Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Di9gaxXFWc4itwszSMhSxsHVkpM.roa
File: Di9gaxXFWc4itwszSMhSxsHVkpM.roa (raw, json)
Hash identifier: +FKUEDv34vHPw04aI1yjC/a3PafZbOvFCLEkhDBr8Ag=
Subject key identifier: 0E:2F:60:6B:15:C5:59:CE:22:B7:0B:33:48:C8:52:C6:C1:D5:92:93
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 67CDD753
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Di9gaxXFWc4itwszSMhSxsHVkpM.roa
Signing time: Fri 04 Feb 2022 11:15:29 +0000
ROA not before: Fri 04 Feb 2022 11:15:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:17e:a0dd:2f5b/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1741543251 (0x67cdd753)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 4 11:15:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e2f606b15c559ce22b70b3348c852c6c1d59293
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c3:40:30:f2:ce:3b:6f:d8:22:8c:99:0c:57:
2f:a2:69:f3:f2:7b:99:0f:4c:c6:d5:2d:b3:0a:f8:
c8:17:aa:b5:32:22:72:b9:a8:e6:82:50:38:f8:d8:
4e:04:02:a2:46:30:b2:3d:2d:fc:d7:5b:17:88:04:
dd:63:23:68:f4:01:18:93:6a:41:83:ce:a7:46:79:
d6:a1:f1:0f:2e:23:10:1a:ec:08:cd:f3:ce:17:dc:
62:8f:f8:aa:97:85:a5:46:97:39:77:f8:77:03:71:
bf:73:d5:4b:f9:4e:9b:25:3d:7d:0e:48:c9:f3:08:
74:d4:2e:69:56:9e:65:32:e6:6c:05:f2:64:e0:65:
fb:c3:65:ae:f3:ab:a5:a3:b8:78:ac:15:ba:28:15:
70:a2:31:19:de:cd:a5:19:4f:33:74:c3:86:14:9c:
9d:e9:33:67:7c:5b:96:f3:71:f2:72:a1:38:ee:f8:
e5:f5:d0:14:92:5a:dd:bf:ed:a9:78:1e:06:dc:f7:
27:bd:f9:a9:7e:ce:6a:32:72:9a:b8:71:12:af:42:
ff:ee:da:00:6e:65:19:9c:c9:5a:23:0b:7b:3f:d9:
fb:07:9f:d2:c1:b2:b8:d9:d8:18:1b:15:e0:6d:f3:
25:f0:80:5f:a3:82:3a:9c:00:9b:32:33:e4:3a:86:
ae:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:2F:60:6B:15:C5:59:CE:22:B7:0B:33:48:C8:52:C6:C1:D5:92:93
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Di9gaxXFWc4itwszSMhSxsHVkpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
52:02:01:3f:82:43:19:3e:47:13:ab:96:6c:a7:db:0d:f0:73:
71:bd:0d:2f:1d:84:21:a7:6e:33:8e:5c:ba:1c:70:96:d3:0c:
eb:7c:0f:d2:9a:e1:74:02:89:55:c2:b9:5a:77:8b:25:93:79:
05:43:b6:86:3c:bf:b6:e1:8d:ba:22:28:86:dc:1c:f4:8d:43:
3d:7d:17:2c:6d:a5:a5:a5:16:21:a0:b7:ad:99:18:37:de:68:
f9:50:58:5b:d2:9f:12:10:8c:2a:fb:fa:f5:59:40:7a:f3:ea:
42:c8:84:45:82:89:86:18:c4:66:8e:aa:e1:2e:13:31:5c:6b:
e9:b4:5d:65:e9:89:d2:0e:01:e1:bb:e8:05:c3:3a:62:15:d8:
48:42:48:91:0e:2b:72:d6:b3:9d:0a:aa:08:92:02:e9:f6:ab:
49:43:3d:e6:ca:ea:85:64:e9:f0:9a:16:0f:64:fd:94:ea:14:
62:85:eb:58:86:e3:db:21:a0:81:76:37:3c:b0:a7:f4:11:df:
75:f5:6c:97:06:4d:06:2d:25:2a:f8:76:73:b2:1a:45:f7:e4:
ea:1f:86:ea:18:f0:89:06:85:b6:96:6e:18:3d:7a:08:2e:fc:
26:a0:45:ad:d7:4b:b1:15:16:0b:82:d4:79:2a:e0:8d:ce:80:
af:72:31:f4
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEZ83XUzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MjA0N2JlMTViMjc1OTAyZGNmNjE3ZGMzZDBlMTZkYzFmMzA4MDIyMB4XDTIyMDIw
NDExMTUyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGUyZjYwNmIxNWM1
NTljZTIyYjcwYjMzNDhjODUyYzZjMWQ1OTI5MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALDDQDDyzjtv2CKMmQxXL6Jp8/J7mQ9MxtUtswr4yBeqtTIi
crmo5oJQOPjYTgQCokYwsj0t/NdbF4gE3WMjaPQBGJNqQYPOp0Z51qHxDy4jEBrs
CM3zzhfcYo/4qpeFpUaXOXf4dwNxv3PVS/lOmyU9fQ5IyfMIdNQuaVaeZTLmbAXy
ZOBl+8NlrvOrpaO4eKwVuigVcKIxGd7NpRlPM3TDhhScnekzZ3xblvNx8nKhOO74
5fXQFJJa3b/tqXgeBtz3J735qX7OajJymrhxEq9C/+7aAG5lGZzJWiMLez/Z+wef
0sGyuNnYGBsV4G3zJfCAX6OCOpwAmzIz5DqGrhkCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBQOL2BrFcVZziK3CzNIyFLGwdWSkzAfBgNVHSMEGDAWgBRyBHvhWydZAtz2
F9w9DhbcHzCAIjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NnUjc0VnNuV1FMYzloZmNQUTRXM0I4d2dDSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWUvNzk4NDQ3LTIxZjQtNDVhYi05OWRjLTFhYmUzYWMxMGFhNi8x
L0RpOWdheFhGV2M0aXR3c3pTTWhTeHNIVmtwTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWUv
Nzk4NDQ3LTIxZjQtNDVhYi05OWRjLTFhYmUzYWMxMGFhNi8xL2NnUjc0VnNuV1FM
YzloZmNQUTRXM0I4d2dDSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEA8EAGDAPBAIAAjAJAwcAIAEGfABk
MA0GCSqGSIb3DQEBCwUAA4IBAQBSAgE/gkMZPkcTq5Zsp9sN8HNxvQ0vHYQhp24z
jly6HHCW0wzrfA/SmuF0AolVwrlad4slk3kFQ7aGPL+24Y26IiiG3Bz0jUM9fRcs
baWlpRYhoLetmRg33mj5UFhb0p8SEIwq+/r1WUB68+pCyIRFgomGGMRmjqrhLhMx
XGvptF1l6YnSDgHhu+gFwzpiFdhIQkiRDity1rOdCqoIkgLp9qtJQz3myuqFZOnw
mhYPZP2U6hRihetYhuPbIaCBdjc8sKf0Ed919WyXBk0GLSUq+HZzshpF9+TqH4bq
GPCJBoW2lm4YPXoILvwmoEWt10uxFRYLgtR5KuCNzoCvcjH0
-----END CERTIFICATE-----
Generated at Sat May 3 10:38:45 2025 by rpki-client