Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/HXLBPgoB8URLQ_s_wqJJ95njWqo.roa
File: HXLBPgoB8URLQ_s_wqJJ95njWqo.roa (raw, json)
Hash identifier: cpWC6253tPewEqo5kWOkpNIhRKYUogXW1gwc0H7WiZY=
Subject key identifier: 1D:72:C1:3E:0A:01:F1:44:4B:43:FB:3F:C2:A2:49:F7:99:E3:5A:AA
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01897FDE5CF1600E02441DF517C898417E3A
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/HXLBPgoB8URLQ_s_wqJJ95njWqo.roa
Signing time: Sat 22 Jul 2023 23:10:26 +0000
ROA not before: Sat 22 Jul 2023 23:10:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:7f:de:5c:f1:60:0e:02:44:1d:f5:17:c8:98:41:7e:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 22 23:10:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d72c13e0a01f1444b43fb3fc2a249f799e35aaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:75:46:41:d6:71:ce:71:84:f2:32:5a:e2:b5:
8b:8a:e0:56:cc:84:b4:78:a8:af:30:23:0d:86:54:
98:1f:2a:e3:e8:db:45:8f:83:54:67:f2:e6:23:1a:
f7:95:f8:f5:3e:4d:c1:3b:72:63:fb:02:5f:0e:1c:
28:4a:04:49:99:73:68:c1:7c:d5:8e:7b:d1:af:6d:
63:5b:7d:18:2a:f1:e0:08:19:10:95:2f:8b:ba:3f:
b0:4b:7f:5f:3c:5d:9c:dc:89:71:37:ff:c3:63:a7:
49:6b:ce:ca:82:e9:a4:8d:41:f9:4d:f4:61:78:c8:
aa:cd:b7:21:87:90:0c:02:69:db:45:2a:cf:f0:19:
e0:80:b1:0d:0a:29:3d:4f:d7:73:b8:8b:9d:04:f0:
66:3e:53:eb:97:26:75:63:7f:47:06:49:a5:3e:aa:
84:ec:d8:6d:c2:68:e5:06:09:53:47:62:78:1d:67:
ea:1b:bc:74:c1:fe:da:2c:54:7e:ec:68:a2:af:c1:
d6:b6:f8:70:cf:14:36:b5:a1:de:5c:8c:83:c4:f7:
bd:a1:0b:a3:18:cd:b3:34:35:82:e4:94:2a:02:0d:
5a:89:8d:74:b0:01:59:b0:73:27:ac:ee:a6:33:3e:
25:6b:50:dc:22:ff:47:ff:47:22:34:30:da:91:0c:
05:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:72:C1:3E:0A:01:F1:44:4B:43:FB:3F:C2:A2:49:F7:99:E3:5A:AA
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/HXLBPgoB8URLQ_s_wqJJ95njWqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
85:b9:cb:09:fb:b9:aa:7b:95:73:7b:ed:e4:fe:38:80:6e:8f:
ed:6d:11:5f:36:ef:9f:52:f1:f5:25:57:c3:ca:1e:90:6e:35:
f2:aa:2e:2f:00:dd:71:92:ec:12:5d:af:40:76:ed:09:b1:7b:
7c:2c:92:c0:25:9e:b5:d4:dd:e2:97:fa:7c:1f:02:f7:d6:36:
4d:8c:3a:a4:20:4a:4a:9b:1f:6a:84:c5:bd:7c:eb:28:c6:43:
9a:47:67:a4:11:79:39:6b:3d:4f:d5:9d:fc:6c:74:99:38:b6:
8a:a9:3b:89:7b:06:50:68:eb:dd:37:cd:1e:7c:16:f2:4e:8f:
e3:5f:7d:60:9f:43:bb:83:af:20:eb:5f:4c:f3:bb:45:d5:5d:
fe:aa:d4:d6:6e:42:28:3e:82:2d:97:3b:d5:27:63:75:ac:6c:
67:cd:15:e7:75:c7:8f:c3:6e:9a:aa:bf:71:24:a9:8e:ee:bd:
73:21:d0:2a:cf:68:71:8a:72:9b:87:d6:86:ef:46:52:41:82:
1f:45:a2:b4:db:3c:f9:72:b1:54:52:5f:f9:d1:17:2d:46:01:
1d:a2:a0:81:4f:b5:4c:40:46:29:e6:f9:b7:c7:da:6d:16:95:
37:d5:17:91:fa:e3:e5:6a:cd:d9:e4:4a:26:ea:52:49:23:15:
40:9e:4f:be
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYl/3lzxYA4CRB31F8iYQX46MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwNzIyMjMxMDI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZDcyYzEzZTBhMDFmMTQ0NGI0M2ZiM2ZjMmEyNDlmNzk5ZTM1YWFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnHVGQdZxznGE8jJa4rWLiuBWzIS0
eKivMCMNhlSYHyrj6NtFj4NUZ/LmIxr3lfj1Pk3BO3Jj+wJfDhwoSgRJmXNowXzV
jnvRr21jW30YKvHgCBkQlS+Luj+wS39fPF2c3IlxN//DY6dJa87KgumkjUH5TfRh
eMiqzbchh5AMAmnbRSrP8BnggLENCik9T9dzuIudBPBmPlPrlyZ1Y39HBkmlPqqE
7NhtwmjlBglTR2J4HWfqG7x0wf7aLFR+7Giir8HWtvhwzxQ2taHeXIyDxPe9oQuj
GM2zNDWC5JQqAg1aiY10sAFZsHMnrO6mMz4la1DcIv9H/0ciNDDakQwFeQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFB1ywT4KAfFES0P7P8KiSfeZ41qqMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvSFhMQlBnb0I4VVJMUV9zX3dxSko5NW5qV3FvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAIW5ywn7uap7lXN77eT+
OIBuj+1tEV82759S8fUlV8PKHpBuNfKqLi8A3XGS7BJdr0B27Qmxe3wsksAlnrXU
3eKX+nwfAvfWNk2MOqQgSkqbH2qExb186yjGQ5pHZ6QReTlrPU/VnfxsdJk4toqp
O4l7BlBo6903zR58FvJOj+NffWCfQ7uDryDrX0zzu0XVXf6q1NZuQig+gi2XO9Un
Y3WsbGfNFed1x4/Dbpqqv3EkqY7uvXMh0CrPaHGKcpuH1obvRlJBgh9ForTbPPly
sVRSX/nRFy1GAR2ioIFPtUxARinm+bfH2m0WlTfVF5H64+VqzdnkSibqUkkjFUCe
T74=
-----END CERTIFICATE-----
Generated at Thu May 1 12:54:16 2025 by rpki-client