Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/v7_8t0T-XaxPtrPgnTmBtLwPgis.roa
File: v7_8t0T-XaxPtrPgnTmBtLwPgis.roa (raw, json)
Hash identifier: tP/DhyMOkDb25yRyP2054O3+CcxSYcBXTFw2Ntvdf+c=
Subject key identifier: BF:BF:FC:B7:44:FE:5D:AC:4F:B6:B3:E0:9D:39:81:B4:BC:0F:82:2B
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018970A40DDF2D08E11706CE3026498BCFCE
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/v7_8t0T-XaxPtrPgnTmBtLwPgis.roa
Signing time: Thu 20 Jul 2023 00:12:26 +0000
ROA not before: Thu 20 Jul 2023 00:12:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:70:a4:0d:df:2d:08:e1:17:06:ce:30:26:49:8b:cf:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 20 00:12:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bfbffcb744fe5dac4fb6b3e09d3981b4bc0f822b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:05:cd:12:2f:94:ca:6e:f7:2a:27:9d:03:d1:
e1:4e:6f:97:41:72:69:b4:16:d9:97:ea:af:4f:62:
a9:53:06:18:f8:f4:fa:dc:a3:16:1d:59:8c:b6:47:
13:c5:c1:e5:63:16:9d:bb:25:13:a8:68:df:ff:3d:
b9:38:86:c3:b2:5f:7f:5e:7b:81:d4:88:9e:94:39:
43:5a:e1:e0:4c:01:10:24:32:7f:d2:be:a2:1a:cb:
9a:36:ff:df:c8:50:b4:82:9d:5a:66:fb:74:da:fc:
7d:4d:16:c7:e9:e7:55:e5:a9:fb:95:1b:64:64:c3:
ed:19:53:70:ce:e3:55:6a:18:6b:8d:04:55:78:ae:
39:18:ba:6e:98:ac:2b:f8:a8:fa:a0:5d:51:e7:2a:
df:49:5f:2b:c0:c5:32:83:a2:51:8b:8f:a1:84:8d:
2d:cf:ee:83:b7:10:27:b4:59:de:9f:8c:a9:49:6a:
7f:83:ca:c3:bd:b2:5e:1e:d0:f8:cd:0d:09:8d:17:
c7:09:e5:e3:59:0c:d3:26:c5:4b:c1:7a:0d:ea:ef:
5b:45:c4:a1:9c:c4:5f:2b:a2:b3:68:1c:fc:d9:84:
1c:f4:f1:d5:81:d8:bf:69:29:a0:67:18:77:5e:0c:
48:cd:bc:02:9b:f2:3f:4d:b6:90:61:ff:5a:e1:3c:
e7:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:BF:FC:B7:44:FE:5D:AC:4F:B6:B3:E0:9D:39:81:B4:BC:0F:82:2B
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/v7_8t0T-XaxPtrPgnTmBtLwPgis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
10:8e:bf:5e:ab:f1:6f:63:78:02:64:4e:6a:93:45:f0:96:4d:
80:ba:8d:c1:9f:bf:c6:6c:56:93:38:1a:bc:26:58:51:db:9d:
17:cf:fa:97:9f:a8:ab:6d:0b:20:7c:d9:ed:5b:ea:21:4a:fa:
76:7f:67:3d:13:7e:84:27:49:82:60:56:61:01:5c:d9:4b:8f:
7c:9c:ae:ee:f6:ca:d3:3a:27:0d:07:af:61:7b:53:03:c6:77:
57:38:a1:56:04:65:58:37:f6:bf:aa:59:d2:fb:e1:3a:4c:b6:
6b:9a:39:c9:56:a8:4a:04:a2:03:72:46:80:95:a6:10:22:71:
51:28:13:10:3d:61:d0:63:20:ab:30:e8:2d:74:ee:3c:bb:26:
9b:ec:61:87:80:ae:ff:a7:68:6f:e4:b3:cd:94:19:71:5b:80:
54:cf:e8:ce:c5:4b:c9:f1:07:85:f2:da:0c:87:8b:23:60:a8:
63:9a:86:e6:7d:b8:01:96:3a:c5:04:be:e0:7f:fc:10:ee:f0:
1e:f5:37:ed:5f:1d:f2:6a:f5:28:2f:06:fe:49:07:52:35:cd:
b0:3f:c1:a4:a2:04:66:8b:b2:b9:dd:09:62:bc:9e:56:84:78:
6a:7a:59:51:6d:2e:2c:18:88:94:bd:4e:cf:29:f4:0b:88:f8:
f3:85:a7:1f
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYlwpA3fLQjhFwbOMCZJi8/OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwNzIwMDAxMjI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZmJmZmNiNzQ0ZmU1ZGFjNGZiNmIzZTA5ZDM5ODFiNGJjMGY4MjJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjgXNEi+Uym73KiedA9HhTm+XQXJp
tBbZl+qvT2KpUwYY+PT63KMWHVmMtkcTxcHlYxaduyUTqGjf/z25OIbDsl9/XnuB
1IielDlDWuHgTAEQJDJ/0r6iGsuaNv/fyFC0gp1aZvt02vx9TRbH6edV5an7lRtk
ZMPtGVNwzuNVahhrjQRVeK45GLpumKwr+Kj6oF1R5yrfSV8rwMUyg6JRi4+hhI0t
z+6DtxAntFnen4ypSWp/g8rDvbJeHtD4zQ0JjRfHCeXjWQzTJsVLwXoN6u9bRcSh
nMRfK6KzaBz82YQc9PHVgdi/aSmgZxh3XgxIzbwCm/I/TbaQYf9a4TznuwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFL+//LdE/l2sT7az4J05gbS8D4IrMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvdjdfOHQwVC1YYXhQdHJQZ25UbUJ0THdQZ2lzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBABCOv16r8W9jeAJkTmqT
RfCWTYC6jcGfv8ZsVpM4GrwmWFHbnRfP+pefqKttCyB82e1b6iFK+nZ/Zz0TfoQn
SYJgVmEBXNlLj3ycru72ytM6Jw0Hr2F7UwPGd1c4oVYEZVg39r+qWdL74TpMtmua
OclWqEoEogNyRoCVphAicVEoExA9YdBjIKsw6C107jy7JpvsYYeArv+naG/ks82U
GXFbgFTP6M7FS8nxB4Xy2gyHiyNgqGOahuZ9uAGWOsUEvuB//BDu8B71N+1fHfJq
9SgvBv5JB1I1zbA/waSiBGaLsrndCWK8nlaEeGp6WVFtLiwYiJS9Ts8p9AuI+POF
px8=
-----END CERTIFICATE-----
Generated at Wed Apr 30 17:42:33 2025 by rpki-client