Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/_czhNo76UMuz1pFVBcxSXpf7dow.roa
File: _czhNo76UMuz1pFVBcxSXpf7dow.roa (raw, json)
Hash identifier: S/6aCyKZ1uIj+DhWHuqcGz8H2Z36Zbf//J116c2kuwA=
Subject key identifier: FD:CC:E1:36:8E:FA:50:CB:B3:D6:91:55:05:CC:52:5E:97:FB:76:8C
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0182259CB50E581CE438884418FDB562C5D7
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/_czhNo76UMuz1pFVBcxSXpf7dow.roa
Signing time: Fri 22 Jul 2022 11:13:23 +0000
ROA not before: Fri 22 Jul 2022 11:13:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:25:9c:b5:0e:58:1c:e4:38:88:44:18:fd:b5:62:c5:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 22 11:13:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fdcce1368efa50cbb3d6915505cc525e97fb768c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:70:55:64:25:14:86:1e:3b:8e:f8:05:de:56:
4e:e7:eb:10:57:ce:bc:ba:69:f7:d1:c5:8f:71:d7:
b8:1b:1f:96:e0:06:81:28:3b:29:44:01:32:58:a4:
a4:9b:0b:1b:28:cd:c9:09:80:51:8f:b9:8d:bd:97:
3e:fa:aa:a2:d6:7b:21:33:03:82:84:b5:1c:88:2f:
5c:e3:32:bf:33:05:37:31:57:bd:95:bf:cc:b9:89:
40:e9:43:29:49:5c:ba:bb:bf:16:cf:6e:51:9f:5e:
40:e9:74:9b:02:42:81:25:f7:b3:fb:5d:ed:d7:0c:
41:11:97:5f:92:df:5d:18:45:96:64:11:87:27:79:
40:9d:28:0e:f6:e9:b6:93:b3:cc:ff:90:4a:27:a4:
9c:50:9a:f4:ec:8e:34:69:54:ae:37:b8:78:7b:dd:
2e:f0:70:c9:d9:67:bd:28:7b:16:8c:7d:d6:0c:85:
19:59:2c:2e:ea:73:51:ba:c0:c1:60:fc:69:93:dd:
0f:a6:3d:81:f6:6e:bb:9e:61:e0:cc:69:cb:28:ae:
d3:02:2f:97:44:05:65:34:e1:2a:f7:7c:93:2e:46:
a6:46:3b:06:ea:d4:c4:01:70:6d:3b:f9:d4:0b:2a:
0a:bf:20:6b:dc:0a:0d:ac:77:95:31:2a:22:b4:6a:
92:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:CC:E1:36:8E:FA:50:CB:B3:D6:91:55:05:CC:52:5E:97:FB:76:8C
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/_czhNo76UMuz1pFVBcxSXpf7dow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
6a:ee:fd:b3:52:b4:8c:12:bc:f9:8f:ef:4e:d6:21:ad:9c:31:
e8:2d:d9:72:9d:ed:46:72:06:a6:70:d4:2b:dc:9b:78:71:e6:
f7:2d:e9:0b:82:8c:b8:1f:31:e6:45:ea:53:b2:3d:fe:9a:92:
13:d1:2c:17:7d:d0:91:0f:19:1c:c1:cb:5c:58:5e:4d:af:69:
3d:e1:ab:e8:3a:22:35:fc:2c:cb:af:40:d0:cb:c0:1d:78:0e:
dc:ae:b8:bd:20:80:e5:e9:a5:41:7d:9a:9f:88:df:26:8d:94:
cd:db:91:2c:63:69:6a:84:f6:d1:37:08:59:2a:6c:ef:f5:9b:
d7:de:7e:e5:6b:f6:84:f8:32:eb:21:a6:63:20:da:4b:ab:df:
0e:a8:df:21:32:f7:ec:a5:c3:33:ba:a7:33:1e:f5:f9:0b:ae:
41:22:58:2d:49:1f:29:cb:4a:cf:fd:bd:c5:86:b3:11:62:ff:
ed:ee:e9:07:02:58:86:b4:1d:be:e6:28:bd:ae:df:cf:bf:a0:
44:77:fd:96:23:89:33:43:77:5f:d7:60:f0:a5:c2:73:f0:bf:
26:63:c4:82:9a:3c:e8:2d:cd:7c:8b:ca:68:c3:a2:c1:16:20:
93:b0:de:ef:ab:76:b1:b3:76:ec:5b:77:5a:41:8a:ec:90:a1:
e6:a8:cc:84
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYIlnLUOWBzkOIhEGP21YsXXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjIwNzIyMTExMzIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZGNjZTEzNjhlZmE1MGNiYjNkNjkxNTUwNWNjNTI1ZTk3ZmI3NjhjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArHBVZCUUhh47jvgF3lZO5+sQV868
umn30cWPcde4Gx+W4AaBKDspRAEyWKSkmwsbKM3JCYBRj7mNvZc++qqi1nshMwOC
hLUciC9c4zK/MwU3MVe9lb/MuYlA6UMpSVy6u78Wz25Rn15A6XSbAkKBJfez+13t
1wxBEZdfkt9dGEWWZBGHJ3lAnSgO9um2k7PM/5BKJ6ScUJr07I40aVSuN7h4e90u
8HDJ2We9KHsWjH3WDIUZWSwu6nNRusDBYPxpk90Ppj2B9m67nmHgzGnLKK7TAi+X
RAVlNOEq93yTLkamRjsG6tTEAXBtO/nUCyoKvyBr3AoNrHeVMSoitGqSrwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFP3M4TaO+lDLs9aRVQXMUl6X+3aMMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvX2N6aE5vNzZVTXV6MXBGVkJjeFNYcGY3ZG93LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAGru/bNStIwSvPmP707W
Ia2cMegt2XKd7UZyBqZw1Cvcm3hx5vct6QuCjLgfMeZF6lOyPf6akhPRLBd90JEP
GRzBy1xYXk2vaT3hq+g6IjX8LMuvQNDLwB14DtyuuL0ggOXppUF9mp+I3yaNlM3b
kSxjaWqE9tE3CFkqbO/1m9fefuVr9oT4MushpmMg2kur3w6o3yEy9+ylwzO6pzMe
9fkLrkEiWC1JHynLSs/9vcWGsxFi/+3u6QcCWIa0Hb7mKL2u38+/oER3/ZYjiTND
d1/XYPClwnPwvyZjxIKaPOgtzXyLymjDosEWIJOw3u+rdrGzduxbd1pBiuyQoeao
zIQ=
-----END CERTIFICATE-----
Generated at Wed Apr 30 17:42:16 2025 by rpki-client