Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/d6M174WlczggCqe-hLwsDa3wzLE.roa
File: d6M174WlczggCqe-hLwsDa3wzLE.roa (raw, json)
Hash identifier: 9AQNGCIcik+mGkvkACy+sBHcEAjm1+NCwW1y/ZWcoUk=
Subject key identifier: 77:A3:35:EF:85:A5:73:38:20:0A:A7:BE:84:BC:2C:0D:AD:F0:CC:B1
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0189D3C60989E391C615039F9D61DA32DC9E
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/d6M174WlczggCqe-hLwsDa3wzLE.roa
Signing time: Tue 08 Aug 2023 06:11:58 +0000
ROA not before: Tue 08 Aug 2023 06:11:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:189:a0e4:5c7d/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d3:c6:09:89:e3:91:c6:15:03:9f:9d:61:da:32:dc:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 8 06:11:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77a335ef85a57338200aa7be84bc2c0dadf0ccb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:41:78:b5:47:49:2c:e6:6a:b8:ee:d1:28:52:
c8:f5:1b:e0:d8:d1:e6:bb:97:96:62:b9:04:e0:4d:
3f:95:47:fe:90:b0:83:89:8f:59:18:f2:7b:6c:34:
56:29:cf:f5:82:00:e2:ad:5b:d1:1b:d4:be:6c:4b:
2f:e5:6d:11:52:b6:bf:10:7a:1a:c7:15:ab:23:4d:
52:e4:4c:50:d4:56:1b:e0:7d:9e:b2:c2:7b:c5:90:
0a:62:fd:1a:b7:79:7b:02:4d:64:85:83:a3:79:97:
b8:07:ba:ae:8f:ca:2a:29:8c:19:f9:64:98:4a:29:
55:81:ef:7b:9e:a8:cd:0c:ef:58:bb:17:63:35:59:
40:ab:33:6e:42:43:63:62:cb:d2:20:ed:d3:e4:36:
9e:27:36:68:9b:13:5a:f9:04:bc:32:39:24:50:b1:
95:d4:89:5a:a7:8e:f6:a8:e3:32:83:4a:e4:a1:86:
92:aa:12:53:32:2c:2e:49:07:65:90:32:b1:5f:52:
7d:fd:fc:25:3d:40:b3:63:4f:6b:89:8a:d6:9c:b7:
e5:13:7a:52:cf:4c:40:d0:c8:07:1e:6b:7d:a1:38:
f4:d9:0e:e4:e5:a2:d4:7a:86:bb:96:27:93:3b:01:
8d:45:12:8c:8f:fa:d8:e6:d6:e9:8d:63:47:ba:9c:
26:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:A3:35:EF:85:A5:73:38:20:0A:A7:BE:84:BC:2C:0D:AD:F0:CC:B1
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/d6M174WlczggCqe-hLwsDa3wzLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
ac:8a:83:46:27:21:ee:d9:3f:37:71:4f:77:41:a0:bc:44:39:
21:87:f5:7b:ef:71:d4:d9:50:6e:12:16:34:5d:47:af:14:f4:
5e:89:34:d5:91:33:dd:1c:47:f7:79:e9:a2:57:16:b1:c5:d1:
5d:47:0e:21:2d:86:d2:8e:d8:b8:3b:21:0b:2b:72:1b:f1:1b:
51:7d:c5:a9:fc:71:6d:13:bb:15:4f:ff:74:1c:cd:67:30:24:
c8:36:fd:a8:3e:19:5f:2a:bf:f4:a1:1e:3a:eb:b6:3e:f0:9d:
63:ab:7a:c3:4c:74:d0:b5:82:a0:dd:7d:84:af:b7:fc:43:42:
92:64:26:09:fd:2b:3e:d7:e8:8c:5e:64:eb:ea:79:20:3f:4b:
be:b2:f3:6b:95:ba:d0:e0:30:27:33:11:6d:bc:72:3e:6a:e5:
84:b1:03:1e:69:ed:fe:6f:b5:8b:3d:fa:81:69:f4:5e:ae:24:
26:75:aa:15:f8:49:82:2e:77:00:80:8e:c5:02:88:a5:f2:3b:
39:e5:0a:f4:b6:67:e0:fb:d2:15:04:77:80:af:e0:19:53:e9:
d6:34:f3:93:44:24:29:01:c5:ea:d9:42:f7:9b:0e:3a:57:bf:
74:d4:15:8f:eb:29:b5:fc:c7:9e:71:fa:b7:18:19:b2:38:89:
4d:98:44:df
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYnTxgmJ45HGFQOfnWHaMtyeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwODA4MDYxMTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3N2EzMzVlZjg1YTU3MzM4MjAwYWE3YmU4NGJjMmMwZGFkZjBjY2IxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4EF4tUdJLOZquO7RKFLI9Rvg2NHm
u5eWYrkE4E0/lUf+kLCDiY9ZGPJ7bDRWKc/1ggDirVvRG9S+bEsv5W0RUra/EHoa
xxWrI01S5ExQ1FYb4H2essJ7xZAKYv0at3l7Ak1khYOjeZe4B7quj8oqKYwZ+WSY
SilVge97nqjNDO9YuxdjNVlAqzNuQkNjYsvSIO3T5DaeJzZomxNa+QS8MjkkULGV
1Ilap472qOMyg0rkoYaSqhJTMiwuSQdlkDKxX1J9/fwlPUCzY09riYrWnLflE3pS
z0xA0MgHHmt9oTj02Q7k5aLUeoa7lieTOwGNRRKMj/rY5tbpjWNHupwmPQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFHejNe+FpXM4IAqnvoS8LA2t8MyxMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvZDZNMTc0V2xjemdnQ3FlLWhMd3NEYTN3ekxFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAKyKg0YnIe7ZPzdxT3dB
oLxEOSGH9XvvcdTZUG4SFjRdR68U9F6JNNWRM90cR/d56aJXFrHF0V1HDiEthtKO
2Lg7IQsrchvxG1F9xan8cW0TuxVP/3QczWcwJMg2/ag+GV8qv/ShHjrrtj7wnWOr
esNMdNC1gqDdfYSvt/xDQpJkJgn9Kz7X6IxeZOvqeSA/S76y82uVutDgMCczEW28
cj5q5YSxAx5p7f5vtYs9+oFp9F6uJCZ1qhX4SYIudwCAjsUCiKXyOznlCvS2Z+D7
0hUEd4Cv4BlT6dY085NEJCkBxerZQvebDjpXv3TUFY/rKbX8x55x+rcYGbI4iU2Y
RN8=
-----END CERTIFICATE-----
Generated at Thu May 1 06:46:36 2025 by rpki-client