Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/TwYWVrwpiftAJLpR8yxMHqJoeTQ.roa
File: TwYWVrwpiftAJLpR8yxMHqJoeTQ.roa (raw, json)
Hash identifier: VnA2HDH6INQVa3rvaeB25cO5lZ76dtc16YfgSpDZp9M=
Subject key identifier: 4F:06:16:56:BC:29:89:FB:40:24:BA:51:F3:2C:4C:1E:A2:68:79:34
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01883E6EBE2EB443FD947CD02E4C03C0F301
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/TwYWVrwpiftAJLpR8yxMHqJoeTQ.roa
Signing time: Sun 21 May 2023 13:10:24 +0000
ROA not before: Sun 21 May 2023 13:10:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:3e:6e:be:2e:b4:43:fd:94:7c:d0:2e:4c:03:c0:f3:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 21 13:10:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f061656bc2989fb4024ba51f32c4c1ea2687934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:4b:7e:c0:15:49:ba:80:37:c0:28:aa:b4:b3:
6d:9d:10:1c:3c:b3:e9:7c:ba:87:b3:6d:fc:63:e2:
1c:4a:f5:84:c3:97:68:3f:a2:3e:0b:d9:fd:f3:1f:
51:15:ba:71:d6:5c:7a:b2:35:5b:3d:f9:36:db:a5:
09:fe:bb:1c:64:71:07:45:d8:f2:d4:25:f8:d5:68:
c2:a4:4c:96:8d:b0:07:04:39:6f:53:29:75:a7:8b:
62:4e:12:c9:ed:80:fe:c5:ac:05:b1:fc:16:c4:68:
a3:6c:03:e7:97:91:e0:bf:65:65:42:92:1e:25:53:
ff:52:a0:d4:3d:03:d2:f2:d0:4b:22:d1:10:24:e7:
f7:bf:e7:17:2f:df:c0:e6:09:b7:82:7a:e6:28:d8:
60:20:70:30:7d:57:97:36:62:9a:86:60:7a:bf:61:
7f:ee:ea:0e:ac:d7:0a:dc:1f:bf:12:45:7a:70:32:
8d:81:b5:13:b4:b2:c9:b7:4f:ce:ad:05:50:c4:0e:
b4:67:fc:cd:4c:07:6f:57:d4:70:ed:66:79:de:54:
78:0a:4f:b3:87:00:97:f3:67:f0:e1:1e:0c:59:03:
9b:7a:21:d9:74:2d:a4:12:20:89:63:cd:46:61:be:
d5:5d:b4:27:39:71:0c:f6:dc:27:52:b6:9f:51:2c:
13:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:06:16:56:BC:29:89:FB:40:24:BA:51:F3:2C:4C:1E:A2:68:79:34
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/TwYWVrwpiftAJLpR8yxMHqJoeTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
18:a1:a1:34:90:85:52:4e:8a:8d:d0:42:66:1d:47:40:a5:03:
c7:9e:e5:6d:ff:a7:77:ff:6c:21:1b:f4:4d:af:d5:a1:c7:cc:
0b:7f:d9:55:f9:81:05:be:e7:1c:a5:3a:61:9b:9b:22:00:97:
4e:15:95:0d:c6:c2:d0:a5:29:f3:62:82:bf:7b:66:f9:fd:81:
97:8d:f6:d5:99:2c:a3:c9:ce:d2:db:bf:df:e8:64:6a:25:2f:
e1:51:c8:24:cd:0b:a0:e8:99:0b:c1:3e:f8:5c:66:6c:3b:f3:
34:68:a4:fd:2b:ea:58:1e:3c:4a:9f:d1:9f:e4:27:f5:8b:4c:
ae:73:1d:b8:ee:2e:c1:b7:bd:3f:ba:ec:a9:1b:ce:ec:59:11:
dc:43:09:a3:ef:f0:8a:80:ac:ea:fa:83:12:fd:b7:3b:39:7c:
23:49:5d:af:c9:42:85:52:43:7d:27:46:50:21:27:7c:d8:0f:
2c:71:5e:da:e0:11:16:57:63:76:47:57:17:ae:56:a6:22:0f:
dd:ad:3e:a4:54:74:ba:6a:ee:80:ec:2f:46:27:a5:9c:c1:e5:
1b:d6:b6:3e:e2:db:12:0c:53:fc:74:45:f6:75:b2:d6:3a:29:
1d:94:2d:a2:22:ff:d8:17:08:1b:d7:f1:cb:00:1e:9f:c2:cf:
03:e2:6a:6c
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYg+br4utEP9lHzQLkwDwPMBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwNTIxMTMxMDI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZjA2MTY1NmJjMjk4OWZiNDAyNGJhNTFmMzJjNGMxZWEyNjg3OTM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh0t+wBVJuoA3wCiqtLNtnRAcPLPp
fLqHs238Y+IcSvWEw5doP6I+C9n98x9RFbpx1lx6sjVbPfk226UJ/rscZHEHRdjy
1CX41WjCpEyWjbAHBDlvUyl1p4tiThLJ7YD+xawFsfwWxGijbAPnl5Hgv2VlQpIe
JVP/UqDUPQPS8tBLItEQJOf3v+cXL9/A5gm3gnrmKNhgIHAwfVeXNmKahmB6v2F/
7uoOrNcK3B+/EkV6cDKNgbUTtLLJt0/OrQVQxA60Z/zNTAdvV9Rw7WZ53lR4Ck+z
hwCX82fw4R4MWQObeiHZdC2kEiCJY81GYb7VXbQnOXEM9twnUrafUSwTHwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFE8GFla8KYn7QCS6UfMsTB6iaHk0MB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvVHdZV1Zyd3BpZnRBSkxwUjh5eE1IcUpvZVRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBABihoTSQhVJOio3QQmYd
R0ClA8ee5W3/p3f/bCEb9E2v1aHHzAt/2VX5gQW+5xylOmGbmyIAl04VlQ3GwtCl
KfNigr97Zvn9gZeN9tWZLKPJztLbv9/oZGolL+FRyCTNC6DomQvBPvhcZmw78zRo
pP0r6lgePEqf0Z/kJ/WLTK5zHbjuLsG3vT+67KkbzuxZEdxDCaPv8IqArOr6gxL9
tzs5fCNJXa/JQoVSQ30nRlAhJ3zYDyxxXtrgERZXY3ZHVxeuVqYiD92tPqRUdLpq
7oDsL0YnpZzB5RvWtj7i2xIMU/x0RfZ1stY6KR2ULaIi/9gXCBvX8csAHp/CzwPi
amw=
-----END CERTIFICATE-----
Generated at Wed Apr 30 17:50:59 2025 by rpki-client