Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/L75kFsk8WN09Ew_xFSjALRErAh0.roa
File: L75kFsk8WN09Ew_xFSjALRErAh0.roa (raw, json)
Hash identifier: RJlvZFuiGJThJZKe4tpfQjkf5xlJs7CfB3aMbH5MSg8=
Subject key identifier: 2F:BE:64:16:C9:3C:58:DD:3D:13:0F:F1:15:28:C0:2D:11:2B:02:1D
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0187FBB2C3B7463E512CCBED3BC8BB035E96
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/L75kFsk8WN09Ew_xFSjALRErAh0.roa
Signing time: Mon 08 May 2023 14:10:09 +0000
ROA not before: Mon 08 May 2023 14:10:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:fb:b2:c3:b7:46:3e:51:2c:cb:ed:3b:c8:bb:03:5e:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 8 14:10:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2fbe6416c93c58dd3d130ff11528c02d112b021d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:78:60:c9:cf:c6:ef:4e:18:53:62:f8:84:a4:
80:00:da:99:bc:35:b4:fb:cb:b0:1f:8d:30:4a:83:
ee:2e:53:74:2a:95:77:b3:d7:ad:74:75:1f:bb:d9:
34:25:19:4b:de:94:5e:f0:b3:e5:32:79:85:51:90:
48:c7:95:29:7b:12:ff:99:80:75:3f:38:45:78:9a:
f5:2c:3d:09:44:5d:b0:ff:44:33:20:7f:5e:ec:60:
60:37:19:32:ad:10:e1:b5:68:c9:e7:c8:2d:6f:40:
12:2a:7b:68:9f:0b:00:1f:f0:8c:7c:f9:2b:c4:66:
30:8f:19:da:80:b1:97:1b:f5:0a:52:60:25:ba:be:
3b:05:14:3b:6d:ca:e7:b0:6b:df:28:90:96:e4:f2:
90:2b:97:f5:5a:9c:10:d4:c9:c2:4f:36:27:73:a0:
5c:44:80:14:bb:80:e5:07:51:cd:e1:94:75:61:d7:
1b:f0:ff:85:f3:1a:f4:e6:0d:e2:a1:4d:a7:63:26:
a7:9a:85:15:0c:18:a0:d0:7b:43:fc:b4:48:66:d1:
d6:cc:1b:38:ff:95:4a:19:94:52:41:a1:8b:02:06:
07:5d:3b:58:37:25:c9:f5:7a:84:dd:1f:b3:cd:fc:
05:9a:1b:cd:b1:6d:68:7e:9d:13:e8:d3:6e:74:de:
c4:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:BE:64:16:C9:3C:58:DD:3D:13:0F:F1:15:28:C0:2D:11:2B:02:1D
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/L75kFsk8WN09Ew_xFSjALRErAh0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
4f:c7:1a:4b:e3:99:c4:c8:06:5a:3f:55:97:3a:f4:0d:69:46:
5a:ae:cb:11:07:b0:19:48:21:c6:20:82:38:48:bc:8a:50:d8:
9a:b3:ce:34:a4:8f:b3:36:7e:03:35:51:a5:f3:45:cb:6d:26:
86:7d:da:38:b3:53:83:e4:2a:0e:86:93:c9:36:8d:4f:93:21:
d3:85:2a:cc:6e:f5:35:f3:37:b3:2d:ba:69:be:10:87:e3:d6:
a1:f3:4d:9f:18:79:9a:80:d9:1f:ad:81:63:5b:6f:01:ae:87:
e1:28:5c:4b:ee:b1:11:2a:42:1e:53:2e:ae:ad:7d:07:cb:25:
77:54:e7:35:a4:f8:b8:3e:07:44:57:e8:ce:52:16:97:e4:75:
75:cf:55:7f:f2:44:40:6c:c2:a6:fe:dd:b0:ea:d1:fd:67:55:
ad:ba:b4:cf:72:23:e6:cf:e5:65:71:a2:d7:6f:d1:d5:1d:71:
52:59:6e:d5:7e:e4:dd:c9:e9:18:cd:42:63:94:cc:6f:70:90:
78:93:b3:e4:ca:1d:c0:2d:be:f2:94:61:49:e6:fa:85:dc:d9:
14:d2:fb:11:e6:b9:52:0b:81:9d:dc:57:64:0a:43:74:80:ba:
35:24:17:94:5a:ca:c9:89:bf:34:75:8d:b0:ea:48:11:8f:03:
84:a4:b8:67
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYf7ssO3Rj5RLMvtO8i7A16WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwNTA4MTQxMDA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZmJlNjQxNmM5M2M1OGRkM2QxMzBmZjExNTI4YzAyZDExMmIwMjFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp3hgyc/G704YU2L4hKSAANqZvDW0
+8uwH40wSoPuLlN0KpV3s9etdHUfu9k0JRlL3pRe8LPlMnmFUZBIx5UpexL/mYB1
PzhFeJr1LD0JRF2w/0QzIH9e7GBgNxkyrRDhtWjJ58gtb0ASKntonwsAH/CMfPkr
xGYwjxnagLGXG/UKUmAlur47BRQ7bcrnsGvfKJCW5PKQK5f1WpwQ1MnCTzYnc6Bc
RIAUu4DlB1HN4ZR1Ydcb8P+F8xr05g3ioU2nYyanmoUVDBig0HtD/LRIZtHWzBs4
/5VKGZRSQaGLAgYHXTtYNyXJ9XqE3R+zzfwFmhvNsW1ofp0T6NNudN7EKwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFC++ZBbJPFjdPRMP8RUowC0RKwIdMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvTDc1a0ZzazhXTjA5RXdfeEZTakFMUkVyQWgwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAE/HGkvjmcTIBlo/VZc6
9A1pRlquyxEHsBlIIcYggjhIvIpQ2JqzzjSkj7M2fgM1UaXzRcttJoZ92jizU4Pk
Kg6Gk8k2jU+TIdOFKsxu9TXzN7Mtumm+EIfj1qHzTZ8YeZqA2R+tgWNbbwGuh+Eo
XEvusREqQh5TLq6tfQfLJXdU5zWk+Lg+B0RX6M5SFpfkdXXPVX/yREBswqb+3bDq
0f1nVa26tM9yI+bP5WVxotdv0dUdcVJZbtV+5N3J6RjNQmOUzG9wkHiTs+TKHcAt
vvKUYUnm+oXc2RTS+xHmuVILgZ3cV2QKQ3SAujUkF5RaysmJvzR1jbDqSBGPA4Sk
uGc=
-----END CERTIFICATE-----
Generated at Thu May 1 00:42:17 2025 by rpki-client