Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/hwETK79Mec-5ztDuJcwpE_lZbo4.roa
File: hwETK79Mec-5ztDuJcwpE_lZbo4.roa (raw, json)
Hash identifier: L7w+fpHoQnMnRdM5p4M43FGsGunwsXiy/YNYLh3PDpg=
Subject key identifier: 87:01:13:2B:BF:4C:79:CF:B9:CE:D0:EE:25:CC:29:13:F9:59:6E:8E
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 91EFFD93
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/hwETK79Mec-5ztDuJcwpE_lZbo4.roa
Signing time: Sun 03 Jul 2022 04:11:25 +0000
ROA not before: Sun 03 Jul 2022 04:11:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2448424339 (0x91effd93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 3 04:11:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8701132bbf4c79cfb9ced0ee25cc2913f9596e8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b6:86:c6:eb:6e:72:f6:51:c3:09:62:89:fc:
c2:5c:cd:21:7b:f8:3b:9d:1b:bf:c2:ac:91:04:20:
f4:e5:b9:07:04:f6:8f:a8:d5:5d:7f:f0:3a:a5:fc:
e3:5c:48:27:54:93:72:ec:c1:fc:7f:12:c2:4b:de:
8b:8f:7a:9a:d0:d8:40:53:53:06:f1:6a:5f:ae:50:
5b:71:2c:5f:9d:b5:25:15:35:7e:ae:ca:42:f3:95:
a1:95:c2:6d:a1:8e:d6:44:af:c9:06:43:cf:23:b8:
ef:20:69:6f:5b:13:07:e3:b9:c4:2c:6d:4a:9e:a4:
c4:72:3b:97:c3:75:7e:49:b9:e7:25:36:90:f3:ed:
a0:35:45:af:38:22:21:05:01:fd:92:2e:63:ed:d7:
3f:a7:3c:e2:03:c0:e0:33:f3:4f:50:6d:94:b2:74:
b7:6e:e5:7e:0c:75:65:7d:8b:6b:b4:02:78:f1:b4:
69:8f:ba:dd:1d:e3:73:af:8f:33:69:46:4f:4e:80:
6b:54:a8:25:29:17:38:b6:5b:6d:f2:4a:47:d1:6b:
b0:2c:c2:b7:52:55:d7:11:06:fe:7e:56:29:e2:a8:
dc:1f:53:6d:72:5e:14:41:c4:35:17:58:6c:7c:1d:
88:1a:e5:14:0f:10:8a:37:cd:f8:0c:74:0b:6f:26:
17:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:01:13:2B:BF:4C:79:CF:B9:CE:D0:EE:25:CC:29:13:F9:59:6E:8E
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/hwETK79Mec-5ztDuJcwpE_lZbo4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
8b:28:bb:f9:55:ac:43:0c:8d:d9:ba:1d:77:94:49:4a:46:b4:
14:ba:fb:c9:ad:5c:19:a5:29:a7:01:90:fd:a6:87:55:17:36:
82:55:7d:8d:ac:0b:75:5a:62:5b:bb:36:eb:b9:7e:7b:ea:e4:
52:f1:03:9f:a2:f3:eb:ce:e5:61:cd:ab:67:72:b3:42:b6:41:
d1:c7:24:f3:8f:48:91:11:45:18:3b:90:99:99:ed:d0:21:b0:
49:81:b2:05:9c:78:fd:02:23:c8:95:08:ff:55:0b:cf:f4:68:
d1:09:79:c4:76:bf:a9:e9:42:e7:a2:60:01:64:08:f7:93:a4:
4f:73:6b:36:76:4b:55:c3:70:89:58:80:c9:60:ef:81:de:18:
d1:91:15:95:38:bb:e8:19:7e:6a:dc:da:5d:aa:44:49:22:32:
c3:d8:af:31:da:2c:00:52:24:87:22:fe:e2:46:ca:b0:b2:9b:
8a:8b:b2:e5:f1:0a:07:16:d5:87:63:47:ac:63:98:44:cb:b2:
03:5d:d3:7f:85:61:64:2c:12:51:f7:9d:80:81:94:49:85:24:
35:36:97:bb:7c:e2:b5:6b:2d:cf:c0:bd:6e:ad:81:63:a5:6c:
a9:ff:ac:fe:28:99:a9:b6:aa:79:b1:96:33:0c:7a:87:b9:7b:
20:a2:ca:4b
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgIFAJHv/ZMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMo
NzIwNDdiZTE1YjI3NTkwMmRjZjYxN2RjM2QwZTE2ZGMxZjMwODAyMjAeFw0yMjA3
MDMwNDExMjVaFw0yMzA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDg3MDExMzJiYmY0
Yzc5Y2ZiOWNlZDBlZTI1Y2MyOTEzZjk1OTZlOGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC2tobG625y9lHDCWKJ/MJczSF7+DudG7/CrJEEIPTluQcE
9o+o1V1/8Dql/ONcSCdUk3Lswfx/EsJL3ouPeprQ2EBTUwbxal+uUFtxLF+dtSUV
NX6uykLzlaGVwm2hjtZEr8kGQ88juO8gaW9bEwfjucQsbUqepMRyO5fDdX5Juecl
NpDz7aA1Ra84IiEFAf2SLmPt1z+nPOIDwOAz809QbZSydLdu5X4MdWV9i2u0Anjx
tGmPut0d43OvjzNpRk9OgGtUqCUpFzi2W23ySkfRa7AswrdSVdcRBv5+ViniqNwf
U21yXhRBxDUXWGx8HYga5RQPEIo3zfgMdAtvJhdDAgMBAAGjggIaMIICFjAdBgNV
HQ4EFgQUhwETK79Mec+5ztDuJcwpE/lZbo4wHwYDVR0jBBgwFoAUcgR74VsnWQLc
9hfcPQ4W3B8wgCIwDgYDVR0PAQH/BAQDAgeAMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVM
VC9jZ1I3NFZzbldRTGM5aGZjUFE0VzNCOHdnQ0kuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzVlLzc5ODQ0Ny0yMWY0LTQ1YWItOTlkYy0xYWJlM2FjMTBhYTYv
MS9od0VUSzc5TWVjLTV6dER1SmN3cEVfbFpibzQucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzVl
Lzc5ODQ0Ny0yMWY0LTQ1YWItOTlkYy0xYWJlM2FjMTBhYTYvMS9jZ1I3NFZzbldR
TGM5aGZjUFE0VzNCOHdnQ0kuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
MAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYDBAPBABgwDwQCAAIwCQMHACABBnwA
ZDANBgkqhkiG9w0BAQsFAAOCAQEAiyi7+VWsQwyN2bodd5RJSka0FLr7ya1cGaUp
pwGQ/aaHVRc2glV9jawLdVpiW7s267l+e+rkUvEDn6Lz687lYc2rZ3KzQrZB0cck
849IkRFFGDuQmZnt0CGwSYGyBZx4/QIjyJUI/1ULz/Ro0Ql5xHa/qelC56JgAWQI
95OkT3NrNnZLVcNwiViAyWDvgd4Y0ZEVlTi76Bl+atzaXapESSIyw9ivMdosAFIk
hyL+4kbKsLKbiouy5fEKBxbVh2NHrGOYRMuyA13Tf4VhZCwSUfedgIGUSYUkNTaX
u3zitWstz8C9bq2BY6Vsqf+s/iiZqbaqebGWMwx6h7l7IKLKSw==
-----END CERTIFICATE-----
Generated at Wed Apr 30 18:22:55 2025 by rpki-client