Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/akFvhdKKLRBL50KEbSnDC5735Wg.roa
File: akFvhdKKLRBL50KEbSnDC5735Wg.roa (raw, json)
Hash identifier: 70+/RBxwlESQG7u16xR3NqaSdBOd87MZk+FO7v4JNYE=
Subject key identifier: 6A:41:6F:85:D2:8A:2D:10:4B:E7:42:84:6D:29:C3:0B:9E:F7:E5:68
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0187EE66FAB42612A33856972B7609B2A200
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/akFvhdKKLRBL50KEbSnDC5735Wg.roa
Signing time: Sat 06 May 2023 00:12:18 +0000
ROA not before: Sat 06 May 2023 00:12:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ee:66:fa:b4:26:12:a3:38:56:97:2b:76:09:b2:a2:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 6 00:12:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a416f85d28a2d104be742846d29c30b9ef7e568
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:98:e0:f0:e3:c7:49:68:66:07:f3:40:fb:f5:
7a:90:8a:4e:4d:37:87:20:5a:4b:55:3e:b4:75:c5:
72:9f:65:55:71:3c:9b:51:2a:03:bf:7f:7a:cc:e2:
84:76:66:2d:a7:fd:f8:dd:77:5d:c1:39:cc:36:91:
42:09:05:c9:dd:cb:af:5d:aa:a8:8c:c6:0d:da:52:
4c:d3:3c:fa:f7:59:ed:7d:86:7e:f3:50:dc:8d:f8:
d2:73:28:30:70:fb:c4:ea:c0:73:91:73:c1:b8:50:
ed:5f:bf:67:cb:bc:e7:42:07:f1:0d:3e:07:2f:ce:
5b:a5:41:eb:e4:56:83:8b:4a:97:1d:89:9b:f9:93:
b3:17:0b:1d:3c:81:88:52:30:7d:e8:ea:ec:04:26:
21:7e:11:11:15:6a:41:81:3d:7a:0a:06:20:b2:1c:
f4:50:8f:0a:77:93:43:d5:d6:0b:66:b4:a9:ff:af:
34:7c:c0:16:b7:be:cb:e7:ec:5b:df:10:d0:cb:b0:
fe:03:ca:39:24:54:59:b5:e1:ed:33:f1:8b:f5:2f:
16:3f:7e:f8:dc:77:dc:09:2e:65:de:29:82:df:00:
5f:7e:f9:ea:2e:43:97:3b:67:f5:4d:b9:05:d5:da:
c0:ac:6c:c3:c0:27:1e:6e:f5:97:98:e8:20:62:04:
06:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:41:6F:85:D2:8A:2D:10:4B:E7:42:84:6D:29:C3:0B:9E:F7:E5:68
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/akFvhdKKLRBL50KEbSnDC5735Wg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
b0:ae:9b:57:86:11:98:2a:e3:9d:ad:77:0b:28:6e:07:98:a5:
2f:ff:57:87:5e:04:00:56:f1:5d:47:f9:d2:34:b7:e4:96:b3:
e8:70:79:a0:f0:bc:5d:02:9d:92:8a:6a:9a:b4:5a:59:ed:e0:
be:e8:63:ed:e5:d5:a6:54:f3:a4:a6:ed:7d:46:7e:42:71:3a:
97:ba:d8:58:70:39:b7:03:54:39:fc:71:35:66:9a:5d:19:69:
90:f6:78:63:8f:27:f6:bb:b6:02:9c:19:de:3a:b2:15:2b:66:
c0:e3:24:d6:86:93:05:dd:bc:a0:67:ee:e4:d2:4b:14:1e:78:
cb:14:a1:ed:81:37:35:e2:2a:37:ca:72:42:d5:82:7b:26:05:
d5:92:ee:c3:68:98:ef:43:55:50:05:93:2a:35:0a:04:f7:c5:
19:17:ff:3c:93:bc:28:9b:37:a6:9f:74:a8:85:28:b4:1c:54:
f8:72:90:71:3b:8a:ac:44:f9:f6:cc:e6:7a:e9:cb:6e:1b:9d:
f1:02:88:8b:66:78:b2:d1:90:f0:87:31:b7:51:9f:01:59:da:
b0:6c:e6:14:54:21:fb:48:b0:14:64:b1:2c:5b:cf:5f:92:61:
48:02:4f:42:e0:6d:b1:50:88:39:04:83:13:c2:55:d4:b0:02:
b4:a1:5c:b9
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYfuZvq0JhKjOFaXK3YJsqIAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwNTA2MDAxMjE4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YTQxNmY4NWQyOGEyZDEwNGJlNzQyODQ2ZDI5YzMwYjllZjdlNTY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1pjg8OPHSWhmB/NA+/V6kIpOTTeH
IFpLVT60dcVyn2VVcTybUSoDv396zOKEdmYtp/343XddwTnMNpFCCQXJ3cuvXaqo
jMYN2lJM0zz691ntfYZ+81DcjfjScygwcPvE6sBzkXPBuFDtX79ny7znQgfxDT4H
L85bpUHr5FaDi0qXHYmb+ZOzFwsdPIGIUjB96OrsBCYhfhERFWpBgT16CgYgshz0
UI8Kd5ND1dYLZrSp/680fMAWt77L5+xb3xDQy7D+A8o5JFRZteHtM/GL9S8WP374
3HfcCS5l3imC3wBffvnqLkOXO2f1TbkF1drArGzDwCcebvWXmOggYgQGdwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFGpBb4XSii0QS+dChG0pwwue9+VoMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvYWtGdmhkS0tMUkJMNTBLRWJTbkRDNTczNVdnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBALCum1eGEZgq452tdwso
bgeYpS//V4deBABW8V1H+dI0t+SWs+hweaDwvF0CnZKKapq0Wlnt4L7oY+3l1aZU
86Sm7X1GfkJxOpe62FhwObcDVDn8cTVmml0ZaZD2eGOPJ/a7tgKcGd46shUrZsDj
JNaGkwXdvKBn7uTSSxQeeMsUoe2BNzXiKjfKckLVgnsmBdWS7sNomO9DVVAFkyo1
CgT3xRkX/zyTvCibN6afdKiFKLQcVPhykHE7iqxE+fbM5nrpy24bnfECiItmeLLR
kPCHMbdRnwFZ2rBs5hRUIftIsBRksSxbz1+SYUgCT0LgbbFQiDkEgxPCVdSwArSh
XLk=
-----END CERTIFICATE-----
Generated at Thu May 1 15:26:30 2025 by rpki-client