Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/DoV-vIMdsFG0H39E3-h5X2CwWzc.roa
File: DoV-vIMdsFG0H39E3-h5X2CwWzc.roa (raw, json)
Hash identifier: 6iTgZVxe0fcIiARX+Og+NDVqSji5fn7FwcwMBIHaDHo=
Subject key identifier: 0E:85:7E:BC:83:1D:B0:51:B4:1F:7F:44:DF:E8:79:5F:60:B0:5B:37
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018A3F4AC5E664D8860A7A7B1370464200AE
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/DoV-vIMdsFG0H39E3-h5X2CwWzc.roa
Signing time: Tue 29 Aug 2023 03:16:19 +0000
ROA not before: Tue 29 Aug 2023 03:16:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:3f:4a:c5:e6:64:d8:86:0a:7a:7b:13:70:46:42:00:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 29 03:16:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e857ebc831db051b41f7f44dfe8795f60b05b37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:33:fb:6e:8c:39:c7:94:af:82:86:d0:d1:ce:
f5:12:79:72:70:54:bf:a8:02:81:4e:29:d4:c7:8b:
c2:59:84:74:21:79:97:dc:a9:1f:39:26:13:81:49:
d3:44:a6:14:9d:21:c9:6d:23:2d:2e:a9:41:27:c2:
07:ee:74:11:c2:31:01:da:bb:9e:6b:8c:76:0b:a9:
dd:1e:13:2e:61:ec:98:49:37:46:56:f7:df:7b:cc:
41:79:d7:28:53:f6:11:72:20:c4:e7:f8:dd:7b:f3:
b8:5e:f7:44:1f:52:d2:d8:7f:a5:8d:bd:f3:4b:a8:
58:27:db:d2:39:2b:19:43:3a:4a:52:78:e1:99:4f:
e7:33:9c:cd:2b:07:a9:69:21:57:f3:ff:be:34:ea:
4a:27:5b:f9:3d:99:c5:7d:21:d1:ab:92:7a:16:6c:
21:60:0f:05:24:a9:53:50:fb:70:ec:64:e9:48:23:
f8:50:29:69:4a:0b:cd:39:26:1e:90:eb:9c:11:9d:
18:0f:b1:09:94:3d:55:9e:c0:9a:e0:61:4b:77:6e:
c0:c1:9f:9f:2b:16:56:ab:6d:73:59:42:34:01:7b:
8e:61:ec:b6:32:31:81:70:58:74:d3:2d:67:08:a4:
48:62:7e:f5:d7:8a:80:72:68:e5:19:10:f3:b9:ee:
03:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:85:7E:BC:83:1D:B0:51:B4:1F:7F:44:DF:E8:79:5F:60:B0:5B:37
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/DoV-vIMdsFG0H39E3-h5X2CwWzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
45:6a:bf:20:e9:88:a4:13:10:b4:98:ac:36:1b:a4:7e:46:b5:
39:0e:6a:f0:f8:95:79:82:cb:f5:f6:a4:e1:b4:47:f8:9a:7a:
d2:d0:06:9f:5d:87:32:f0:b0:66:b3:c9:0a:cf:4a:e2:58:36:
0f:e3:61:bb:91:72:84:cf:78:84:93:b0:64:cf:c5:a6:26:68:
33:2a:18:dc:72:b6:25:35:d8:cc:3e:5a:9a:90:8f:6c:b5:8c:
08:a2:75:a9:7f:4a:78:52:7f:b0:95:3a:2a:b0:ff:54:e2:4c:
8d:4e:cf:99:f4:ca:5c:91:4b:b4:6c:6c:8f:9e:2f:c9:be:92:
a4:50:90:87:49:4f:93:56:72:ff:be:13:ae:67:bf:9d:dc:4c:
df:07:0e:e1:0a:e5:5f:cc:f2:38:f6:f5:37:78:69:bc:c1:3f:
ef:79:6f:53:9a:42:7a:70:aa:8c:05:02:7c:ec:83:27:3c:b9:
dd:74:52:04:59:e0:9b:80:25:a0:23:9e:f2:ec:e8:96:75:be:
a6:09:30:4e:f8:96:cb:06:ec:4f:80:7c:2b:1b:e9:81:79:4c:
db:7c:e2:7e:f7:31:7d:ad:b1:a5:26:92:de:f7:4a:20:8f:49:
7c:93:56:1a:64:2a:d7:54:a8:bf:da:e1:64:46:91:85:3b:cf:
74:3c:8a:5f
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYo/SsXmZNiGCnp7E3BGQgCuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwODI5MDMxNjE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZTg1N2ViYzgzMWRiMDUxYjQxZjdmNDRkZmU4Nzk1ZjYwYjA1YjM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuTP7bow5x5SvgobQ0c71EnlycFS/
qAKBTinUx4vCWYR0IXmX3KkfOSYTgUnTRKYUnSHJbSMtLqlBJ8IH7nQRwjEB2rue
a4x2C6ndHhMuYeyYSTdGVvffe8xBedcoU/YRciDE5/jde/O4XvdEH1LS2H+ljb3z
S6hYJ9vSOSsZQzpKUnjhmU/nM5zNKwepaSFX8/++NOpKJ1v5PZnFfSHRq5J6Fmwh
YA8FJKlTUPtw7GTpSCP4UClpSgvNOSYekOucEZ0YD7EJlD1VnsCa4GFLd27AwZ+f
KxZWq21zWUI0AXuOYey2MjGBcFh00y1nCKRIYn7114qAcmjlGRDzue4D/wIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFA6FfryDHbBRtB9/RN/oeV9gsFs3MB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvRG9WLXZJTWRzRkcwSDM5RTMtaDVYMkN3V3pjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAEVqvyDpiKQTELSYrDYb
pH5GtTkOavD4lXmCy/X2pOG0R/iaetLQBp9dhzLwsGazyQrPSuJYNg/jYbuRcoTP
eISTsGTPxaYmaDMqGNxytiU12Mw+WpqQj2y1jAiidal/SnhSf7CVOiqw/1TiTI1O
z5n0ylyRS7RsbI+eL8m+kqRQkIdJT5NWcv++E65nv53cTN8HDuEK5V/M8jj29Td4
abzBP+95b1OaQnpwqowFAnzsgyc8ud10UgRZ4JuAJaAjnvLs6JZ1vqYJME74lssG
7E+AfCsb6YF5TNt84n73MX2tsaUmkt73SiCPSXyTVhpkKtdUqL/a4WRGkYU7z3Q8
il8=
-----END CERTIFICATE-----
Generated at Wed Apr 30 18:45:15 2025 by rpki-client