Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/uCRZxbDof6PFdJZgFI1aY2OZWXE.roa
File: uCRZxbDof6PFdJZgFI1aY2OZWXE.roa (raw, json)
Hash identifier: hQkf1JYZg7apYFNLyXQtwnMpIIZk+7b2EDlb8r4vixE=
Subject key identifier: B8:24:59:C5:B0:E8:7F:A3:C5:74:96:60:14:8D:5A:63:63:99:59:71
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0187282353E3F0BE4653DFD8DDF773C9015A
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/uCRZxbDof6PFdJZgFI1aY2OZWXE.roa
Signing time: Tue 28 Mar 2023 12:13:36 +0000
ROA not before: Tue 28 Mar 2023 12:13:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:28:23:53:e3:f0:be:46:53:df:d8:dd:f7:73:c9:01:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Mar 28 12:13:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b82459c5b0e87fa3c5749660148d5a6363995971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:5d:78:df:9f:0f:73:0c:10:09:c4:ce:28:45:
b8:85:52:71:b4:fd:9f:c6:0e:a3:4f:70:5b:02:da:
fc:73:a6:89:34:32:43:25:7b:7c:e6:70:ed:ec:fe:
e1:5a:8f:a5:5a:2b:f2:dd:90:b1:40:aa:05:10:34:
34:39:5c:bc:3c:ec:4c:36:04:85:69:b0:72:3a:21:
3f:6f:df:1b:a0:64:ae:4b:5f:65:bf:21:b8:50:f6:
40:24:e9:3c:a7:26:3e:b5:78:3e:ca:70:6a:9b:f6:
53:c7:8b:0a:f9:12:4d:9f:a4:6c:ba:e0:b2:f8:64:
ac:1f:16:61:dd:17:85:a2:7d:40:1c:fc:07:13:37:
a5:08:64:a2:da:49:09:9d:d6:fc:8e:b9:44:e1:a2:
dd:bc:43:17:a7:24:9c:ef:af:12:0c:aa:c7:0a:86:
8f:06:37:4a:ed:ec:84:40:01:98:af:4f:a2:64:35:
b4:81:c0:8f:c5:47:86:16:9c:0d:19:91:dd:a1:a5:
17:4c:09:ed:c0:c5:87:93:a5:76:7e:f9:36:4c:44:
0e:37:cf:3f:90:e1:45:1c:40:3d:5b:02:13:88:12:
83:53:ee:3a:0b:c6:c5:f6:67:b3:fb:2c:43:1b:9e:
d9:61:04:3a:c7:cb:48:48:36:a9:51:27:3c:b5:e9:
a6:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:24:59:C5:B0:E8:7F:A3:C5:74:96:60:14:8D:5A:63:63:99:59:71
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/uCRZxbDof6PFdJZgFI1aY2OZWXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
56:28:c7:ec:7f:7a:b9:39:cd:8f:1f:f0:40:70:39:76:9f:a5:
60:74:70:e6:a0:4b:70:65:b2:da:50:33:eb:87:c4:1f:ba:be:
cf:c5:54:23:af:de:3c:ea:d0:58:5f:85:2c:6a:ed:94:d8:40:
a6:57:f5:c5:3a:bd:bd:5f:37:26:09:ff:14:fc:f4:f9:af:f8:
54:4b:e4:d9:5c:2e:9e:f2:36:48:d0:6a:2e:df:b0:d7:aa:17:
2b:ae:64:6a:ae:5c:1d:a3:f3:a0:09:44:ca:f5:65:42:61:c3:
d2:39:c0:e0:23:46:14:c8:d1:4b:92:9d:ae:7f:ef:db:a4:29:
79:b1:20:f7:1d:74:52:fd:bc:90:3e:19:be:7d:f3:88:b3:b4:
67:1a:8d:af:48:36:79:b7:50:03:71:eb:dc:cb:32:73:67:d8:
55:63:ec:5e:d6:28:93:68:73:2c:89:3e:96:5c:6c:ec:34:c0:
5f:2e:b1:26:d1:e9:9c:39:f2:4e:1b:2d:63:6e:82:d3:a2:54:
73:5a:a8:4c:e5:fd:dc:94:ef:81:56:be:a2:9f:5c:9a:39:bd:
a3:ae:7a:85:97:e9:d8:6b:4f:fa:8a:5b:ba:4a:41:38:0e:65:
b8:12:8b:74:c3:f2:ca:05:30:97:18:48:03:d9:df:5a:56:35:
b4:86:be:fe
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYcoI1Pj8L5GU9/Y3fdzyQFaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwMzI4MTIxMzM2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiODI0NTljNWIwZTg3ZmEzYzU3NDk2NjAxNDhkNWE2MzYzOTk1OTcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhl14358PcwwQCcTOKEW4hVJxtP2f
xg6jT3BbAtr8c6aJNDJDJXt85nDt7P7hWo+lWivy3ZCxQKoFEDQ0OVy8POxMNgSF
abByOiE/b98boGSuS19lvyG4UPZAJOk8pyY+tXg+ynBqm/ZTx4sK+RJNn6RsuuCy
+GSsHxZh3ReFon1AHPwHEzelCGSi2kkJndb8jrlE4aLdvEMXpySc768SDKrHCoaP
BjdK7eyEQAGYr0+iZDW0gcCPxUeGFpwNGZHdoaUXTAntwMWHk6V2fvk2TEQON88/
kOFFHEA9WwITiBKDU+46C8bF9mez+yxDG57ZYQQ6x8tISDapUSc8temm4QIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFLgkWcWw6H+jxXSWYBSNWmNjmVlxMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvdUNSWnhiRG9mNlBGZEpaZ0ZJMWFZMk9aV1hFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAFYox+x/erk5zY8f8EBw
OXafpWB0cOagS3BlstpQM+uHxB+6vs/FVCOv3jzq0FhfhSxq7ZTYQKZX9cU6vb1f
NyYJ/xT89Pmv+FRL5NlcLp7yNkjQai7fsNeqFyuuZGquXB2j86AJRMr1ZUJhw9I5
wOAjRhTI0UuSna5/79ukKXmxIPcddFL9vJA+Gb5984iztGcaja9INnm3UANx69zL
MnNn2FVj7F7WKJNocyyJPpZcbOw0wF8usSbR6Zw58k4bLWNugtOiVHNaqEzl/dyU
74FWvqKfXJo5vaOueoWX6dhrT/qKW7pKQTgOZbgSi3TD8soFMJcYSAPZ31pWNbSG
vv4=
-----END CERTIFICATE-----
Generated at Wed Apr 30 21:06:23 2025 by rpki-client