Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/SfS1Lm0vil7195QHFeUrN1Uns0g.roa
File: SfS1Lm0vil7195QHFeUrN1Uns0g.roa (raw, json)
Hash identifier: UICaMdtnNaaXzqxQGL2Kuj5POvjDLdLSoTOt6YON2Z0=
Subject key identifier: 49:F4:B5:2E:6D:2F:8A:5E:F5:F7:94:07:15:E5:2B:37:55:27:B3:48
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 8783940E
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/SfS1Lm0vil7195QHFeUrN1Uns0g.roa
Signing time: Fri 27 May 2022 01:12:13 +0000
ROA not before: Fri 27 May 2022 01:12:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:181:22f:7a99/128 maxlen: 128
2001:67c:64:ffff:0:180:ff9c:1e7a/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2273547278 (0x8783940e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 27 01:12:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49f4b52e6d2f8a5ef5f7940715e52b375527b348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:82:82:47:66:55:ab:53:8e:3d:42:ee:ff:ff:
96:4c:de:cc:65:0c:9a:0a:79:0e:e7:17:bb:f1:14:
2d:1e:17:95:20:db:2f:c1:cf:f1:02:03:91:9e:fe:
02:5b:96:35:58:08:38:b2:da:24:9d:dd:6f:c4:b6:
a5:34:4b:56:83:23:ee:59:e8:ec:13:6b:8f:fc:bc:
e7:ca:db:02:7f:34:32:a3:7b:53:20:01:77:bc:f6:
1e:d9:05:40:60:e2:99:27:e5:37:2b:cc:5d:95:08:
12:3a:b1:91:36:01:90:bb:cb:f9:25:8d:ab:87:e0:
14:6c:82:db:10:bd:28:b2:b3:b0:8d:8c:5d:54:3e:
cb:17:16:71:b2:63:6c:0b:13:c5:80:5f:2c:35:d9:
ac:fd:2b:d9:40:21:5b:97:b7:c6:12:e9:a9:bf:23:
2f:2f:bd:fa:96:23:86:41:60:e9:30:f4:11:70:ac:
b1:67:28:c0:4c:ac:41:92:73:f1:c3:53:cc:3b:df:
30:9b:1f:f6:63:4b:87:e2:e5:2d:f0:3e:d6:1b:a0:
17:18:e3:37:7c:7f:1e:55:49:39:fd:bb:36:10:c5:
7b:68:bc:c4:12:f5:6d:d5:df:20:8a:a3:f0:38:8c:
c8:9b:39:f6:02:ed:04:7c:a7:72:74:06:6f:5e:3c:
d9:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:F4:B5:2E:6D:2F:8A:5E:F5:F7:94:07:15:E5:2B:37:55:27:B3:48
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/SfS1Lm0vil7195QHFeUrN1Uns0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
1b:63:44:1d:8c:fe:61:00:7c:b8:64:9b:24:b2:f0:5e:2c:26:
89:b1:93:13:bb:42:4e:8c:bd:ff:d3:80:63:c2:9d:1f:1f:a7:
ad:70:58:d7:08:c1:5a:db:18:4f:f9:61:7a:75:02:5e:ab:cd:
9c:c8:fa:93:5b:48:cd:36:1d:44:77:ed:4a:b4:83:9e:7c:16:
dc:69:70:1a:5b:41:cc:d3:21:6f:8a:6d:d4:2f:9b:a8:7a:da:
79:36:00:8f:df:7b:bb:a0:4f:6a:ae:c7:97:e7:ae:ec:3a:24:
