Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/UXEA-bFTONEWdqOPmRkH--eeRU8.roa
File: UXEA-bFTONEWdqOPmRkH--eeRU8.roa (raw, json)
Hash identifier: ZqiTIOU8+rICfuO+CIu2XZNSO3XdmT8j4/rJ0PlOVO0=
Subject key identifier: 51:71:00:F9:B1:53:38:D1:16:76:A3:8F:99:19:07:FB:E7:9E:45:4F
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0188492868EA8D18A3FD4F7621BE9389C5AE
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/UXEA-bFTONEWdqOPmRkH--eeRU8.roa
Signing time: Tue 23 May 2023 15:09:25 +0000
ROA not before: Tue 23 May 2023 15:09:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:49:28:68:ea:8d:18:a3:fd:4f:76:21:be:93:89:c5:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 23 15:09:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=517100f9b15338d11676a38f991907fbe79e454f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b1:15:f9:5e:90:70:c1:59:58:e5:83:41:79:
a4:fc:d8:ac:e9:5a:56:67:ee:5a:b4:b4:9c:db:2f:
d4:ca:78:e5:90:b9:89:8f:b2:df:1c:2f:67:75:8b:
31:9c:7f:b3:d3:e5:d7:36:12:f6:5e:33:44:7d:67:
bc:09:b7:f5:5e:ef:ae:7b:34:1e:b2:ed:51:c6:ea:
af:41:e6:59:f1:e4:1f:86:e3:2e:4f:d1:71:a5:c9:
5d:5b:d6:a5:4a:7e:10:bf:74:cf:b0:bc:8e:34:9b:
96:75:43:61:84:c1:92:de:17:ab:31:2d:20:54:ad:
13:ac:6a:63:46:10:70:81:e9:e4:c5:35:f8:5c:34:
3b:95:63:af:87:f2:2a:db:90:2f:7a:68:34:88:fa:
a4:36:20:74:31:2f:3d:59:d5:82:08:81:20:37:db:
0f:42:0a:1a:8a:0e:66:b8:64:29:56:94:74:62:ea:
41:95:20:17:2e:77:00:81:6f:0c:01:23:5c:12:f0:
2c:4c:03:bb:b0:27:ba:73:16:3e:e9:a6:ca:0f:7b:
d4:ab:0b:0e:1b:27:6d:f7:4d:18:3c:df:04:4a:a4:
34:2a:86:4c:8c:22:f5:60:7a:9c:83:1d:1b:5e:0a:
73:98:52:85:6e:9a:54:75:f5:38:25:73:77:a4:96:
2a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:71:00:F9:B1:53:38:D1:16:76:A3:8F:99:19:07:FB:E7:9E:45:4F
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/UXEA-bFTONEWdqOPmRkH--eeRU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
9a:3f:45:f3:a7:7e:1f:e3:be:56:46:b2:ad:c5:1e:f5:14:49:
c9:bf:9d:28:fe:78:a6:e3:6b:42:24:aa:8c:f2:65:61:d0:5b:
80:38:91:58:95:a0:18:eb:71:e3:78:e2:3d:f1:2d:d7:42:8a:
c1:fa:e3:5d:52:1f:33:10:84:68:2a:a9:4d:8b:e0:f4:3d:39:
d2:09:45:6b:bf:05:79:a4:e0:cd:33:e5:7b:60:27:ae:17:4e:
1d:b2:70:ff:1c:3b:da:c3:48:5a:81:72:22:cb:c9:e1:2c:75:
1a:b1:4f:38:a4:21:c5:8e:3d:a5:6b:e6:f7:80:37:1c:fa:7d:
59:c3:b5:35:97:04:19:53:69:1e:69:a8:fa:7a:ff:70:67:a2:
d3:42:b6:7e:e7:6d:6f:a9:f6:83:6d:34:14:92:de:83:bc:c1:
eb:72:84:91:45:ef:5d:28:fb:49:d4:3b:63:77:cf:e9:0a:80:
7b:de:53:4f:1b:fd:70:82:6c:d2:37:0a:8e:ed:e3:68:cd:9f:
8f:e2:f9:8c:84:ec:16:34:5b:d5:67:a4:b4:a9:ac:c1:9e:b5:
61:84:83:62:58:89:ea:dd:9f:91:b4:1a:49:d3:49:4d:0f:f8:
9e:70:e3:72:86:3c:e0:5c:af:69:b8:b2:08:e4:c8:70:6c:78:
7c:26:66:2e
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYhJKGjqjRij/U92Ib6TicWuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwNTIzMTUwOTI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTcxMDBmOWIxNTMzOGQxMTY3NmEzOGY5OTE5MDdmYmU3OWU0NTRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn7EV+V6QcMFZWOWDQXmk/Nis6VpW
Z+5atLSc2y/UynjlkLmJj7LfHC9ndYsxnH+z0+XXNhL2XjNEfWe8Cbf1Xu+uezQe
su1RxuqvQeZZ8eQfhuMuT9FxpcldW9alSn4Qv3TPsLyONJuWdUNhhMGS3herMS0g
VK0TrGpjRhBwgenkxTX4XDQ7lWOvh/Iq25Avemg0iPqkNiB0MS89WdWCCIEgN9sP
Qgoaig5muGQpVpR0YupBlSAXLncAgW8MASNcEvAsTAO7sCe6cxY+6abKD3vUqwsO
Gydt900YPN8ESqQ0KoZMjCL1YHqcgx0bXgpzmFKFbppUdfU4JXN3pJYqLQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFFFxAPmxUzjRFnajj5kZB/vnnkVPMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvVVhFQS1iRlRPTkVXZHFPUG1Sa0gtLWVlUlU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAJo/RfOnfh/jvlZGsq3F
HvUUScm/nSj+eKbja0IkqozyZWHQW4A4kViVoBjrceN44j3xLddCisH6411SHzMQ
hGgqqU2L4PQ9OdIJRWu/BXmk4M0z5XtgJ64XTh2ycP8cO9rDSFqBciLLyeEsdRqx
TzikIcWOPaVr5veANxz6fVnDtTWXBBlTaR5pqPp6/3BnotNCtn7nbW+p9oNtNBSS
3oO8wetyhJFF710o+0nUO2N3z+kKgHveU08b/XCCbNI3Co7t42jNn4/i+YyE7BY0
W9VnpLSprMGetWGEg2JYierdn5G0GknTSU0P+J5w43KGPOBcr2m4sgjkyHBseHwm
Zi4=
-----END CERTIFICATE-----
Generated at Thu May 1 15:02:24 2025 by rpki-client