Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/OlcS5yGM5W1mQ_U_whYi-GhPK8Y.roa
File: OlcS5yGM5W1mQ_U_whYi-GhPK8Y.roa (raw, json)
Hash identifier: hsvHlQlXG0QXEmtPxVsUL7EtE31SdiInR+v5hzg/x54=
Subject key identifier: 3A:57:12:E7:21:8C:E5:6D:66:43:F5:3F:C2:16:22:F8:68:4F:2B:C6
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018A2DEA3A328B5AEC6E6AFCF93C3CE4A251
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/OlcS5yGM5W1mQ_U_whYi-GhPK8Y.roa
Signing time: Fri 25 Aug 2023 18:17:19 +0000
ROA not before: Fri 25 Aug 2023 18:17:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2d:ea:3a:32:8b:5a:ec:6e:6a:fc:f9:3c:3c:e4:a2:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 25 18:17:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a5712e7218ce56d6643f53fc21622f8684f2bc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:0c:4f:65:9f:2c:6e:e1:15:f1:b2:a1:0f:64:
1d:f2:ff:59:06:ba:21:71:f6:ca:e5:c9:f1:47:95:
f6:8e:2b:8d:d7:7d:88:72:cf:20:b9:e7:49:00:b8:
d3:c9:e9:be:b1:1e:52:e5:80:3b:78:92:7e:5c:f2:
4a:db:45:67:7c:5d:7a:df:87:82:0d:f1:78:bb:b4:
cb:b3:f4:79:75:39:24:59:6b:b7:e5:7b:a1:ca:32:
4c:bb:2f:a3:b8:30:1a:be:09:80:55:f0:f0:75:51:
ce:d2:1e:c8:08:c3:b2:50:c8:d8:1f:44:21:5b:5c:
d1:3a:1f:c1:55:f9:0b:34:ef:a7:6f:1a:23:36:f9:
a6:ba:13:0a:a5:68:c6:ef:97:1d:ad:35:80:b4:50:
ee:91:44:0c:9d:68:90:d4:84:e9:92:3d:22:4a:48:
fc:a2:88:1e:ce:9c:05:cf:af:6b:5f:f7:7b:65:b0:
84:3c:fb:44:d1:54:4b:ef:e9:75:11:31:98:5b:7c:
ef:fc:1b:47:02:2b:9c:20:a9:d2:d6:62:6e:3b:83:
0e:1c:bf:97:9f:6b:ea:79:58:67:e2:00:b4:da:6c:
34:cc:ed:cf:70:d1:89:1b:6d:f4:35:be:75:b7:59:
ca:16:aa:a2:c8:9b:ad:61:fe:6e:53:43:ee:b8:c2:
ce:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:57:12:E7:21:8C:E5:6D:66:43:F5:3F:C2:16:22:F8:68:4F:2B:C6
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/OlcS5yGM5W1mQ_U_whYi-GhPK8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5e:06:32:cb:cc:a2:48:c1:e7:11:62:2c:62:13:29:69:c4:de:
1f:47:80:e9:e8:63:6c:f4:dd:27:c7:0f:17:e9:f7:36:f1:19:
4a:de:93:ae:54:e8:6b:c5:d1:8b:14:e6:b9:70:87:27:11:0e:
c3:3f:20:fe:54:94:6b:71:33:8b:8a:61:3b:33:a6:81:f2:92:
75:2b:69:d8:56:4e:48:85:34:f0:16:32:a1:3c:7b:b6:93:ea:
1b:6a:e8:32:17:50:7c:56:7c:81:c0:2c:f8:ab:5f:bc:f7:78:
15:61:32:9e:d0:92:a0:2b:cc:48:76:68:bd:13:d4:92:31:e1:
ee:91:d7:7a:e0:f0:44:95:3c:6f:0a:f6:8f:87:76:76:c5:d8:
1d:66:5b:33:2f:ca:ce:c0:b0:60:fa:3f:52:51:69:09:80:8e:
e3:e3:c0:b4:69:46:78:43:d8:a2:7c:88:dd:e8:a1:2d:2e:f0:
bd:ce:bf:80:7a:be:7d:c6:90:38:9f:6e:7d:66:88:f2:58:75:
3f:a2:6f:16:a0:ca:ef:5a:45:8f:ba:3c:db:c8:21:10:0e:c2:
b9:7b:64:97:73:ad:b6:84:78:87:3a:27:c1:d5:94:1d:c6:49:
d9:27:b8:a0:51:db:57:90:60:99:bd:bd:70:00:32:f7:c7:6a:
ea:8f:d1:52
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYot6joyi1rsbmr8+Tw85KJRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwODI1MTgxNzE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYTU3MTJlNzIxOGNlNTZkNjY0M2Y1M2ZjMjE2MjJmODY4NGYyYmM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkgxPZZ8sbuEV8bKhD2Qd8v9ZBroh
cfbK5cnxR5X2jiuN132Ics8guedJALjTyem+sR5S5YA7eJJ+XPJK20VnfF1634eC
DfF4u7TLs/R5dTkkWWu35XuhyjJMuy+juDAavgmAVfDwdVHO0h7ICMOyUMjYH0Qh
W1zROh/BVfkLNO+nbxojNvmmuhMKpWjG75cdrTWAtFDukUQMnWiQ1ITpkj0iSkj8
oogezpwFz69rX/d7ZbCEPPtE0VRL7+l1ETGYW3zv/BtHAiucIKnS1mJuO4MOHL+X
n2vqeVhn4gC02mw0zO3PcNGJG230Nb51t1nKFqqiyJutYf5uU0PuuMLOWwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFDpXEuchjOVtZkP1P8IWIvhoTyvGMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvT2xjUzV5R001VzFtUV9VX3doWWktR2hQSzhZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAF4GMsvMokjB5xFiLGIT
KWnE3h9HgOnoY2z03SfHDxfp9zbxGUrek65U6GvF0YsU5rlwhycRDsM/IP5UlGtx
M4uKYTszpoHyknUradhWTkiFNPAWMqE8e7aT6htq6DIXUHxWfIHALPirX7z3eBVh
Mp7QkqArzEh2aL0T1JIx4e6R13rg8ESVPG8K9o+HdnbF2B1mWzMvys7AsGD6P1JR
aQmAjuPjwLRpRnhD2KJ8iN3ooS0u8L3Ov4B6vn3GkDifbn1miPJYdT+ibxagyu9a
RY+6PNvIIRAOwrl7ZJdzrbaEeIc6J8HVlB3GSdknuKBR21eQYJm9vXAAMvfHauqP
0VI=
-----END CERTIFICATE-----
Generated at Thu May 1 06:17:47 2025 by rpki-client