Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/jg0-QCtqGkKTF2sZJ4wYl1apYPg.roa
File: jg0-QCtqGkKTF2sZJ4wYl1apYPg.roa (raw, json)
Hash identifier: mnUJnEc8gbIPUta2O333h1A5mGFpe0oZka1fLiZRuK4=
Subject key identifier: 8E:0D:3E:40:2B:6A:1A:42:93:17:6B:19:27:8C:18:97:56:A9:60:F8
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018806DB35ED13C977754246ED6FE092A65A
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/jg0-QCtqGkKTF2sZJ4wYl1apYPg.roa
Signing time: Wed 10 May 2023 18:10:09 +0000
ROA not before: Wed 10 May 2023 18:10:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:06:db:35:ed:13:c9:77:75:42:46:ed:6f:e0:92:a6:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 10 18:10:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e0d3e402b6a1a4293176b19278c189756a960f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6a:3a:a4:47:22:66:ef:34:8b:af:3e:a2:0a:
3a:12:aa:5f:3f:65:3a:d1:e6:63:09:72:c8:0a:df:
30:5e:f6:d2:df:41:e6:72:86:2a:eb:be:60:29:cd:
76:fd:61:b0:74:02:e4:cd:98:61:1d:d2:2e:8d:e8:
56:36:8a:f1:fa:e0:de:0d:87:f1:3d:cf:f2:14:63:
2b:b9:2f:41:e2:e1:9d:e8:c5:24:3c:31:48:ee:45:
60:c4:71:09:0f:b2:23:90:6f:ee:83:6a:0d:63:a1:
90:f5:ef:ae:f9:b6:7a:5c:9d:c8:64:ed:db:aa:b8:
0c:f4:be:b5:4e:d3:ce:90:3d:78:e8:8d:02:59:02:
28:41:ef:b1:48:00:1a:4e:9b:ce:8e:cb:a6:31:a0:
b3:60:65:7d:c6:2a:b6:ca:58:a2:81:83:b2:88:12:
50:ea:1a:a8:ff:8a:6c:ed:2f:7d:6b:38:62:dc:28:
8e:81:66:94:05:03:16:b3:f4:6d:60:31:6a:ad:00:
a4:92:7b:af:63:a5:4f:65:90:b1:4b:8b:10:44:47:
dd:4d:38:37:c3:56:bd:ff:9e:d5:41:75:b2:35:27:
e7:97:02:60:2c:b5:5b:47:88:28:d4:1a:70:ad:c1:
76:f4:a5:21:16:42:c9:da:11:55:6f:67:da:b7:b5:
34:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:0D:3E:40:2B:6A:1A:42:93:17:6B:19:27:8C:18:97:56:A9:60:F8
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/jg0-QCtqGkKTF2sZJ4wYl1apYPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
57:20:ac:54:38:66:68:34:dc:79:ff:b4:78:e0:c6:47:11:76:
2d:b7:52:eb:78:b9:46:3e:2d:ad:c4:23:1e:79:d2:c5:31:54:
6d:3a:c0:b5:27:0d:c9:c3:00:58:40:9a:34:35:15:13:a5:71:
75:d8:1b:c4:9e:af:85:fb:95:07:af:01:a0:60:e6:88:18:66:
c7:04:45:f1:87:ab:ec:45:58:49:56:e7:07:8c:06:db:20:f4:
3e:92:c3:3b:78:4c:d7:7c:0a:9b:5b:09:4d:c1:77:cd:a2:e2:
b8:56:93:31:2e:41:3d:6d:66:4c:10:e0:48:0f:2c:60:97:64:
c0:6a:b7:a8:c0:11:27:e1:5c:82:14:bc:c6:14:ad:23:69:13:
bf:ac:38:33:40:94:9b:0e:98:ea:ce:02:e6:0a:02:f7:d7:7f:
02:8b:4a:7a:18:69:4b:13:28:85:8a:04:42:12:7e:ee:d4:b9:
74:f2:86:b4:ce:85:fd:2d:21:f9:05:04:af:5d:8c:5f:90:91:
83:f0:7f:c3:dd:2c:77:60:59:c6:1f:e4:7d:09:55:a5:9d:4a:
65:f9:4c:b1:72:80:1d:96:49:aa:35:7d:6a:71:91:81:eb:21:
c6:35:a3:22:74:a1:fd:55:b3:78:12:e3:9f:52:51:49:8f:a0:
64:17:1d:77
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYgG2zXtE8l3dUJG7W/gkqZaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwNTEwMTgxMDA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZTBkM2U0MDJiNmExYTQyOTMxNzZiMTkyNzhjMTg5NzU2YTk2MGY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAomo6pEciZu80i68+ogo6EqpfP2U6
0eZjCXLICt8wXvbS30HmcoYq675gKc12/WGwdALkzZhhHdIujehWNorx+uDeDYfx
Pc/yFGMruS9B4uGd6MUkPDFI7kVgxHEJD7IjkG/ug2oNY6GQ9e+u+bZ6XJ3IZO3b
qrgM9L61TtPOkD146I0CWQIoQe+xSAAaTpvOjsumMaCzYGV9xiq2yliigYOyiBJQ
6hqo/4ps7S99azhi3CiOgWaUBQMWs/RtYDFqrQCkknuvY6VPZZCxS4sQREfdTTg3
w1a9/57VQXWyNSfnlwJgLLVbR4go1BpwrcF29KUhFkLJ2hFVb2fat7U0YwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFI4NPkArahpCkxdrGSeMGJdWqWD4MB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvamcwLVFDdHFHa0tURjJzWko0d1lsMWFwWVBnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAFcgrFQ4Zmg03Hn/tHjg
xkcRdi23Uut4uUY+La3EIx550sUxVG06wLUnDcnDAFhAmjQ1FROlcXXYG8Ser4X7
lQevAaBg5ogYZscERfGHq+xFWElW5weMBtsg9D6Swzt4TNd8CptbCU3Bd82i4rhW
kzEuQT1tZkwQ4EgPLGCXZMBqt6jAESfhXIIUvMYUrSNpE7+sODNAlJsOmOrOAuYK
AvfXfwKLSnoYaUsTKIWKBEISfu7UuXTyhrTOhf0tIfkFBK9djF+QkYPwf8PdLHdg
WcYf5H0JVaWdSmX5TLFygB2WSao1fWpxkYHrIcY1oyJ0of1Vs3gS459SUUmPoGQX
HXc=
-----END CERTIFICATE-----
Generated at Thu May 1 09:31:02 2025 by rpki-client