Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ieaYXst4B_gJCDK0b_eDZaIe7Mg.roa
File: ieaYXst4B_gJCDK0b_eDZaIe7Mg.roa (raw, json)
Hash identifier: 8Zm7GAzwnQpy/30Na+76QKpGO0onXBVrIKNIw3ivPng=
Subject key identifier: 89:E6:98:5E:CB:78:07:F8:09:08:32:B4:6F:F7:83:65:A2:1E:EC:C8
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 6BA56D78
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ieaYXst4B_gJCDK0b_eDZaIe7Mg.roa
Signing time: Fri 18 Feb 2022 11:07:58 +0000
ROA not before: Fri 18 Feb 2022 11:07:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1806003576 (0x6ba56d78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 18 11:07:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89e6985ecb7807f8090832b46ff78365a21eecc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:68:74:89:6b:05:5a:3e:e1:08:fb:5a:80:d1:
94:7c:d1:e4:9d:77:b7:42:15:e6:6a:4d:f6:6c:12:
a8:bc:ed:ad:70:dd:43:56:fd:26:97:1b:a6:12:b3:
86:b5:59:94:45:c2:e3:78:42:e4:a5:b4:71:bf:10:
5b:c7:ad:68:b6:a6:b3:df:e5:76:ec:7d:20:10:d1:
5a:52:d2:43:a0:1b:81:43:22:06:60:66:da:b9:c7:
b2:49:d2:68:bb:bb:33:19:f3:71:62:2c:6b:b0:68:
67:b7:b2:f7:c7:a8:28:ca:e5:48:c2:ee:4c:78:28:
62:5e:87:f4:85:bd:28:19:a9:bc:32:64:78:69:e3:
b3:2a:36:e9:2d:7e:fa:31:7e:b7:38:c7:97:30:ed:
38:0a:f0:f5:ef:56:59:b8:8d:3f:23:b6:4b:32:9c:
f1:7a:2b:b2:bc:29:16:cd:a3:7b:30:2c:ed:7a:c9:
a1:fc:d8:e5:f9:ed:4f:96:bc:bc:08:29:aa:95:a4:
94:6c:ca:3a:c5:5d:3e:53:02:d8:c5:72:9a:8e:c5:
01:68:4f:66:a3:2d:94:9e:84:41:16:1a:22:d0:39:
6d:a6:0a:1b:5e:43:6f:87:86:31:9e:eb:94:0e:e2:
8c:06:68:94:80:4e:ec:e1:1d:9d:40:b9:3b:69:2f:
23:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:E6:98:5E:CB:78:07:F8:09:08:32:B4:6F:F7:83:65:A2:1E:EC:C8
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/ieaYXst4B_gJCDK0b_eDZaIe7Mg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
18:2f:b0:8e:e4:10:2a:55:a1:b1:da:e9:99:b0:ad:92:fa:a0:
3b:e8:4b:2a:8b:a9:d0:1e:ec:cd:b0:b7:27:b8:c3:35:96:ac:
b8:b7:62:4f:b7:cc:6b:0c:d5:60:39:5c:f1:38:f4:db:05:c7:
60:e7:7b:0a:f6:89:96:3c:e8:b4:5f:0f:92:83:98:04:5e:d5:
60:23:09:08:1b:96:03:e7:bb:89:77:50:51:89:9a:61:f9:27:
7f:a2:8a:dc:55:71:22:8a:25:5f:fb:3c:14:3b:d1:ea:9d:0c:
f6:a3:5c:75:01:82:5e:f2:f2:6e:a5:14:3d:67:0f:85:d7:50:
d7:f5:92:25:f4:da:39:9b:26:22:dc:25:11:58:08:8a:0b:a1:
b8:dd:cc:f6:af:0c:f7:b7:51:b9:9f:1a:86:5f:da:1e:16:8f:
cd:18:b9:b1:fc:27:cf:80:70:b9:f6:33:88:39:fc:25:e0:fb:
fb:ae:85:2a:d7:af:09:3b:0d:3a:6e:c5:c3:3e:a2:52:a1:59:
9f:ae:f1:81:7c:51:43:01:d7:d5:29:8a:ae:63:1e:f1:33:80:
ac:56:42:b5:3b:98:e6:72:f7:ca:03:fa:84:78:25:fd:e4:0f:
c5:19:f3:b2:23:ec:e6:05:b2:d6:03:12:cb:83:6b:34:c4:06:
85:6b:ca:ab
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEa6VteDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MjA0N2JlMTViMjc1OTAyZGNmNjE3ZGMzZDBlMTZkYzFmMzA4MDIyMB4XDTIyMDIx
ODExMDc1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODllNjk4NWVjYjc4
MDdmODA5MDgzMmI0NmZmNzgzNjVhMjFlZWNjODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALpodIlrBVo+4Qj7WoDRlHzR5J13t0IV5mpN9mwSqLztrXDd
Q1b9JpcbphKzhrVZlEXC43hC5KW0cb8QW8etaLams9/ldux9IBDRWlLSQ6AbgUMi
BmBm2rnHsknSaLu7MxnzcWIsa7BoZ7ey98eoKMrlSMLuTHgoYl6H9IW9KBmpvDJk
eGnjsyo26S1++jF+tzjHlzDtOArw9e9WWbiNPyO2SzKc8XorsrwpFs2jezAs7XrJ
ofzY5fntT5a8vAgpqpWklGzKOsVdPlMC2MVymo7FAWhPZqMtlJ6EQRYaItA5baYK
G15Db4eGMZ7rlA7ijAZolIBO7OEdnUC5O2kvIxECAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBSJ5phey3gH+AkIMrRv94Nloh7syDAfBgNVHSMEGDAWgBRyBHvhWydZAtz2
F9w9DhbcHzCAIjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NnUjc0VnNuV1FMYzloZmNQUTRXM0I4d2dDSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWUvNzk4NDQ3LTIxZjQtNDVhYi05OWRjLTFhYmUzYWMxMGFhNi8x
L2llYVlYc3Q0Ql9nSkNESzBiX2VEWmFJZTdNZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWUv
Nzk4NDQ3LTIxZjQtNDVhYi05OWRjLTFhYmUzYWMxMGFhNi8xL2NnUjc0VnNuV1FM
YzloZmNQUTRXM0I4d2dDSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEA8EAGDAPBAIAAjAJAwcAIAEGfABk
MA0GCSqGSIb3DQEBCwUAA4IBAQAYL7CO5BAqVaGx2umZsK2S+qA76Esqi6nQHuzN
sLcnuMM1lqy4t2JPt8xrDNVgOVzxOPTbBcdg53sK9omWPOi0Xw+Sg5gEXtVgIwkI
G5YD57uJd1BRiZph+Sd/oorcVXEiiiVf+zwUO9HqnQz2o1x1AYJe8vJupRQ9Zw+F
11DX9ZIl9No5myYi3CURWAiKC6G43cz2rwz3t1G5nxqGX9oeFo/NGLmx/CfPgHC5
9jOIOfwl4Pv7roUq168JOw06bsXDPqJSoVmfrvGBfFFDAdfVKYquYx7xM4CsVkK1
O5jmcvfKA/qEeCX95A/FGfOyI+zmBbLWAxLLg2s0xAaFa8qr
-----END CERTIFICATE-----
Generated at Wed Apr 30 17:41:29 2025 by rpki-client