Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/s77hgThwlObanRjFc2isd7k8aOw.roa
File: s77hgThwlObanRjFc2isd7k8aOw.roa (raw, json)
Hash identifier: 3l7oGwxobarffyG1lpnyrSaEmIbs7womDz4sQdr2c2w=
Subject key identifier: B3:BE:E1:81:38:70:94:E6:DA:9D:18:C5:73:68:AC:77:B9:3C:68:EC
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 737DE8C3
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/s77hgThwlObanRjFc2isd7k8aOw.roa
Signing time: Fri 18 Mar 2022 10:04:28 +0000
ROA not before: Fri 18 Mar 2022 10:04:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:17f:1bf4:40b5/128 maxlen: 128
2001:67c:64:ffff:0:17f:20ac:a2bd/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:17f:9c7c:5560/128 maxlen: 128
2001:67c:64:ffff:0:17f:87e3:2531/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1937631427 (0x737de8c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Mar 18 10:04:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3bee181387094e6da9d18c57368ac77b93c68ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b0:b4:28:07:ad:5c:cf:af:49:10:a7:92:88:
61:a2:dd:8b:6a:d4:cd:be:d2:ca:b5:93:54:8b:f5:
b0:e9:5d:7f:47:09:08:a8:f0:eb:30:9d:a5:0e:41:
de:b7:06:90:44:c4:d5:65:a4:2a:4f:fa:4f:7e:ab:
ba:f7:fe:d6:b0:e3:97:67:44:6f:3a:e0:28:9a:b2:
09:cc:da:6d:c4:4b:22:95:04:dc:53:54:e0:4d:b9:
bc:f2:31:93:aa:1a:58:f3:1c:a4:dd:4e:19:4a:0d:
50:e5:f4:01:40:d6:12:1f:e9:73:e0:af:73:0b:ab:
7a:40:ce:f7:41:74:a2:91:2d:3e:80:0f:1a:ec:64:
29:4d:32:b1:be:16:8b:d3:23:61:92:90:23:d4:2a:
f1:01:ef:d1:4b:da:f8:a1:53:ec:ae:69:30:6a:38:
c1:9d:76:ce:49:44:ad:35:13:61:a6:98:47:53:9b:
62:4d:5d:69:43:19:82:80:66:cd:95:6d:fd:2b:4e:
3d:29:61:42:f6:76:a9:b7:ad:6f:b9:41:4e:11:fb:
83:36:ad:56:f0:08:c0:60:82:57:31:6c:4b:01:2d:
ae:64:67:5e:49:52:63:9b:91:9d:ce:90:19:04:a3:
01:43:bb:04:9e:ce:92:26:aa:16:ce:f3:fb:43:c5:
13:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:BE:E1:81:38:70:94:E6:DA:9D:18:C5:73:68:AC:77:B9:3C:68:EC
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/s77hgThwlObanRjFc2isd7k8aOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a0:92:de:98:64:16:66:41:d8:5d:7f:fd:94:67:55:14:7e:2d:
fe:db:2a:09:e5:90:a1:11:1c:64:3a:b2:36:ef:35:06:bc:b5:
ef:43:c2:58:a9:8c:0d:fd:09:09:02:bc:8f:c4:60:ee:5a:0d:
df:6a:25:9d:b5:ea:9e:c6:b1:eb:a3:a9:0d:30:c5:a4:7d:0f:
67:0d:30:b5:8b:ad:81:96:cf:55:84:b4:b6:ed:1f:57:17:24:
b5:43:5d:0e:c3:f4:15:84:e2:fc:61:06:07:39:9e:6f:a1:4e:
0b:68:54:b4:6d:37:7f:6c:69:b0:9b:27:e4:83:aa:53:63:96:
e5:68:5d:a2:c2:e1:6b:eb:f0:8c:5d:60:c6:05:e6:2d:84:ae:
f3:1a:12:be:27:16:51:74:d1:9f:0c:d9:67:59:48:9e:ea:34:
8e:01:06:33:1b:cd:5f:5b:59:bd:20:10:39:59:72:ed:56:f8:
54:40:a3:59:6c:a8:c4:b9:f4:78:b1:0d:d0:a1:54:67:78:45:
58:6f:9c:8e:18:50:98:32:09:d9:0c:ec:81:b3:fd:87:d4:5a:
f2:08:dd:2b:ff:cd:2c:6f:d1:16:a8:f3:c8:11:b0:88:45:19:
31:c6:13:31:cd:07:6b:20:51:ec:7a:45:bc:f5:ca:95:4d:96:
a1:21:19:84
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEc33owzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MjA0N2JlMTViMjc1OTAyZGNmNjE3ZGMzZDBlMTZkYzFmMzA4MDIyMB4XDTIyMDMx
ODEwMDQyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjNiZWUxODEzODcw
OTRlNmRhOWQxOGM1NzM2OGFjNzdiOTNjNjhlYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK+wtCgHrVzPr0kQp5KIYaLdi2rUzb7SyrWTVIv1sOldf0cJ
CKjw6zCdpQ5B3rcGkETE1WWkKk/6T36ruvf+1rDjl2dEbzrgKJqyCczabcRLIpUE
3FNU4E25vPIxk6oaWPMcpN1OGUoNUOX0AUDWEh/pc+CvcwurekDO90F0opEtPoAP
GuxkKU0ysb4Wi9MjYZKQI9Qq8QHv0Uva+KFT7K5pMGo4wZ12zklErTUTYaaYR1Ob
Yk1daUMZgoBmzZVt/StOPSlhQvZ2qbetb7lBThH7gzatVvAIwGCCVzFsSwEtrmRn
XklSY5uRnc6QGQSjAUO7BJ7OkiaqFs7z+0PFE/8CAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBSzvuGBOHCU5tqdGMVzaKx3uTxo7DAfBgNVHSMEGDAWgBRyBHvhWydZAtz2
F9w9DhbcHzCAIjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NnUjc0VnNuV1FMYzloZmNQUTRXM0I4d2dDSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWUvNzk4NDQ3LTIxZjQtNDVhYi05OWRjLTFhYmUzYWMxMGFhNi8x
L3M3N2hnVGh3bE9iYW5SakZjMmlzZDdrOGFPdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWUv
Nzk4NDQ3LTIxZjQtNDVhYi05OWRjLTFhYmUzYWMxMGFhNi8xL2NnUjc0VnNuV1FM
YzloZmNQUTRXM0I4d2dDSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEA8EAGDAPBAIAAjAJAwcAIAEGfABk
MA0GCSqGSIb3DQEBCwUAA4IBAQCgkt6YZBZmQdhdf/2UZ1UUfi3+2yoJ5ZChERxk
OrI27zUGvLXvQ8JYqYwN/QkJAryPxGDuWg3faiWdteqexrHro6kNMMWkfQ9nDTC1
i62Bls9VhLS27R9XFyS1Q10Ow/QVhOL8YQYHOZ5voU4LaFS0bTd/bGmwmyfkg6pT
Y5blaF2iwuFr6/CMXWDGBeYthK7zGhK+JxZRdNGfDNlnWUie6jSOAQYzG81fW1m9
IBA5WXLtVvhUQKNZbKjEufR4sQ3QoVRneEVYb5yOGFCYMgnZDOyBs/2H1FryCN0r
/80sb9EWqPPIEbCIRRkxxhMxzQdrIFHsekW89cqVTZahIRmE
-----END CERTIFICATE-----
Generated at Thu May 1 14:55:00 2025 by rpki-client