Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Tt4LDHui1RPFATPtOXf7FrrqqP4.roa
File: Tt4LDHui1RPFATPtOXf7FrrqqP4.roa (raw, json)
Hash identifier: f+jyH/Kl2wMxcwKAQxcinQzEkjRMK+xRJ8EHFWEy9+8=
Subject key identifier: 4E:DE:0B:0C:7B:A2:D5:13:C5:01:33:ED:39:77:FB:16:BA:EA:A8:FE
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01883CB8338CE1CCA86D9407AC7C63A2407C
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Tt4LDHui1RPFATPtOXf7FrrqqP4.roa
Signing time: Sun 21 May 2023 05:11:24 +0000
ROA not before: Sun 21 May 2023 05:11:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:3c:b8:33:8c:e1:cc:a8:6d:94:07:ac:7c:63:a2:40:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 21 05:11:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ede0b0c7ba2d513c50133ed3977fb16baeaa8fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:f5:8a:a2:06:de:ea:06:0e:f2:49:66:45:02:
44:ac:94:d8:65:74:b7:0d:b9:89:21:f9:ab:57:65:
dc:b2:b2:46:ef:7a:a0:dc:bc:8a:80:f1:cd:f1:40:
9c:08:c2:ca:52:39:4e:78:25:b3:95:b3:a3:ec:38:
38:6d:85:0b:fe:44:58:18:db:a4:5a:9e:bf:41:22:
cd:6f:32:2d:30:46:cc:1c:62:0f:a9:a4:55:bc:8a:
90:63:0d:de:e0:e4:f8:de:5c:ad:0c:cf:66:46:42:
5c:c0:2e:ab:40:04:ff:45:84:db:1a:2d:5d:b1:28:
da:8c:b7:c8:da:ee:f9:b0:fa:04:00:43:6d:c7:f1:
94:ca:a2:2d:3c:d3:2b:be:17:0d:5c:b0:76:5f:02:
22:06:5e:e8:8b:36:cd:f4:c3:f8:06:db:d9:a5:b6:
ed:8a:13:33:64:c9:72:fb:6e:b3:7f:4a:b5:04:6c:
4d:db:71:00:43:bb:cf:8d:87:0f:2e:27:de:29:55:
5f:1f:2b:c7:6f:01:1d:b4:96:f9:66:3a:64:ae:6f:
d7:e6:9c:cb:4d:ad:85:43:7d:c9:88:74:5e:e3:d5:
4a:18:12:ac:ff:dd:45:cb:dc:ce:94:68:7d:c4:6e:
0b:63:46:61:37:6e:5c:23:77:39:01:20:77:64:2f:
e1:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:DE:0B:0C:7B:A2:D5:13:C5:01:33:ED:39:77:FB:16:BA:EA:A8:FE
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Tt4LDHui1RPFATPtOXf7FrrqqP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a3:58:b9:5d:8d:17:2b:0f:1e:7e:eb:22:e9:e4:e9:7f:0c:63:
19:9c:e7:57:e2:fb:66:d7:c6:dd:d0:40:1c:b0:48:7e:14:4e:
ec:8d:d7:f6:de:7b:13:57:33:c8:5f:f2:6d:7a:1c:22:f2:6a:
10:7c:e6:b0:49:63:69:ab:eb:2f:62:ff:30:84:d3:42:03:d1:
81:55:05:1b:55:e9:e9:29:76:f3:ab:fd:03:20:6e:ab:43:7c:
f1:d6:95:b0:8f:f2:11:b7:be:86:a9:57:a7:41:ed:c6:66:80:
f4:05:f8:c6:76:91:0d:22:eb:2d:14:ca:0c:e5:d5:02:26:3c:
6b:28:61:27:7c:3e:fe:29:dc:06:a3:98:94:34:f6:17:41:c3:
f5:7c:ac:01:04:e3:fa:53:17:d6:66:4d:12:8c:07:fb:19:52:
11:9e:77:18:52:fd:a8:60:c1:92:89:01:0f:a0:dd:6e:cf:77:
1c:d5:37:05:e3:ec:85:02:d9:ab:a3:99:cb:7c:9e:ce:9c:c4:
97:a7:89:6d:b3:0c:5f:b0:31:f1:3f:c3:27:f3:76:36:f7:b6:
69:b0:40:a8:9e:93:07:46:b5:9e:bf:c6:f2:30:e6:89:ca:55:
18:51:32:5f:9e:88:06:10:61:6a:f6:2a:61:85:0c:11:0f:e0:
9d:05:23:d5
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYg8uDOM4cyobZQHrHxjokB8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwNTIxMDUxMTI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZWRlMGIwYzdiYTJkNTEzYzUwMTMzZWQzOTc3ZmIxNmJhZWFhOGZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjfWKogbe6gYO8klmRQJErJTYZXS3
DbmJIfmrV2XcsrJG73qg3LyKgPHN8UCcCMLKUjlOeCWzlbOj7Dg4bYUL/kRYGNuk
Wp6/QSLNbzItMEbMHGIPqaRVvIqQYw3e4OT43lytDM9mRkJcwC6rQAT/RYTbGi1d
sSjajLfI2u75sPoEAENtx/GUyqItPNMrvhcNXLB2XwIiBl7oizbN9MP4BtvZpbbt
ihMzZMly+26zf0q1BGxN23EAQ7vPjYcPLifeKVVfHyvHbwEdtJb5Zjpkrm/X5pzL
Ta2FQ33JiHRe49VKGBKs/91Fy9zOlGh9xG4LY0ZhN25cI3c5ASB3ZC/hvwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFE7eCwx7otUTxQEz7Tl3+xa66qj+MB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvVHQ0TERIdWkxUlBGQVRQdE9YZjdGcnJxcVA0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAKNYuV2NFysPHn7rIunk
6X8MYxmc51fi+2bXxt3QQBywSH4UTuyN1/beexNXM8hf8m16HCLyahB85rBJY2mr
6y9i/zCE00ID0YFVBRtV6ekpdvOr/QMgbqtDfPHWlbCP8hG3voapV6dB7cZmgPQF
+MZ2kQ0i6y0Uygzl1QImPGsoYSd8Pv4p3AajmJQ09hdBw/V8rAEE4/pTF9ZmTRKM
B/sZUhGedxhS/ahgwZKJAQ+g3W7PdxzVNwXj7IUC2aujmct8ns6cxJeniW2zDF+w
MfE/wyfzdjb3tmmwQKiekwdGtZ6/xvIw5onKVRhRMl+eiAYQYWr2KmGFDBEP4J0F
I9U=
-----END CERTIFICATE-----
Generated at Thu May 1 05:33:33 2025 by rpki-client