Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/kUpqQp8gGvuS2iVYcXlf9PJ4CBA.roa
File: kUpqQp8gGvuS2iVYcXlf9PJ4CBA.roa (raw, json)
Hash identifier: yBCpUA4/ZtlyEam1/zC9AQoiTacK0htQJPRiT4na2P0=
Subject key identifier: 91:4A:6A:42:9F:20:1A:FB:92:DA:25:58:71:79:5F:F4:F2:78:08:10
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01852CDF3F510BE861F4FE9D30BD04D5F153
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/kUpqQp8gGvuS2iVYcXlf9PJ4CBA.roa
Signing time: Tue 20 Dec 2022 00:11:46 +0000
ROA not before: Tue 20 Dec 2022 00:11:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2c:df:3f:51:0b:e8:61:f4:fe:9d:30:bd:04:d5:f1:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Dec 20 00:11:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=914a6a429f201afb92da255871795ff4f2780810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:e7:72:e2:29:ea:82:fa:c5:a7:62:36:2d:cc:
46:2d:7c:d0:7a:9f:c0:b3:9c:47:e6:b0:d3:df:4b:
e2:ac:7d:06:a4:ec:2d:38:37:33:7d:5b:4b:ae:e1:
cb:47:85:d3:4a:f7:8b:a0:38:0b:84:59:8d:39:3b:
7e:ba:c8:de:70:db:59:f3:a1:64:62:3a:02:82:dd:
08:df:91:92:bd:8a:8b:c5:37:e1:74:ee:fd:1f:51:
ee:5c:f2:47:d8:0d:cd:91:9a:23:01:70:48:31:03:
75:e2:92:2f:88:96:2e:9e:f9:1b:d8:4c:37:25:87:
45:84:91:af:3e:eb:51:30:d6:be:ae:96:2b:c7:64:
6f:22:46:16:f2:1a:24:20:a9:01:92:db:2f:4f:64:
50:cf:cc:cd:46:b0:3e:54:f8:c4:0c:09:70:52:71:
76:03:3c:f5:ba:5e:4a:a7:e4:51:fe:e2:bb:94:df:
97:37:a1:12:31:a4:8d:3a:37:0c:22:b9:ea:72:35:
bf:79:2f:bc:6f:9f:a8:46:c4:c9:5d:cb:30:f4:f1:
e9:79:8c:6b:52:88:fd:45:86:5a:9e:50:5f:71:17:
8c:cb:36:38:f2:23:4d:5b:c8:ff:d3:9b:29:0a:31:
5a:dc:36:d3:78:6b:32:40:9d:a2:38:df:a4:a2:b4:
9c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:4A:6A:42:9F:20:1A:FB:92:DA:25:58:71:79:5F:F4:F2:78:08:10
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/kUpqQp8gGvuS2iVYcXlf9PJ4CBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
b2:ba:bc:f3:89:f3:38:95:b0:10:4e:5c:70:77:06:d6:0a:ca:
d9:38:87:99:d6:92:a8:d8:bc:b9:84:cf:7e:b8:62:e6:0d:04:
4f:53:1c:fd:95:89:da:4f:05:5f:24:b8:ab:bf:53:e4:a3:90:
df:10:6e:9b:fa:70:0a:6f:35:67:f0:1a:cc:c7:48:b2:c3:1d:
92:d9:bc:20:ac:9e:b2:97:fe:e7:a0:48:96:fa:0e:ac:19:9f:
ea:9a:de:b3:ab:96:01:af:72:cd:6b:a2:ec:b3:79:65:8b:22:
b2:f1:f7:4d:c4:f9:14:ee:8f:c9:6e:4c:31:ab:95:1e:94:d0:
2f:06:0a:37:e0:36:31:d8:08:3a:bf:42:e7:00:6e:34:77:5d:
6c:71:7c:b2:eb:95:76:bc:02:2a:e8:78:a3:9c:20:a6:a2:e2:
9f:c4:00:e6:c5:2d:b0:95:cd:a7:21:54:f2:a6:2d:fb:14:0c:
18:26:12:dd:93:05:ea:68:42:17:23:9d:f4:1e:e7:53:e6:7d:
40:eb:e6:6b:cb:63:44:02:a8:26:5e:b9:d9:3d:9f:41:1e:55:
3e:ec:10:dc:51:ba:8d:94:07:43:af:79:7c:8a:17:36:f7:a0:
c3:58:69:2a:6e:71:5a:68:23:95:37:5f:c2:cf:f2:2f:ec:e1:
fc:d3:ba:59
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYUs3z9RC+hh9P6dML0E1fFTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjIxMjIwMDAxMTQ2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MTRhNmE0MjlmMjAxYWZiOTJkYTI1NTg3MTc5NWZmNGYyNzgwODEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgudy4inqgvrFp2I2LcxGLXzQep/A
s5xH5rDT30virH0GpOwtODczfVtLruHLR4XTSveLoDgLhFmNOTt+usjecNtZ86Fk
YjoCgt0I35GSvYqLxTfhdO79H1HuXPJH2A3NkZojAXBIMQN14pIviJYunvkb2Ew3
JYdFhJGvPutRMNa+rpYrx2RvIkYW8hokIKkBktsvT2RQz8zNRrA+VPjEDAlwUnF2
Azz1ul5Kp+RR/uK7lN+XN6ESMaSNOjcMIrnqcjW/eS+8b5+oRsTJXcsw9PHpeYxr
Uoj9RYZanlBfcReMyzY48iNNW8j/05spCjFa3DbTeGsyQJ2iON+korSchQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFJFKakKfIBr7ktolWHF5X/TyeAgQMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEva1VwcVFwOGdHdnVTMmlWWWNYbGY5UEo0Q0JBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBALK6vPOJ8ziVsBBOXHB3
BtYKytk4h5nWkqjYvLmEz364YuYNBE9THP2VidpPBV8kuKu/U+SjkN8Qbpv6cApv
NWfwGszHSLLDHZLZvCCsnrKX/uegSJb6DqwZn+qa3rOrlgGvcs1rouyzeWWLIrLx
903E+RTuj8luTDGrlR6U0C8GCjfgNjHYCDq/QucAbjR3XWxxfLLrlXa8AiroeKOc
IKai4p/EAObFLbCVzachVPKmLfsUDBgmEt2TBepoQhcjnfQe51PmfUDr5mvLY0QC
qCZeudk9n0EeVT7sENxRuo2UB0OveXyKFzb3oMNYaSpucVpoI5U3X8LP8i/s4fzT
ulk=
-----END CERTIFICATE-----
Generated at Thu May 1 04:28:03 2025 by rpki-client