Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/pyuocm95Hxls-c0edeHSwUm9IO0.roa
File: pyuocm95Hxls-c0edeHSwUm9IO0.roa (raw, json)
Hash identifier: 4ZdDgSgDkNeVRxsA8LZC/92MhPHyD/iFrMrjBAuo1hg=
Subject key identifier: A7:2B:A8:72:6F:79:1F:19:6C:F9:CD:1E:75:E1:D2:C1:49:BD:20:ED
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01895B9EF4BBFA58375D2DD52163106782B0
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/pyuocm95Hxls-c0edeHSwUm9IO0.roa
Signing time: Sat 15 Jul 2023 22:14:51 +0000
ROA not before: Sat 15 Jul 2023 22:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:5b:9e:f4:bb:fa:58:37:5d:2d:d5:21:63:10:67:82:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 15 22:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a72ba8726f791f196cf9cd1e75e1d2c149bd20ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5c:0c:ef:7e:d0:15:1d:83:4d:30:4c:49:63:
35:8e:eb:b2:03:1e:eb:23:cd:fc:6b:33:86:86:25:
6d:f8:66:37:eb:db:fe:66:aa:4f:04:9c:0c:5f:ed:
74:47:05:ce:5d:83:29:8d:5c:9c:10:58:17:3c:c4:
ab:6d:a7:e5:91:77:cd:22:e8:13:3b:8d:8a:12:ad:
56:6e:0a:83:b6:76:ca:0c:58:51:e2:29:46:63:eb:
f5:3f:cc:ac:e7:0c:f2:b7:2d:a4:cc:41:b8:db:1a:
56:33:98:b0:7a:cc:cd:fe:ff:80:08:7e:31:76:52:
06:1d:7b:7e:c0:2b:ca:3b:cb:3c:27:67:e2:2c:65:
d8:2c:50:0f:3d:9b:f3:7d:a2:d5:42:72:26:49:98:
13:34:8a:5e:45:23:f3:9f:9b:d3:25:0b:38:07:e2:
b1:f3:bd:1c:de:87:f4:36:d7:50:c7:5f:60:2b:39:
60:84:f7:e7:37:78:91:87:26:57:0f:1f:47:b2:27:
7f:4b:59:d1:e7:f7:49:9d:3b:b2:61:9c:12:9e:bd:
17:b6:aa:3b:c4:de:26:8a:fc:60:bd:12:b7:67:8a:
c1:8b:d4:de:07:a6:1a:f8:41:21:ba:a4:40:42:fa:
4b:80:6c:fa:db:74:29:a7:ed:d3:8c:84:76:41:ba:
85:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:2B:A8:72:6F:79:1F:19:6C:F9:CD:1E:75:E1:D2:C1:49:BD:20:ED
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/pyuocm95Hxls-c0edeHSwUm9IO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3c:d7:8c:6e:54:24:71:f4:53:36:3e:f5:73:13:a3:ac:d7:fe:
14:18:d6:5e:25:ed:bf:90:df:87:64:7c:b7:fe:57:47:ee:11:
40:11:12:a1:2a:7a:8c:a6:99:d8:ea:74:84:08:ec:61:b6:d3:
50:00:ae:86:ee:00:e1:82:2a:03:c9:3a:be:44:4b:5e:08:6b:
5b:2f:a3:86:d1:38:04:19:34:51:f3:bb:51:96:30:b3:7c:66:
4b:08:de:21:c2:16:a2:f7:81:4c:df:8b:11:03:ea:83:07:09:
ac:88:5c:81:25:59:9e:28:53:3c:da:c7:49:fc:3c:7d:a7:32:
dd:35:f5:a3:d3:9c:e7:f4:52:4b:e0:c1:2b:21:56:e6:fc:03:
bb:77:31:4f:7b:57:21:42:bf:6f:13:b7:85:2d:a1:4f:43:4f:
ff:d2:da:73:97:52:9f:ed:e9:d8:e9:4a:6f:65:b0:a2:1f:0d:
35:51:12:84:be:1c:ad:3d:5d:ab:40:6a:87:39:c3:51:ad:df:
ca:c0:3b:81:62:24:88:3d:7c:94:72:f9:e8:9b:dc:13:3c:39:
94:0d:11:41:9b:dd:eb:79:d8:34:d6:6f:62:68:ba:1e:f1:09:
a6:f9:49:4c:fc:40:bc:6b:10:61:9b:de:40:6f:e6:01:14:3e:
09:29:93:b4
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYlbnvS7+lg3XS3VIWMQZ4KwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwNzE1MjIxNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNzJiYTg3MjZmNzkxZjE5NmNmOWNkMWU3NWUxZDJjMTQ5YmQyMGVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq1wM737QFR2DTTBMSWM1juuyAx7r
I838azOGhiVt+GY369v+ZqpPBJwMX+10RwXOXYMpjVycEFgXPMSrbaflkXfNIugT
O42KEq1WbgqDtnbKDFhR4ilGY+v1P8ys5wzyty2kzEG42xpWM5iweszN/v+ACH4x
dlIGHXt+wCvKO8s8J2fiLGXYLFAPPZvzfaLVQnImSZgTNIpeRSPzn5vTJQs4B+Kx
870c3of0NtdQx19gKzlghPfnN3iRhyZXDx9Hsid/S1nR5/dJnTuyYZwSnr0Xtqo7
xN4mivxgvRK3Z4rBi9TeB6Ya+EEhuqRAQvpLgGz623Qpp+3TjIR2QbqF2QIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFKcrqHJveR8ZbPnNHnXh0sFJvSDtMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvcHl1b2NtOTVIeGxzLWMwZWRlSFN3VW05SU8wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBADzXjG5UJHH0UzY+9XMT
o6zX/hQY1l4l7b+Q34dkfLf+V0fuEUAREqEqeoymmdjqdIQI7GG201AArobuAOGC
KgPJOr5ES14Ia1svo4bROAQZNFHzu1GWMLN8ZksI3iHCFqL3gUzfixED6oMHCayI
XIElWZ4oUzzax0n8PH2nMt019aPTnOf0UkvgwSshVub8A7t3MU97VyFCv28Tt4Ut
oU9DT//S2nOXUp/t6djpSm9lsKIfDTVREoS+HK09XatAaoc5w1Gt38rAO4FiJIg9
fJRy+eib3BM8OZQNEUGb3et52DTWb2Jouh7xCab5SUz8QLxrEGGb3kBv5gEUPgkp
k7Q=
-----END CERTIFICATE-----
Generated at Wed Apr 30 21:23:38 2025 by rpki-client