Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/nh7pTA0ASkPY0DDz9WXJUu0Nxug.roa
File: nh7pTA0ASkPY0DDz9WXJUu0Nxug.roa (raw, json)
Hash identifier: 0PCXyjIzLDUGnjZew332nH4S182i1Li+lajuMtlqDFA=
Subject key identifier: 9E:1E:E9:4C:0D:00:4A:43:D8:D0:30:F3:F5:65:C9:52:ED:0D:C6:E8
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01864BF98C7968F7D2C6F16F2F619F235C71
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/nh7pTA0ASkPY0DDz9WXJUu0Nxug.roa
Signing time: Mon 13 Feb 2023 18:11:30 +0000
ROA not before: Mon 13 Feb 2023 18:11:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4b:f9:8c:79:68:f7:d2:c6:f1:6f:2f:61:9f:23:5c:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 13 18:11:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e1ee94c0d004a43d8d030f3f565c952ed0dc6e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:b5:8d:63:de:7b:fc:dd:88:cd:f0:9f:0c:5f:
6c:3b:3b:4a:fc:53:4e:d6:6b:c5:41:e8:f3:e1:fd:
be:bc:73:0c:26:3e:74:48:6e:0c:b9:ae:03:e6:00:
52:9d:8e:f0:86:c4:20:e6:32:7c:c8:b1:49:9e:c1:
fe:0e:0d:fa:ad:aa:5e:27:90:a1:d8:76:2d:07:7b:
4d:3e:2d:41:50:fc:f2:cb:44:23:37:a6:4f:00:38:
fc:20:98:4d:4f:1b:e8:9b:5c:e3:d5:e7:75:b5:f3:
80:38:dc:a0:ae:d6:44:c4:16:2c:a0:3c:44:ee:e5:
ee:ba:f4:c2:d2:7c:b5:05:0e:53:09:76:dd:8d:85:
8b:de:14:d9:ae:e4:c3:b6:4d:ae:fd:7e:2f:79:48:
e8:6e:77:c8:00:5e:3c:52:2f:da:01:73:f8:b1:0a:
03:cd:6b:0e:34:3f:08:01:86:17:7d:32:4c:47:61:
71:71:a3:e7:54:6b:e1:2a:74:ed:dd:7d:b1:30:c4:
89:13:6d:ac:a6:b6:d2:59:0b:4e:53:30:9f:cb:8e:
1c:2b:9a:fc:fa:d3:48:ac:24:61:b8:af:24:3c:f7:
09:86:31:5e:77:0d:c5:c2:21:cb:ba:cf:f8:58:86:
10:4a:2e:e2:34:5a:c2:e2:05:b3:b7:cb:b6:3c:7d:
86:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:1E:E9:4C:0D:00:4A:43:D8:D0:30:F3:F5:65:C9:52:ED:0D:C6:E8
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/nh7pTA0ASkPY0DDz9WXJUu0Nxug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
b0:5d:1f:2e:b8:a1:a7:da:da:2e:c6:96:a0:39:aa:9f:e7:6b:
e9:96:02:78:fa:4a:37:7a:02:d3:7f:c6:f6:4f:37:b4:bd:84:
2c:e9:32:4e:9b:9a:2b:04:ca:25:8d:b4:8d:51:db:df:80:89:
92:be:63:d6:96:d2:dc:73:74:ba:81:25:18:ea:55:26:a1:dc:
ca:b6:b0:7c:e8:66:c0:71:f1:58:d5:99:b0:28:05:43:64:08:
11:a1:09:c3:c5:ba:f2:bd:7f:78:c6:0a:e1:db:7b:93:9b:6f:
84:68:f0:54:91:c6:98:08:5b:4b:e6:b9:b9:65:df:72:4f:df:
65:9e:bf:60:80:d1:99:6d:3e:23:6b:49:96:81:7c:8f:38:d4:
19:47:6d:79:91:22:0e:7c:4c:7c:78:d9:d4:67:22:ce:7f:16:
bb:73:70:94:ae:e2:42:71:31:d4:99:b7:d7:59:53:a3:d6:0b:
c8:c4:67:9f:f4:11:94:b2:a2:80:14:7a:83:d1:18:60:fd:0b:
f6:b8:6d:59:6e:ec:17:d9:b4:ba:ca:f2:28:1e:41:c5:28:1a:
97:da:3d:96:38:7b:bf:7d:8e:3c:12:dc:08:17:26:8f:62:26:
30:0a:0d:5c:83:5e:0f:77:8d:ba:08:20:20:ab:cf:55:61:7f:
eb:dc:66:b3
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYZL+Yx5aPfSxvFvL2GfI1xxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwMjEzMTgxMTMwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZTFlZTk0YzBkMDA0YTQzZDhkMDMwZjNmNTY1Yzk1MmVkMGRjNmU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh7WNY957/N2IzfCfDF9sOztK/FNO
1mvFQejz4f2+vHMMJj50SG4Mua4D5gBSnY7whsQg5jJ8yLFJnsH+Dg36rapeJ5Ch
2HYtB3tNPi1BUPzyy0QjN6ZPADj8IJhNTxvom1zj1ed1tfOAONygrtZExBYsoDxE
7uXuuvTC0ny1BQ5TCXbdjYWL3hTZruTDtk2u/X4veUjobnfIAF48Ui/aAXP4sQoD
zWsOND8IAYYXfTJMR2FxcaPnVGvhKnTt3X2xMMSJE22sprbSWQtOUzCfy44cK5r8
+tNIrCRhuK8kPPcJhjFedw3FwiHLus/4WIYQSi7iNFrC4gWzt8u2PH2GQQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFJ4e6UwNAEpD2NAw8/VlyVLtDcboMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvbmg3cFRBMEFTa1BZMEREejlXWEpVdTBOeHVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBALBdHy64oafa2i7GlqA5
qp/na+mWAnj6Sjd6AtN/xvZPN7S9hCzpMk6bmisEyiWNtI1R29+AiZK+Y9aW0txz
dLqBJRjqVSah3Mq2sHzoZsBx8VjVmbAoBUNkCBGhCcPFuvK9f3jGCuHbe5Obb4Ro
8FSRxpgIW0vmubll33JP32Wev2CA0ZltPiNrSZaBfI841BlHbXmRIg58THx42dRn
Is5/FrtzcJSu4kJxMdSZt9dZU6PWC8jEZ5/0EZSyooAUeoPRGGD9C/a4bVlu7BfZ
tLrK8igeQcUoGpfaPZY4e799jjwS3AgXJo9iJjAKDVyDXg93jboIICCrz1Vhf+vc
ZrM=
-----END CERTIFICATE-----
Generated at Sat May 3 00:55:42 2025 by rpki-client