Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cl5h-oNVazE1In27C2TvQ8yMgOY.roa
File: cl5h-oNVazE1In27C2TvQ8yMgOY.roa (raw, json)
Hash identifier: 3z63PZco2jLmSKlX1SMfDSg8Nlq1OVF8CMHBz2pso5E=
Subject key identifier: 72:5E:61:FA:83:55:6B:31:35:22:7D:BB:0B:64:EF:43:CC:8C:80:E6
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018815DF841C24EB05C81CC44D7CE262B59E
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cl5h-oNVazE1In27C2TvQ8yMgOY.roa
Signing time: Sat 13 May 2023 16:09:09 +0000
ROA not before: Sat 13 May 2023 16:09:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:15:df:84:1c:24:eb:05:c8:1c:c4:4d:7c:e2:62:b5:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 13 16:09:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=725e61fa83556b3135227dbb0b64ef43cc8c80e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ac:49:e6:6c:00:52:9a:2a:bf:11:9b:aa:fc:
9c:b2:5c:32:73:e2:b9:3c:22:13:75:c3:64:e9:84:
7f:1d:91:4b:8f:a2:1f:bf:c3:be:96:b1:e5:21:b7:
17:1d:d2:54:f3:d2:a4:25:f9:9b:66:db:0a:0a:bd:
3c:7a:88:2d:d7:ac:df:9d:26:90:8d:08:eb:cc:39:
be:b4:1e:20:e3:c0:b7:3d:d3:90:87:53:a1:5e:d0:
42:26:ec:7b:0b:00:da:90:bb:6f:f6:77:d0:bd:0d:
ce:7f:bb:f7:da:9f:79:76:05:c5:94:74:81:00:5c:
25:da:56:9c:ac:6a:ef:0f:a3:c7:c7:ae:43:9c:51:
c1:ef:6a:e3:b2:34:48:18:84:49:65:8f:50:00:1b:
56:d7:5c:52:db:b0:76:c9:a1:43:2b:02:77:9a:8c:
9b:53:7d:9e:03:3c:79:ec:78:75:00:44:61:50:88:
09:bd:02:3a:22:dc:34:4c:c3:fe:a4:1e:93:0a:02:
aa:fd:0d:f8:4d:0f:5f:74:19:3c:43:98:65:ef:cc:
08:1b:85:97:4a:84:40:14:c7:05:41:80:b7:81:93:
b8:63:31:8c:29:54:aa:27:a6:61:1b:01:1b:9f:95:
a9:47:a0:71:2f:45:da:de:ef:80:ff:3f:36:75:24:
83:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:5E:61:FA:83:55:6B:31:35:22:7D:BB:0B:64:EF:43:CC:8C:80:E6
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cl5h-oNVazE1In27C2TvQ8yMgOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
1c:92:3d:aa:5c:4a:91:dc:67:ce:13:a4:13:2e:83:78:f7:8a:
b5:e5:f4:95:6d:97:ea:5a:2f:e4:bc:8c:22:29:09:54:29:53:
50:37:38:58:b9:24:e6:1b:be:d4:b7:80:38:9d:8c:22:ac:59:
96:3f:4e:f2:30:56:50:35:03:11:3b:1f:dc:ec:0b:57:9f:29:
4a:54:37:5f:de:46:13:9f:d9:71:05:07:cb:c7:ed:15:a4:08:
a4:5a:2a:ac:3e:d3:56:0b:28:bb:e2:ab:8c:8e:c9:41:2c:3c:
b5:2c:e6:1f:d5:85:2d:83:d8:c1:f5:d0:fe:f4:b5:01:48:8e:
ea:99:04:b3:0a:27:eb:47:c3:06:ff:49:85:ec:1c:37:09:cd:
5a:ba:1b:e2:89:d4:7f:5d:cd:07:79:d9:0c:e3:56:c7:cc:18:
f5:53:54:9f:99:7f:15:e7:ab:65:27:9f:3f:4d:c3:07:63:6d:
b4:16:19:d2:5a:2c:48:dd:6e:df:46:f9:b7:c1:f8:0c:63:8c:
6d:97:28:41:48:43:d3:92:33:45:5f:94:bc:74:7e:aa:f2:e5:
53:e2:1d:dd:ef:0e:99:8e:f6:e1:ca:ce:37:c0:78:3f:f3:ba:
27:51:23:22:00:79:08:4c:fd:4d:04:a3:e3:26:9e:d3:7d:a7:
68:e0:20:a1
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYgV34QcJOsFyBzETXziYrWeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwNTEzMTYwOTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MjVlNjFmYTgzNTU2YjMxMzUyMjdkYmIwYjY0ZWY0M2NjOGM4MGU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoqxJ5mwAUpoqvxGbqvycslwyc+K5
PCITdcNk6YR/HZFLj6Ifv8O+lrHlIbcXHdJU89KkJfmbZtsKCr08eogt16zfnSaQ
jQjrzDm+tB4g48C3PdOQh1OhXtBCJux7CwDakLtv9nfQvQ3Of7v32p95dgXFlHSB
AFwl2lacrGrvD6PHx65DnFHB72rjsjRIGIRJZY9QABtW11xS27B2yaFDKwJ3moyb
U32eAzx57Hh1AERhUIgJvQI6Itw0TMP+pB6TCgKq/Q34TQ9fdBk8Q5hl78wIG4WX
SoRAFMcFQYC3gZO4YzGMKVSqJ6ZhGwEbn5WpR6BxL0Xa3u+A/z82dSSDnQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFHJeYfqDVWsxNSJ9uwtk70PMjIDmMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvY2w1aC1vTlZhekUxSW4yN0MyVHZROHlNZ09ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBABySPapcSpHcZ84TpBMu
g3j3irXl9JVtl+paL+S8jCIpCVQpU1A3OFi5JOYbvtS3gDidjCKsWZY/TvIwVlA1
AxE7H9zsC1efKUpUN1/eRhOf2XEFB8vH7RWkCKRaKqw+01YLKLviq4yOyUEsPLUs
5h/VhS2D2MH10P70tQFIjuqZBLMKJ+tHwwb/SYXsHDcJzVq6G+KJ1H9dzQd52Qzj
VsfMGPVTVJ+ZfxXnq2Unnz9NwwdjbbQWGdJaLEjdbt9G+bfB+AxjjG2XKEFIQ9OS
M0VflLx0fqry5VPiHd3vDpmO9uHKzjfAeD/zuidRIyIAeQhM/U0Eo+MmntN9p2jg
IKE=
-----END CERTIFICATE-----
Generated at Thu May 1 20:48:38 2025 by rpki-client