9e:1f:7a:9f:87:52:d2:15:41:a7:97:22:b3:c8:f3:3b:45:e5:
ef:2a:e6:6d:4b:e4:71:8f:e2:b4:46:26:e0:6c:dd:e2:0f:6c:
ff:bb:b5:46:6b:92:e6:b8:53:f3:01:1a:b2:cc:e1:87:28:11:
13:2a:25:d9:4e:26:c9:5b:57:65:a0:40:d0:ab:83:ae:83:17:
05:9e:ef:fd:46:19:1b:35:5b:8b:dd:fd:28:8e:85:42:2f:bb:
f9:5f:1e:80:5e:3a:df:55:8d:63:7d:be:63:d1:e1:e8:77:eb:
96:58:4f:cb:ce:0e:82:3a:0f:be:81:8f:55:db:6a:9b:64:e2:
56:23:9a:24:08:02:e9:95:c2:56:bb:79:81:f2:0d:50:92:71:
73:0e:b5:e2
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgIFAIeDlA4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMo
NzIwNDdiZTE1YjI3NTkwMmRjZjYxN2RjM2QwZTE2ZGMxZjMwODAyMjAeFw0yMjA1
MjcwMTEyMTNaFw0yMzA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDQ5ZjRiNTJlNmQy
ZjhhNWVmNWY3OTQwNzE1ZTUyYjM3NTUyN2IzNDgwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCtgoJHZlWrU449Qu7//5ZM3sxlDJoKeQ7nF7vxFC0eF5Ug
2y/Bz/ECA5Ge/gJbljVYCDiy2iSd3W/EtqU0S1aDI+5Z6OwTa4/8vOfK2wJ/NDKj
e1MgAXe89h7ZBUBg4pkn5TcrzF2VCBI6sZE2AZC7y/kljauH4BRsgtsQvSiys7CN
jF1UPssXFnGyY2wLE8WAXyw12az9K9lAIVuXt8YS6am/Iy8vvfqWI4ZBYOkw9BFw
rLFnKMBMrEGSc/HDU8w73zCbH/ZjS4fi5S3wPtYboBcY4zd8fx5VSTn9uzYQxXto
vMQS9W3V3yCKo/A4jMibOfYC7QR8p3J0Bm9ePNlPAgMBAAGjggIaMIICFjAdBgNV
HQ4EFgQUSfS1Lm0vil7195QHFeUrN1Uns0gwHwYDVR0jBBgwFoAUcgR74VsnWQLc
9hfcPQ4W3B8wgCIwDgYDVR0PAQH/BAQDAgeAMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVM
VC9jZ1I3NFZzbldRTGM5aGZjUFE0VzNCOHdnQ0kuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzVlLzc5ODQ0Ny0yMWY0LTQ1YWItOTlkYy0xYWJlM2FjMTBhYTYv
MS9TZlMxTG0wdmlsNzE5NVFIRmVVck4xVW5zMGcucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzVl
Lzc5ODQ0Ny0yMWY0LTQ1YWItOTlkYy0xYWJlM2FjMTBhYTYvMS9jZ1I3NFZzbldR
TGM5aGZjUFE0VzNCOHdnQ0kuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
MAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYDBAPBABgwDwQCAAIwCQMHACABBnwA
ZDANBgkqhkiG9w0BAQsFAAOCAQEAG2NEHYz+YQB8uGSbJLLwXiwmibGTE7tCToy9
/9OAY8KdHx+nrXBY1wjBWtsYT/lhenUCXqvNnMj6k1tIzTYdRHftSrSDnnwW3Glw
GltBzNMhb4pt1C+bqHraeTYAj997u6BPaq7Hl+eu7Doknh96n4dS0hVBp5cis8jz
O0Xl7yrmbUvkcY/itEYm4Gzd4g9s/7u1RmuS5rhT8wEasszhhygREyol2U4myVtX
ZaBA0KuDroMXBZ7v/UYZGzVbi939KI6FQi+7+V8egF4631WNY32+Y9Hh6HfrllhP
y84OgjoPvoGPVdtqm2TiViOaJAgC6ZXCVrt5gfINUJJxcw614g==
-----END CERTIFICATE-----
Generated at Mon Jun 9 02:10:25 2025 by rpki-client