Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ZAx_7Zco_pvatQovSZXGp48If0w.roa
File: ZAx_7Zco_pvatQovSZXGp48If0w.roa (raw, json)
Hash identifier: 2SrQuwlwaSkxlbLaDqYK8cPaVbfSGdcdWMSZpC29oBY=
Subject key identifier: 64:0C:7F:ED:97:28:FE:9B:DA:B5:0A:2F:49:95:C6:A7:8F:08:7F:4C
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0189EE6367833B16A58AA56F28A912B8E960
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ZAx_7Zco_pvatQovSZXGp48If0w.roa
Signing time: Sun 13 Aug 2023 10:13:59 +0000
ROA not before: Sun 13 Aug 2023 10:13:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:189:a0e4:5c7d/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ee:63:67:83:3b:16:a5:8a:a5:6f:28:a9:12:b8:e9:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 13 10:13:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=640c7fed9728fe9bdab50a2f4995c6a78f087f4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:65:db:f1:ec:3a:c4:6e:59:d9:6c:e2:41:dd:
71:26:fe:73:72:91:6f:0d:a6:de:46:84:7d:d7:16:
a1:e9:28:0a:e1:50:9c:27:37:c5:5a:bb:1f:ee:3e:
93:33:86:cb:d9:65:97:a7:1b:fe:0f:e2:7f:51:e2:
11:e5:72:fa:68:56:14:33:cb:bf:ec:3a:4d:67:1f:
ef:74:8a:77:74:2d:dc:ff:84:93:5c:d9:e9:0a:32:
fa:dd:47:8a:c4:14:7f:23:75:f4:cb:8d:7e:51:f4:
c8:e6:01:51:f1:0c:87:08:5e:f4:d5:92:71:bd:93:
19:c0:32:33:c6:3f:01:99:cd:48:33:af:fd:b9:d7:
0b:c6:d8:a4:08:32:6b:f4:c4:65:19:5c:35:c6:37:
b8:b2:4d:19:f6:8f:6b:7a:3a:91:4f:f4:96:ac:6e:
ff:2e:09:ac:90:55:ce:4f:51:a0:54:9a:39:05:de:
79:7b:62:0f:99:fd:4b:4a:e8:f3:70:60:df:49:46:
b1:d7:46:b4:42:c2:fc:88:f1:c1:8e:e2:06:8a:79:
13:20:e7:ae:cc:6e:af:be:e5:08:f3:4d:4d:27:9b:
6d:fc:84:46:cd:9c:cf:74:de:1a:1d:65:f8:39:3f:
29:28:d9:58:0d:0a:b9:82:45:0d:18:dd:d9:bc:95:
1e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:0C:7F:ED:97:28:FE:9B:DA:B5:0A:2F:49:95:C6:A7:8F:08:7F:4C
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ZAx_7Zco_pvatQovSZXGp48If0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
19:2c:e8:9c:fa:78:6a:ba:69:78:5c:0c:e4:72:9b:9c:7a:78:
53:73:8c:e0:50:03:50:09:47:13:23:95:c4:6a:5c:54:27:5b:
fc:6a:83:86:31:8d:d8:0c:b2:d7:87:19:ac:fe:e7:cf:4e:43:
2b:eb:a7:73:3c:66:d2:30:b5:74:a4:14:5b:13:1e:5f:24:e2:
82:16:bf:5f:6b:79:2a:26:42:d2:14:ad:62:c6:09:cc:7c:6a:
52:b1:04:1d:34:04:b5:cc:f9:d2:18:f6:6e:fb:d6:9b:b0:c0:
61:18:53:e2:ee:96:c3:8e:77:35:2d:43:17:cc:dd:4b:39:f5:
9b:e8:d3:8f:38:51:72:5d:0c:d1:b8:e7:f7:8d:3d:ef:e9:88:
c4:2f:af:12:1c:17:ad:0f:cb:b7:67:79:41:da:06:36:b4:35:
95:21:48:90:d6:9a:1a:e7:cb:07:a3:02:61:1d:b6:ac:1a:02:
68:12:ec:a8:a7:0d:fc:d8:e6:c1:28:d9:e7:b4:64:77:96:ba:
81:29:21:e6:3b:9f:bf:34:a6:8e:61:ca:f2:75:88:93:43:18:
c3:c6:76:a5:8d:74:40:21:e9:a8:51:d3:93:4e:18:1a:5f:91:
8a:e2:5c:41:ba:37:16:08:86:a9:5e:d5:6b:63:88:94:61:74:
0d:3f:ad:c8
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYnuY2eDOxaliqVvKKkSuOlgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwODEzMTAxMzU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NDBjN2ZlZDk3MjhmZTliZGFiNTBhMmY0OTk1YzZhNzhmMDg3ZjRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnmXb8ew6xG5Z2WziQd1xJv5zcpFv
DabeRoR91xah6SgK4VCcJzfFWrsf7j6TM4bL2WWXpxv+D+J/UeIR5XL6aFYUM8u/
7DpNZx/vdIp3dC3c/4STXNnpCjL63UeKxBR/I3X0y41+UfTI5gFR8QyHCF701ZJx
vZMZwDIzxj8Bmc1IM6/9udcLxtikCDJr9MRlGVw1xje4sk0Z9o9rejqRT/SWrG7/
LgmskFXOT1GgVJo5Bd55e2IPmf1LSujzcGDfSUax10a0QsL8iPHBjuIGinkTIOeu
zG6vvuUI801NJ5tt/IRGzZzPdN4aHWX4OT8pKNlYDQq5gkUNGN3ZvJUe6QIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFGQMf+2XKP6b2rUKL0mVxqePCH9MMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvWkF4XzdaY29fcHZhdFFvdlNaWEdwNDhJZjB3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBABks6Jz6eGq6aXhcDORy
m5x6eFNzjOBQA1AJRxMjlcRqXFQnW/xqg4YxjdgMsteHGaz+589OQyvrp3M8ZtIw
tXSkFFsTHl8k4oIWv19reSomQtIUrWLGCcx8alKxBB00BLXM+dIY9m771puwwGEY
U+LulsOOdzUtQxfM3Us59Zvo0484UXJdDNG45/eNPe/piMQvrxIcF60Py7dneUHa
Bja0NZUhSJDWmhrnywejAmEdtqwaAmgS7KinDfzY5sEo2ee0ZHeWuoEpIeY7n780
po5hyvJ1iJNDGMPGdqWNdEAh6ahR05NOGBpfkYriXEG6NxYIhqle1WtjiJRhdA0/
rcg=
-----END CERTIFICATE-----
Generated at Thu May 1 07:20:28 2025 by rpki-client