Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/pldzFUt2RKa9AA2rtfExJgLr3o8.roa
File: pldzFUt2RKa9AA2rtfExJgLr3o8.roa (raw, json)
Hash identifier: /IwPjL2Bli+l6F9gBWzblMR85anvF2AV8sd6syB4oz4=
Subject key identifier: A6:57:73:15:4B:76:44:A6:BD:00:0D:AB:B5:F1:31:26:02:EB:DE:8F
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 67B6595A
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/pldzFUt2RKa9AA2rtfExJgLr3o8.roa
Signing time: Fri 04 Feb 2022 04:09:32 +0000
ROA not before: Fri 04 Feb 2022 04:09:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:17e:a0dd:2f5b/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1740003674 (0x67b6595a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 4 04:09:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a65773154b7644a6bd000dabb5f1312602ebde8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:fb:d6:1f:8a:fd:6c:cb:09:70:3e:d9:49:43:
e2:00:ad:a0:b9:c4:ef:f3:56:6d:8e:cd:62:e0:5a:
e5:22:d4:17:e9:7a:57:1a:6e:68:6e:0e:62:c8:e3:
87:bf:11:33:ec:b1:68:2d:9f:d2:02:99:43:49:48:
02:48:88:8b:79:12:5f:12:6e:c2:0c:bd:41:d7:e1:
ee:a6:5f:23:f1:a1:55:75:6e:b0:2a:ae:50:8c:ed:
3b:55:ea:bb:4e:26:54:f3:52:ae:3e:85:b5:f5:79:
2d:5f:a1:4f:62:23:cd:20:13:1b:59:9e:58:f6:08:
cc:db:a7:3b:5c:c9:87:19:93:2d:dc:63:0a:85:dd:
24:2a:15:51:4b:ee:b0:33:80:5b:e8:75:4a:17:34:
80:97:f8:b3:d6:5c:f8:37:aa:a8:f8:16:ae:26:86:
6d:3f:ec:ae:01:ab:5e:d7:92:19:99:36:6e:e9:8d:
5a:5a:07:b5:57:1b:dc:13:87:74:c9:ed:db:34:74:
db:21:c8:8a:1f:1a:b0:18:f0:ba:44:82:c5:b2:19:
60:d0:eb:9a:5f:c9:da:4e:00:a5:cf:7d:1f:05:e4:
87:79:9f:a2:27:59:63:8d:4b:22:e3:2f:f8:c8:5d:
2a:67:2d:f0:d5:2d:f8:0b:63:c1:12:34:4d:2b:b8:
f0:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:57:73:15:4B:76:44:A6:BD:00:0D:AB:B5:F1:31:26:02:EB:DE:8F
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/pldzFUt2RKa9AA2rtfExJgLr3o8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
aa:b8:ec:f9:56:54:be:28:ac:88:87:01:f6:53:99:a3:92:67:
87:f8:0f:03:a7:41:2d:de:82:0b:e5:d0:2b:1b:ca:9d:89:f4:
ac:4d:c0:f5:46:12:5c:56:70:ca:47:dd:6f:2d:0a:aa:ef:2d:
d6:95:40:31:3f:19:d1:07:bb:4b:87:cc:54:b5:9f:2a:21:4d:
e5:59:cd:39:c7:e2:98:da:9c:cd:2f:ad:e8:b7:7a:e0:cd:b6:
b3:24:aa:71:57:ad:ff:1c:f5:9c:85:ac:08:97:2e:d1:35:a2:
fc:f7:26:d7:76:f5:99:b5:75:64:7e:50:84:6f:d9:c1:bd:17:
a7:69:df:80:03:3c:e4:c3:23:ca:e9:75:36:f5:9d:5e:1c:ad:
83:b0:2a:ea:ca:89:3e:e0:d5:2a:10:31:af:47:26:94:b6:34:
91:d0:3a:4e:e3:c9:fb:51:3a:13:e3:7c:25:8e:eb:a6:14:14:
7e:a1:47:81:3e:8f:01:98:a5:70:c3:de:5c:ed:4b:05:a3:ce:
6e:e6:5c:f6:30:e6:2c:d7:9b:d8:f3:e1:eb:12:ab:f0:7d:42:
de:91:15:bf:fa:a8:21:cb:09:2a:7d:a9:db:6d:28:56:59:e8:
e8:49:50:09:34:7c:0e:53:9f:58:06:e2:5e:09:d9:c4:51:3d:
29:fe:2c:be
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEZ7ZZWjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MjA0N2JlMTViMjc1OTAyZGNmNjE3ZGMzZDBlMTZkYzFmMzA4MDIyMB4XDTIyMDIw
NDA0MDkzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTY1NzczMTU0Yjc2
NDRhNmJkMDAwZGFiYjVmMTMxMjYwMmViZGU4ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM771h+K/WzLCXA+2UlD4gCtoLnE7/NWbY7NYuBa5SLUF+l6
VxpuaG4OYsjjh78RM+yxaC2f0gKZQ0lIAkiIi3kSXxJuwgy9Qdfh7qZfI/GhVXVu
sCquUIztO1Xqu04mVPNSrj6FtfV5LV+hT2IjzSATG1meWPYIzNunO1zJhxmTLdxj
CoXdJCoVUUvusDOAW+h1Shc0gJf4s9Zc+DeqqPgWriaGbT/srgGrXteSGZk2bumN
WloHtVcb3BOHdMnt2zR02yHIih8asBjwukSCxbIZYNDrml/J2k4Apc99HwXkh3mf
oidZY41LIuMv+MhdKmct8NUt+AtjwRI0TSu48LcCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBSmV3MVS3ZEpr0ADau18TEmAuvejzAfBgNVHSMEGDAWgBRyBHvhWydZAtz2
F9w9DhbcHzCAIjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NnUjc0VnNuV1FMYzloZmNQUTRXM0I4d2dDSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWUvNzk4NDQ3LTIxZjQtNDVhYi05OWRjLTFhYmUzYWMxMGFhNi8x
L3BsZHpGVXQyUkthOUFBMnJ0ZkV4SmdMcjNvOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWUv
Nzk4NDQ3LTIxZjQtNDVhYi05OWRjLTFhYmUzYWMxMGFhNi8xL2NnUjc0VnNuV1FM
YzloZmNQUTRXM0I4d2dDSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEA8EAGDAPBAIAAjAJAwcAIAEGfABk
MA0GCSqGSIb3DQEBCwUAA4IBAQCquOz5VlS+KKyIhwH2U5mjkmeH+A8Dp0Et3oIL
5dArG8qdifSsTcD1RhJcVnDKR91vLQqq7y3WlUAxPxnRB7tLh8xUtZ8qIU3lWc05
x+KY2pzNL63ot3rgzbazJKpxV63/HPWchawIly7RNaL89ybXdvWZtXVkflCEb9nB
vRenad+AAzzkwyPK6XU29Z1eHK2DsCrqyok+4NUqEDGvRyaUtjSR0DpO48n7UToT
43wljuumFBR+oUeBPo8BmKVww95c7UsFo85u5lz2MOYs15vY8+HrEqvwfULekRW/
+qghywkqfanbbShWWejoSVAJNHwOU59YBuJeCdnEUT0p/iy+
-----END CERTIFICATE-----
Generated at Wed Apr 30 22:00:09 2025 by rpki-client