Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/IdTno4DjHs0LKgpR4RzoyAjgNL8.roa
File: IdTno4DjHs0LKgpR4RzoyAjgNL8.roa (raw, json)
Hash identifier: Oki5hlvFGxZOMtPpzxq5rus2Pi6FbLf4CoQmJYVrrBU=
Subject key identifier: 21:D4:E7:A3:80:E3:1E:CD:0B:2A:0A:51:E1:1C:E8:C8:08:E0:34:BF
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01881B06C92867A1259E050164ABFA9CE138
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/IdTno4DjHs0LKgpR4RzoyAjgNL8.roa
Signing time: Sun 14 May 2023 16:10:09 +0000
ROA not before: Sun 14 May 2023 16:10:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1b:06:c9:28:67:a1:25:9e:05:01:64:ab:fa:9c:e1:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 14 16:10:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21d4e7a380e31ecd0b2a0a51e11ce8c808e034bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:f4:02:59:fd:31:50:1c:20:e3:f8:18:e9:3a:
c7:63:35:0f:f2:8e:5c:67:ac:00:a3:6e:ed:2a:a7:
6d:5f:73:c6:74:8f:86:5f:4d:04:21:6b:5c:f7:25:
0a:88:15:9e:03:34:c6:c9:df:65:f4:d2:b7:29:d3:
b5:be:88:d5:ea:af:97:df:90:5b:94:95:6f:53:54:
3f:83:93:5d:34:57:ae:67:00:f9:bc:f8:33:77:fb:
a0:88:03:aa:e1:b8:b6:cc:bd:ca:55:bb:ff:85:d0:
3b:d0:b5:4b:39:6c:34:91:45:2f:d9:33:02:f8:2b:
17:fd:50:8a:e6:d3:3d:ba:42:06:88:de:3b:55:39:
8d:5b:51:29:f8:88:6e:d6:9a:1e:17:65:64:5a:0b:
a4:00:36:6f:70:f4:53:95:28:5f:bf:e9:5c:aa:a0:
75:62:70:4c:52:c9:87:0b:40:f9:ee:74:60:fe:a5:
21:33:4a:ba:c3:ba:30:25:e0:29:9b:6f:3e:2b:95:
e0:e3:19:f9:b4:ef:3f:14:ed:9b:b9:d5:4d:92:fb:
cd:95:32:ba:28:f1:cd:94:3a:fd:f9:7b:59:15:3e:
71:e3:01:b4:41:ff:c4:13:57:9d:b9:3c:8a:75:34:
79:40:74:57:0e:ef:2e:ad:c5:cd:7f:23:61:68:4b:
bb:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:D4:E7:A3:80:E3:1E:CD:0B:2A:0A:51:E1:1C:E8:C8:08:E0:34:BF
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/IdTno4DjHs0LKgpR4RzoyAjgNL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
ac:24:8e:63:b6:d7:8e:a7:ac:b6:28:89:d9:f2:dc:d1:5a:e6:
33:bc:e2:1d:fc:34:68:58:88:a1:77:af:f5:d1:08:a8:7b:22:
fb:2e:d7:72:fd:e9:e2:41:7f:5f:08:92:a4:1c:f1:60:52:4b:
75:c0:2a:8e:06:c2:24:de:3d:a7:e1:46:66:98:e8:71:9c:c6:
8f:e0:78:4d:60:70:bd:08:f8:25:ef:21:c9:78:10:3f:f6:d3:
1f:c0:28:70:5d:34:cd:4b:07:0a:71:ec:98:d2:c1:5d:7b:f1:
6a:b5:35:2a:3b:bc:fe:6b:54:58:6f:36:fe:b8:70:a2:04:01:
38:21:4f:a3:37:9e:87:a1:db:77:96:69:1e:0a:c9:e1:d6:6a:
e4:3a:43:a9:82:7e:3d:8e:8a:54:e2:4a:91:b4:f6:fc:8b:18:
74:0e:1a:ca:ec:65:db:b8:ee:94:ec:5b:3f:d4:93:08:5a:52:
83:53:30:47:c7:94:a6:4e:55:61:e4:02:fa:96:36:66:2c:d0:
ca:7b:05:15:b7:ce:b4:c0:cb:6d:d2:e6:f5:fc:9a:70:27:8f:
44:e6:6b:8a:ba:d2:30:c5:ab:cd:c7:90:2c:bb:26:5f:a0:e9:
a2:cd:ee:07:5c:f7:20:0f:34:2e:67:77:1d:5a:ff:cd:2c:e6:
db:a0:46:36
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYgbBskoZ6ElngUBZKv6nOE4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwNTE0MTYxMDA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMWQ0ZTdhMzgwZTMxZWNkMGIyYTBhNTFlMTFjZThjODA4ZTAzNGJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6PQCWf0xUBwg4/gY6TrHYzUP8o5c
Z6wAo27tKqdtX3PGdI+GX00EIWtc9yUKiBWeAzTGyd9l9NK3KdO1vojV6q+X35Bb
lJVvU1Q/g5NdNFeuZwD5vPgzd/ugiAOq4bi2zL3KVbv/hdA70LVLOWw0kUUv2TMC
+CsX/VCK5tM9ukIGiN47VTmNW1Ep+Ihu1poeF2VkWgukADZvcPRTlShfv+lcqqB1
YnBMUsmHC0D57nRg/qUhM0q6w7owJeApm28+K5Xg4xn5tO8/FO2budVNkvvNlTK6
KPHNlDr9+XtZFT5x4wG0Qf/EE1eduTyKdTR5QHRXDu8urcXNfyNhaEu7FQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFCHU56OA4x7NCyoKUeEc6MgI4DS/MB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvSWRUbm80RGpIczBMS2dwUjRSem95QWpnTkw4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAKwkjmO2146nrLYoidny
3NFa5jO84h38NGhYiKF3r/XRCKh7Ivsu13L96eJBf18IkqQc8WBSS3XAKo4GwiTe
PafhRmaY6HGcxo/geE1gcL0I+CXvIcl4ED/20x/AKHBdNM1LBwpx7JjSwV178Wq1
NSo7vP5rVFhvNv64cKIEATghT6M3noeh23eWaR4KyeHWauQ6Q6mCfj2OilTiSpG0
9vyLGHQOGsrsZdu47pTsWz/UkwhaUoNTMEfHlKZOVWHkAvqWNmYs0Mp7BRW3zrTA
y23S5vX8mnAnj0Tma4q60jDFq83HkCy7Jl+g6aLN7gdc9yAPNC5ndx1a/80s5tug
RjY=
-----END CERTIFICATE-----
Generated at Wed Apr 30 17:40:57 2025 by rpki-client