Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/BrIMrvWvcj8sqhMrzb_1F33W1Qo.roa
File: BrIMrvWvcj8sqhMrzb_1F33W1Qo.roa (raw, json)
Hash identifier: tddxjbKlvqZpCl3qQiL52maYl46vyA2+SFO/TqQaspI=
Subject key identifier: 06:B2:0C:AE:F5:AF:72:3F:2C:AA:13:2B:CD:BF:F5:17:7D:D6:D5:0A
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0187F1D4C410CB28BEA90C355F348868DD6B
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/BrIMrvWvcj8sqhMrzb_1F33W1Qo.roa
Signing time: Sat 06 May 2023 16:11:05 +0000
ROA not before: Sat 06 May 2023 16:11:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:f1:d4:c4:10:cb:28:be:a9:0c:35:5f:34:88:68:dd:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 6 16:11:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06b20caef5af723f2caa132bcdbff5177dd6d50a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:70:91:d0:0e:ce:ec:6f:82:9e:2c:57:ee:3d:
25:06:23:d1:0e:a5:a4:89:f4:4b:e4:9d:45:03:bb:
f6:c6:99:8c:ef:05:34:bf:9e:c3:4e:2e:87:fd:e5:
0d:8f:de:c3:8a:06:65:db:5f:b7:77:1b:07:d5:46:
24:c5:34:57:18:c0:e3:17:59:25:46:4e:29:1b:12:
1c:13:b5:1b:d5:50:08:f3:15:36:b7:e4:f3:8a:0c:
17:c1:8a:f0:09:d5:8f:34:11:92:6f:e4:3b:2a:72:
c6:4e:3c:13:37:63:68:a0:17:91:de:99:76:89:da:
49:b4:f6:2d:4f:fe:2f:3a:99:71:d2:1a:d6:59:20:
0e:db:b6:53:be:3b:18:0b:99:18:0f:93:15:39:4c:
1d:46:63:1d:82:2c:27:99:e3:af:bb:91:6e:82:08:
38:29:b0:b7:80:62:b0:20:81:aa:a7:ef:87:d7:01:
18:9c:c4:a0:72:a6:4b:50:57:a0:0d:22:98:2a:15:
ad:c7:62:4a:a6:18:e8:86:2f:fb:d2:50:b3:e8:ba:
4b:00:01:18:bd:86:7e:4f:0e:87:7a:9f:53:73:e2:
8c:e9:5d:91:0f:22:1c:3d:46:4f:37:3a:37:51:b9:
51:72:18:c4:97:29:86:21:fd:84:7a:c2:c3:78:29:
52:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:B2:0C:AE:F5:AF:72:3F:2C:AA:13:2B:CD:BF:F5:17:7D:D6:D5:0A
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/BrIMrvWvcj8sqhMrzb_1F33W1Qo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
06:6e:ec:cc:7f:d9:90:76:78:a3:d2:95:59:3e:7b:7c:56:08:
12:b7:9f:a0:0e:be:62:e8:95:3d:5f:11:6c:2a:43:02:79:09:
b3:34:65:bc:94:a3:5e:a1:2a:ad:eb:b5:95:c7:58:4a:1f:b8:
82:ae:47:56:04:cf:c2:fa:05:f4:47:71:c1:c4:c2:9d:8a:76:
e9:6c:4c:58:73:19:0a:53:0a:69:91:e1:1f:45:f5:1d:7c:b6:
8c:3c:d8:3c:bb:3e:34:92:4b:11:af:0e:31:4c:4f:29:05:89:
61:91:1a:0b:6e:c6:c8:38:54:64:84:d1:c1:34:39:2f:37:7b:
bf:4e:8b:d1:10:61:fc:2e:5f:cd:bc:67:6a:30:09:fb:d1:2f:
48:d6:a1:fc:20:df:fe:8e:70:03:cc:80:fd:5a:cc:d3:e7:b0:
b1:8c:a3:5b:95:c2:37:7c:1d:c1:9f:77:a5:4d:5f:5d:3c:0b:
38:ba:e6:ad:f1:32:db:b2:1f:48:55:fe:e1:c1:eb:93:54:c2:
11:e2:c9:2f:6d:23:52:5c:25:c3:10:28:60:f6:48:60:82:97:
ad:10:3e:df:a7:03:31:76:5e:d8:68:42:d8:50:ed:e9:ad:2a:
11:d7:af:d1:e1:6d:36:91:b1:f1:1f:fe:a5:25:04:8a:7d:4e:
1c:f4:44:e9
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYfx1MQQyyi+qQw1XzSIaN1rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwNTA2MTYxMTA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNmIyMGNhZWY1YWY3MjNmMmNhYTEzMmJjZGJmZjUxNzdkZDZkNTBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhHCR0A7O7G+CnixX7j0lBiPRDqWk
ifRL5J1FA7v2xpmM7wU0v57DTi6H/eUNj97DigZl21+3dxsH1UYkxTRXGMDjF1kl
Rk4pGxIcE7Ub1VAI8xU2t+TzigwXwYrwCdWPNBGSb+Q7KnLGTjwTN2NooBeR3pl2
idpJtPYtT/4vOplx0hrWWSAO27ZTvjsYC5kYD5MVOUwdRmMdgiwnmeOvu5Fuggg4
KbC3gGKwIIGqp++H1wEYnMSgcqZLUFegDSKYKhWtx2JKphjohi/70lCz6LpLAAEY
vYZ+Tw6Hep9Tc+KM6V2RDyIcPUZPNzo3UblRchjElymGIf2EesLDeClS6QIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFAayDK71r3I/LKoTK82/9Rd91tUKMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvQnJJTXJ2V3ZjajhzcWhNcnpiXzFGMzNXMVFvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAAZu7Mx/2ZB2eKPSlVk+
e3xWCBK3n6AOvmLolT1fEWwqQwJ5CbM0ZbyUo16hKq3rtZXHWEofuIKuR1YEz8L6
BfRHccHEwp2KdulsTFhzGQpTCmmR4R9F9R18tow82Dy7PjSSSxGvDjFMTykFiWGR
Ggtuxsg4VGSE0cE0OS83e79Oi9EQYfwuX828Z2owCfvRL0jWofwg3/6OcAPMgP1a
zNPnsLGMo1uVwjd8HcGfd6VNX108Czi65q3xMtuyH0hV/uHB65NUwhHiyS9tI1Jc
JcMQKGD2SGCCl60QPt+nAzF2XthoQthQ7emtKhHXr9HhbTaRsfEf/qUlBIp9Thz0
ROk=
-----END CERTIFICATE-----
Generated at Thu May 1 09:22:51 2025 by rpki-client