Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/E3SrL-53At5rVINCqZGBtRvnZkU.roa
File: E3SrL-53At5rVINCqZGBtRvnZkU.roa (raw, json)
Hash identifier: B94KlPfvK7qqFQ2LfF93uMYte6RmLIRBtoICKdG31vA=
Subject key identifier: 13:74:AB:2F:EE:77:02:DE:6B:54:83:42:A9:91:81:B5:1B:E7:66:45
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 665ED1BF
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/E3SrL-53At5rVINCqZGBtRvnZkU.roa
Signing time: Sun 30 Jan 2022 14:10:41 +0000
ROA not before: Sun 30 Jan 2022 14:10:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:17e:a0dd:2f5b/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1717490111 (0x665ed1bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jan 30 14:10:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1374ab2fee7702de6b548342a99181b51be76645
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:cd:67:a5:76:8e:f4:43:3c:78:53:0f:cf:8f:
23:4d:86:4f:1d:52:92:7d:8b:53:36:7e:e0:1e:d6:
42:d9:46:55:36:4b:5b:fa:ab:b5:fb:bc:7b:e4:44:
8b:f8:42:a0:77:e1:46:e6:06:bb:9b:a5:31:d2:7b:
44:85:00:e7:0a:92:9d:cf:61:27:bd:ff:52:fe:50:
eb:53:9c:83:8a:2c:fd:89:4f:1a:85:b8:18:93:0f:
50:c8:6a:40:c0:f5:c8:4d:2c:3b:48:22:4b:62:f3:
10:b4:04:f7:79:e0:a1:c0:58:3b:03:3e:53:ea:ec:
b5:12:63:ba:47:2a:e1:dc:ee:4c:33:f2:8a:bf:58:
fa:30:02:71:a3:84:b2:95:23:35:35:c0:a9:3f:e7:
3e:9b:19:4c:05:30:4c:7c:b7:45:64:e2:0d:72:be:
f9:ef:24:95:28:f5:bf:36:e8:24:78:64:c2:cb:d9:
ab:b7:7a:67:1b:9e:bd:4e:c2:60:b1:14:26:a2:fc:
5c:bf:91:8f:9d:60:e9:fa:96:71:50:49:5f:f0:be:
94:33:bb:8c:5d:b4:45:23:96:25:c6:db:8e:53:4d:
fd:17:25:b4:3b:cb:34:85:18:9a:0e:07:63:df:2a:
f2:0b:6a:a9:d1:14:9d:22:21:a6:c7:41:5b:e0:33:
c2:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:74:AB:2F:EE:77:02:DE:6B:54:83:42:A9:91:81:B5:1B:E7:66:45
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/E3SrL-53At5rVINCqZGBtRvnZkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
b2:a0:39:bd:58:84:cb:90:d8:0d:c2:ac:c0:cc:fe:07:7f:0c:
e9:41:c8:38:54:3d:84:d6:bc:23:0e:fb:3c:f5:e0:2c:29:42:
37:cf:9b:88:b9:ba:0a:60:2a:bc:6c:9d:3a:05:45:44:97:7d:
7a:23:3f:2c:1e:c0:8e:b6:87:df:90:cc:90:ef:24:d0:41:ef:
0b:bf:3a:21:7c:6b:75:20:73:cd:ef:2e:ee:f0:96:84:4e:95:
ec:fa:6f:14:c9:d4:f0:c5:69:d0:c1:b8:26:ae:b3:9b:bd:5e:
4f:28:2e:14:51:1d:56:a7:fd:5a:1e:dd:c0:1c:ec:fc:54:43:
4f:6c:bf:de:4c:2a:91:6d:68:94:51:dc:80:09:68:9b:4c:f6:
fc:3c:7b:27:58:e5:3c:a4:ab:33:64:a5:cb:09:d8:bb:d7:c8:
66:de:bd:23:7e:a0:b0:47:4e:9b:f8:2e:c9:40:66:f8:8a:53:
92:f6:34:f7:f6:6e:17:01:02:a6:10:43:94:87:1f:b2:42:fa:
18:80:1b:d8:df:6c:f5:a6:d2:5b:97:83:50:43:27:54:c3:57:
cb:28:3b:fb:ef:43:b6:ac:d3:58:f2:c4:f2:73:3b:06:94:17:
70:98:5b:e6:e7:63:f2:b7:73:86:d9:6e:1a:c6:d3:52:61:4d:
59:46:7e:49
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEZl7RvzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MjA0N2JlMTViMjc1OTAyZGNmNjE3ZGMzZDBlMTZkYzFmMzA4MDIyMB4XDTIyMDEz
MDE0MTA0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTM3NGFiMmZlZTc3
MDJkZTZiNTQ4MzQyYTk5MTgxYjUxYmU3NjY0NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMrNZ6V2jvRDPHhTD8+PI02GTx1Skn2LUzZ+4B7WQtlGVTZL
W/qrtfu8e+REi/hCoHfhRuYGu5ulMdJ7RIUA5wqSnc9hJ73/Uv5Q61Ocg4os/YlP
GoW4GJMPUMhqQMD1yE0sO0giS2LzELQE93ngocBYOwM+U+rstRJjukcq4dzuTDPy
ir9Y+jACcaOEspUjNTXAqT/nPpsZTAUwTHy3RWTiDXK++e8klSj1vzboJHhkwsvZ
q7d6ZxuevU7CYLEUJqL8XL+Rj51g6fqWcVBJX/C+lDO7jF20RSOWJcbbjlNN/Rcl
tDvLNIUYmg4HY98q8gtqqdEUnSIhpsdBW+AzwtkCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBQTdKsv7ncC3mtUg0KpkYG1G+dmRTAfBgNVHSMEGDAWgBRyBHvhWydZAtz2
F9w9DhbcHzCAIjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NnUjc0VnNuV1FMYzloZmNQUTRXM0I4d2dDSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWUvNzk4NDQ3LTIxZjQtNDVhYi05OWRjLTFhYmUzYWMxMGFhNi8x
L0UzU3JMLTUzQXQ1clZJTkNxWkdCdFJ2blprVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWUv
Nzk4NDQ3LTIxZjQtNDVhYi05OWRjLTFhYmUzYWMxMGFhNi8xL2NnUjc0VnNuV1FM
YzloZmNQUTRXM0I4d2dDSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEA8EAGDAPBAIAAjAJAwcAIAEGfABk
MA0GCSqGSIb3DQEBCwUAA4IBAQCyoDm9WITLkNgNwqzAzP4HfwzpQcg4VD2E1rwj
Dvs89eAsKUI3z5uIuboKYCq8bJ06BUVEl316Iz8sHsCOtoffkMyQ7yTQQe8Lvzoh
fGt1IHPN7y7u8JaETpXs+m8UydTwxWnQwbgmrrObvV5PKC4UUR1Wp/1aHt3AHOz8
VENPbL/eTCqRbWiUUdyACWibTPb8PHsnWOU8pKszZKXLCdi718hm3r0jfqCwR06b
+C7JQGb4ilOS9jT39m4XAQKmEEOUhx+yQvoYgBvY32z1ptJbl4NQQydUw1fLKDv7
70O2rNNY8sTyczsGlBdwmFvm52Pyt3OG2W4axtNSYU1ZRn5J
-----END CERTIFICATE-----
Generated at Fri May 2 20:16:52 2025 by rpki-client