Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/GGNJBe0FKiRLfxOdcvgRdZHWIQ8.roa
File: GGNJBe0FKiRLfxOdcvgRdZHWIQ8.roa (raw, json)
Hash identifier: zKgQwOejh7vj4xhllPlES2xVd8WSVw/4reYY20S64gA=
Subject key identifier: 18:63:49:05:ED:05:2A:24:4B:7F:13:9D:72:F8:11:75:91:D6:21:0F
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018535052FF9FA2869B31B7B8A5023AA6673
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/GGNJBe0FKiRLfxOdcvgRdZHWIQ8.roa
Signing time: Wed 21 Dec 2022 14:10:10 +0000
ROA not before: Wed 21 Dec 2022 14:10:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:35:05:2f:f9:fa:28:69:b3:1b:7b:8a:50:23:aa:66:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Dec 21 14:10:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18634905ed052a244b7f139d72f8117591d6210f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:60:a1:b8:6c:c7:ab:5c:a8:ae:47:8f:44:3f:
12:fa:1d:82:6c:39:38:da:19:de:55:a4:1f:63:f2:
99:44:0f:80:05:a3:95:b0:a9:7f:dd:0b:62:79:e3:
5d:39:19:c5:26:14:f8:1c:ad:d2:80:36:d6:0c:72:
54:30:cb:b2:c5:41:ce:b7:27:22:11:08:3e:ef:6c:
7f:34:e2:11:ed:79:d3:67:b1:d0:18:f0:c6:d6:aa:
2c:ef:b4:c8:c9:e4:12:5f:73:eb:08:0c:06:9c:50:
73:b3:42:e3:0f:3d:de:b3:8a:7a:5f:ac:c0:fb:cc:
34:b5:5d:74:19:99:26:e4:f4:44:a4:d5:68:cb:a5:
38:57:31:0d:3c:1e:a9:be:c5:eb:4a:46:2a:7e:86:
af:97:a3:02:6e:63:f7:51:fe:72:82:7b:d5:ba:2c:
16:3f:06:91:b0:e8:6e:07:fc:22:24:f9:49:b9:ca:
74:d9:15:3f:30:bd:e9:b0:9d:29:6e:91:cd:dc:38:
e3:ed:a0:9a:8a:83:29:c5:e2:25:91:92:fa:8f:d1:
0a:a1:9c:aa:d1:b0:19:47:b1:12:d2:80:66:76:a0:
55:67:bb:3c:56:bb:d4:8c:01:be:08:ef:6e:01:18:
30:2d:44:b5:54:18:ae:f1:49:35:f2:2a:86:a0:04:
d9:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:63:49:05:ED:05:2A:24:4B:7F:13:9D:72:F8:11:75:91:D6:21:0F
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/GGNJBe0FKiRLfxOdcvgRdZHWIQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
49:4c:08:32:89:3b:15:ed:cd:f0:98:2e:5c:7c:2c:11:88:59:
f6:fb:04:6f:f1:75:4c:fa:db:1b:1e:9b:09:90:8d:72:ce:69:
33:f6:7b:af:56:22:9b:da:53:67:65:6b:13:7e:38:eb:57:2a:
8a:73:ed:d3:e5:17:ec:c5:b0:1b:cc:5f:49:b7:56:63:84:93:
56:fc:3d:ab:d6:59:a3:60:7b:90:ed:20:ff:63:c0:c8:0e:d1:
94:9f:db:51:0f:02:05:25:d1:bf:bb:40:e9:13:79:ba:d4:c5:
bf:61:44:5c:c4:10:6f:7a:b7:24:e4:9a:0b:f6:d4:8a:0b:13:
98:fb:5c:17:de:bb:38:72:c5:cf:5f:76:b0:44:a2:d7:9b:85:
c0:f0:14:42:04:83:a3:a7:86:d6:11:4f:d1:0d:38:fa:c0:ec:
92:62:60:9b:ca:5c:b5:bf:6c:67:ed:4b:06:17:5a:35:61:77:
13:bd:01:69:fc:c1:01:6f:ae:a6:f0:1f:87:40:c6:cf:e2:67:
57:77:23:32:15:a6:3d:4c:b3:48:ff:86:b3:51:f7:bf:71:76:
61:00:0b:ab:20:99:33:27:b1:65:bf:a1:0f:c0:02:77:d7:05:
5e:93:49:a2:b6:20:69:ca:50:3a:14:ca:5b:2d:2f:24:8c:04:
0b:0b:c9:2a
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYU1BS/5+ihpsxt7ilAjqmZzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjIxMjIxMTQxMDEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxODYzNDkwNWVkMDUyYTI0NGI3ZjEzOWQ3MmY4MTE3NTkxZDYyMTBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi2ChuGzHq1yorkePRD8S+h2CbDk4
2hneVaQfY/KZRA+ABaOVsKl/3QtieeNdORnFJhT4HK3SgDbWDHJUMMuyxUHOtyci
EQg+72x/NOIR7XnTZ7HQGPDG1qos77TIyeQSX3PrCAwGnFBzs0LjDz3es4p6X6zA
+8w0tV10GZkm5PREpNVoy6U4VzENPB6pvsXrSkYqfoavl6MCbmP3Uf5ygnvVuiwW
PwaRsOhuB/wiJPlJucp02RU/ML3psJ0pbpHN3Djj7aCaioMpxeIlkZL6j9EKoZyq
0bAZR7ES0oBmdqBVZ7s8VrvUjAG+CO9uARgwLUS1VBiu8Uk18iqGoATZSwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFBhjSQXtBSokS38TnXL4EXWR1iEPMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvR0dOSkJlMEZLaVJMZnhPZGN2Z1JkWkhXSVE4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAElMCDKJOxXtzfCYLlx8
LBGIWfb7BG/xdUz62xsemwmQjXLOaTP2e69WIpvaU2dlaxN+OOtXKopz7dPlF+zF
sBvMX0m3VmOEk1b8PavWWaNge5DtIP9jwMgO0ZSf21EPAgUl0b+7QOkTebrUxb9h
RFzEEG96tyTkmgv21IoLE5j7XBfeuzhyxc9fdrBEotebhcDwFEIEg6OnhtYRT9EN
OPrA7JJiYJvKXLW/bGftSwYXWjVhdxO9AWn8wQFvrqbwH4dAxs/iZ1d3IzIVpj1M
s0j/hrNR979xdmEAC6sgmTMnsWW/oQ/AAnfXBV6TSaK2IGnKUDoUylstLySMBAsL
ySo=
-----END CERTIFICATE-----
Generated at Wed Apr 30 17:28:21 2025 by rpki-client