGWjAuw22Oo/L2lwxAcSdaRJiTqYAGoPPoZnPFnlXDer
/M5TKK6mLDT5+MdhwJX+MnrhjrwCcpXhcaO4ApJF5K2Qt7GlPyuyyIk8sK6JG9vx
RWKB8kkRS2Tl0AfToV/z+TM2eQEqfa6fmsUtHl2m3flWY9F9J8raAj1SkyqLV6An
qWP/BJxxDnmhFOLvgnjUqorfmUDKnl16ct1tXf0t+PGnqEpzWZzCYkB7SPO6l1z9
yReT63ncZwTis84H6N7ouGXGzbXs/zXStwjAXGRldLJtX1vBTkwQNCV/NfnVuTFY
QR6Lo0++z2ycmGzckslRwbi6xK4jpqI0VKWb6Zv7AgMBAAGjggIaMIICFjAdBgNV
HQ4EFgQUAOHLR+Q8sWz7d4ARSkv66590gnowHwYDVR0jBBgwFoAUcgR74VsnWQLc
9hfcPQ4W3B8wgCIwDgYDVR0PAQH/BAQDAgeAMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVM
VC9jZ1I3NFZzbldRTGM5aGZjUFE0VzNCOHdnQ0kuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzVlLzc5ODQ0Ny0yMWY0LTQ1YWItOTlkYy0xYWJlM2FjMTBhYTYv
MS9BT0hMUi1ROHNXejdkNEFSU2t2NjY1OTBnbm8ucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzVl
Lzc5ODQ0Ny0yMWY0LTQ1YWItOTlkYy0xYWJlM2FjMTBhYTYvMS9jZ1I3NFZzbldR
TGM5aGZjUFE0VzNCOHdnQ0kuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
MAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYDBAPBABgwDwQCAAIwCQMHACABBnwA
ZDANBgkqhkiG9w0BAQsFAAOCAQEALsT9C7ZJ3rD0DFnWDrBmQvKxeSg8yVtKF87w
7eC9nROdpdsnTvfs01PlrC99P/lAj8C8GQPx6PU1FpEYoU9QauK+ERZIrNoeMUDO
2yytO1R1PpYiBSud/N3dQF2YmF7RsIKhRmNxW7PEgyGw3Rh5HX8yGLN0aGHNaH3R
qHprL+8sDUXgUiDi1zn1bBz8Q+0WKKTKKVi0Xm/h7aDW/8X6NozbZ3TXXayWnywv
18fel7dF1cud1xe0wFRUT8dEQ3XjdQeA52CJX1qEO9APFWojBgCNfPThaXKTTdBZ
LWJLEA2t5Q/45NN/rsF5RniIqQfd+exicK8ijCftWR6J+DnJMQ==
-----END CERTIFICATE-----
Generated at Fri May 2 05:57:42 2025 by rpki-client