Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/umSIlBrZi30Iu3Wk-fUpOdj_k6Q.roa
File: umSIlBrZi30Iu3Wk-fUpOdj_k6Q.roa (raw, json)
Hash identifier: f9FUOm8T5ffpBy//ewVqz1P5hA00QW0suzYJhmWrzFQ=
Subject key identifier: BA:64:88:94:1A:D9:8B:7D:08:BB:75:A4:F9:F5:29:39:D8:FF:93:A4
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01841812A61AAAFB0DF1B32FFAC8F98AE192
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/umSIlBrZi30Iu3Wk-fUpOdj_k6Q.roa
Signing time: Thu 27 Oct 2022 06:13:06 +0000
ROA not before: Thu 27 Oct 2022 06:13:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:18:12:a6:1a:aa:fb:0d:f1:b3:2f:fa:c8:f9:8a:e1:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Oct 27 06:13:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba6488941ad98b7d08bb75a4f9f52939d8ff93a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f1:7b:45:ab:3b:f0:bf:cd:c1:cf:5e:8f:b7:
54:f2:00:87:e9:99:0a:6a:f4:2f:4e:31:7e:67:6c:
fe:40:cb:e4:a6:98:34:46:15:94:bf:8c:03:a3:f3:
ad:9c:62:c3:87:52:87:f1:02:ea:49:7d:2f:e1:67:
22:38:fa:6c:b1:2c:9b:bd:b4:1c:c6:82:c9:f2:49:
b3:e0:45:0e:fe:66:b4:4b:10:f2:c0:a2:83:92:24:
d0:e9:fa:3c:9a:50:21:43:37:5e:f3:5e:a1:a7:e9:
7d:e0:8f:18:a0:e7:db:19:03:cb:7b:c6:99:18:4f:
3a:46:60:03:d6:fa:c7:30:78:e7:4e:2a:ac:f6:85:
ff:06:ec:67:18:1a:13:42:6a:f8:32:d9:06:2c:43:
86:55:68:45:d7:0e:c6:43:e7:f5:e1:44:27:ca:74:
d3:81:f6:7c:01:61:47:b7:70:3c:05:eb:4e:80:1b:
1a:4b:0c:02:b1:58:f1:3f:ff:30:03:72:51:f5:13:
1f:3f:c3:b4:8d:f8:a6:ef:28:95:e9:92:13:da:63:
b6:45:9d:7e:ce:92:f9:9c:35:84:49:de:1a:a4:af:
88:88:b9:16:0e:2e:a8:6e:f2:a8:0b:21:25:c2:d9:
d6:6a:aa:52:14:45:4f:88:9f:1c:71:db:fa:e7:cc:
a7:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:64:88:94:1A:D9:8B:7D:08:BB:75:A4:F9:F5:29:39:D8:FF:93:A4
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/umSIlBrZi30Iu3Wk-fUpOdj_k6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
88:35:b1:96:96:01:26:52:94:e1:9f:07:b1:7f:81:55:94:bb:
c2:2c:6a:95:1f:d3:cd:5e:4b:6f:d1:ed:6f:d2:5a:05:cd:e4:
75:56:d1:1d:f0:55:ba:bd:7a:ce:e0:b3:28:17:72:53:b8:8b:
6e:21:65:e7:32:ae:0d:a0:72:8e:f2:a7:08:19:aa:78:ad:cd:
8b:4f:af:2b:43:79:09:f4:a2:67:37:18:c3:fc:8d:78:95:8d:
0d:34:2c:80:56:5b:e8:5c:45:ed:73:9a:9d:1d:71:d1:91:a5:
60:14:68:18:45:34:2a:2c:e3:48:d2:dd:78:56:27:bd:5c:d8:
d6:4f:b8:64:94:36:08:97:c3:00:b0:4b:f8:02:6e:f6:74:74:
a6:7c:15:ed:c7:de:64:4e:58:56:8c:36:9c:06:61:87:2d:51:
96:35:89:85:31:48:64:5a:b2:79:1d:f1:4d:bd:34:e6:9c:01:
f4:9e:3a:6c:1f:08:e4:b0:3e:52:63:e5:96:86:14:e2:cf:53:
f2:e7:f0:8c:43:b6:c7:21:a0:6d:68:85:f8:39:b1:89:1b:24:
87:5c:62:01:a8:80:b4:b7:43:ec:82:64:ab:f7:ce:1c:4e:e0:
63:f3:de:7b:c4:3b:b8:3f:b4:67:9b:db:ef:ad:ea:44:f5:09:
37:23:6b:ea
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYQYEqYaqvsN8bMv+sj5iuGSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjIxMDI3MDYxMzA2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYTY0ODg5NDFhZDk4YjdkMDhiYjc1YTRmOWY1MjkzOWQ4ZmY5M2E0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzvF7Ras78L/Nwc9ej7dU8gCH6ZkK
avQvTjF+Z2z+QMvkppg0RhWUv4wDo/OtnGLDh1KH8QLqSX0v4WciOPpssSybvbQc
xoLJ8kmz4EUO/ma0SxDywKKDkiTQ6fo8mlAhQzde816hp+l94I8YoOfbGQPLe8aZ
GE86RmAD1vrHMHjnTiqs9oX/BuxnGBoTQmr4MtkGLEOGVWhF1w7GQ+f14UQnynTT
gfZ8AWFHt3A8BetOgBsaSwwCsVjxP/8wA3JR9RMfP8O0jfim7yiV6ZIT2mO2RZ1+
zpL5nDWESd4apK+IiLkWDi6obvKoCyElwtnWaqpSFEVPiJ8ccdv658ynSwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFLpkiJQa2Yt9CLt1pPn1KTnY/5OkMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvdW1TSWxCclppMzBJdTNXay1mVXBPZGpfazZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAIg1sZaWASZSlOGfB7F/
gVWUu8IsapUf081eS2/R7W/SWgXN5HVW0R3wVbq9es7gsygXclO4i24hZecyrg2g
co7ypwgZqnitzYtPrytDeQn0omc3GMP8jXiVjQ00LIBWW+hcRe1zmp0dcdGRpWAU
aBhFNCos40jS3XhWJ71c2NZPuGSUNgiXwwCwS/gCbvZ0dKZ8Fe3H3mROWFaMNpwG
YYctUZY1iYUxSGRasnkd8U29NOacAfSeOmwfCOSwPlJj5ZaGFOLPU/Ln8IxDtsch
oG1ohfg5sYkbJIdcYgGogLS3Q+yCZKv3zhxO4GPz3nvEO7g/tGeb2++t6kT1CTcj
a+o=
-----END CERTIFICATE-----
Generated at Wed Apr 30 18:23:40 2025 by rpki-client