Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/d7aIJGUci-ApZ0Mhn65t0ap4DHg.roa
File: d7aIJGUci-ApZ0Mhn65t0ap4DHg.roa (raw, json)
Hash identifier: yXnDjnokZ2AZsnt1iTIaoAA2KkdYccP7uesYHNdZslc=
Subject key identifier: 77:B6:88:24:65:1C:8B:E0:29:67:43:21:9F:AE:6D:D1:AA:78:0C:78
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0183DC37EDCAF3F9878CAA382B45A93775C1
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/d7aIJGUci-ApZ0Mhn65t0ap4DHg.roa
Signing time: Sat 15 Oct 2022 15:16:36 +0000
ROA not before: Sat 15 Oct 2022 15:16:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:dc:37:ed:ca:f3:f9:87:8c:aa:38:2b:45:a9:37:75:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Oct 15 15:16:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77b68824651c8be0296743219fae6dd1aa780c78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:0a:f5:26:e6:13:8b:c0:de:cf:df:95:1a:73:
6d:56:8a:b8:04:d3:0f:38:70:a0:38:72:4f:91:b0:
1c:f8:5f:ce:26:67:2f:b9:d9:ca:d7:d8:8c:9c:d0:
c5:bc:91:14:7a:90:98:89:d5:65:c1:02:fd:ab:e1:
4c:d7:d4:3d:38:ff:c2:ba:ec:86:b8:6b:c5:1c:b9:
d7:b6:06:97:b4:ca:fb:ea:25:b9:3a:0e:00:34:aa:
a4:cc:69:76:e0:f2:59:ca:f5:9b:0d:f6:67:9f:e4:
f4:0a:36:3c:7a:c0:58:d5:25:14:8d:8e:78:a3:63:
a0:f7:cb:e5:7e:2f:96:d7:56:27:32:8a:77:e1:41:
ea:60:ca:bf:9a:c2:38:34:5b:75:5e:98:b2:65:22:
d0:f3:5e:08:1d:25:65:9b:3b:2b:5f:a7:2c:f4:6e:
6b:93:e2:2c:a7:e5:56:84:d2:38:65:a8:6c:82:3c:
c4:79:bc:80:2e:72:11:21:3c:2a:17:cc:f6:55:11:
2f:2c:81:9e:09:7d:3b:83:45:5d:37:d4:5e:a4:f6:
49:1d:4a:88:aa:25:48:f7:87:28:50:f9:a0:bd:17:
c5:1c:63:76:9f:1c:65:5c:5e:bf:1d:50:0b:cd:13:
39:bf:a0:98:8d:92:e4:6f:75:59:26:85:34:45:8c:
ef:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:B6:88:24:65:1C:8B:E0:29:67:43:21:9F:AE:6D:D1:AA:78:0C:78
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/d7aIJGUci-ApZ0Mhn65t0ap4DHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
af:c2:75:8e:a6:38:44:89:f3:82:23:5d:e3:3c:81:ab:78:14:
0e:9e:96:c8:77:73:27:d0:09:3b:e7:4e:b2:1c:d5:f0:5d:9d:
7e:12:f3:9d:54:0f:e9:27:f3:c7:b0:8d:f3:41:d2:1b:69:99:
10:63:dd:57:25:49:93:94:50:38:e7:1f:03:7f:4a:b9:34:a7:
df:0d:11:62:25:d2:d6:de:5f:1e:76:be:82:11:5d:13:fc:19:
4e:f9:e1:7a:a8:8b:55:56:88:5a:e5:58:94:62:e3:05:b4:89:
48:f4:41:0c:17:46:c8:17:9f:95:18:51:e7:81:b5:4d:32:4a:
f1:1c:d9:58:3d:b2:03:c5:30:81:c7:d8:f3:a6:40:55:f4:db:
a4:88:1d:f4:a2:a0:5f:f5:c7:99:0a:c4:61:be:21:9a:6f:e9:
f7:6d:a0:38:79:70:cc:fc:86:1e:01:3b:05:ac:6c:b3:11:f7:
ac:31:5a:03:bd:b7:66:0d:d0:b2:9a:ac:1c:30:6c:a9:1b:db:
5e:d4:6d:7e:72:18:18:0d:b9:2c:fc:c5:e7:30:af:8c:da:59:
ff:32:12:ce:4d:c2:4a:10:67:a5:75:a6:55:8d:9c:b2:1e:37:
4c:2a:ad:0c:63:22:9b:4a:49:63:57:fa:a3:0d:c8:76:2d:00:
b2:0f:3a:06
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYPcN+3K8/mHjKo4K0WpN3XBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjIxMDE1MTUxNjM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3N2I2ODgyNDY1MWM4YmUwMjk2NzQzMjE5ZmFlNmRkMWFhNzgwYzc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8Qr1JuYTi8Dez9+VGnNtVoq4BNMP
OHCgOHJPkbAc+F/OJmcvudnK19iMnNDFvJEUepCYidVlwQL9q+FM19Q9OP/CuuyG
uGvFHLnXtgaXtMr76iW5Og4ANKqkzGl24PJZyvWbDfZnn+T0CjY8esBY1SUUjY54
o2Og98vlfi+W11YnMop34UHqYMq/msI4NFt1XpiyZSLQ814IHSVlmzsrX6cs9G5r
k+Isp+VWhNI4ZahsgjzEebyALnIRITwqF8z2VREvLIGeCX07g0VdN9RepPZJHUqI
qiVI94coUPmgvRfFHGN2nxxlXF6/HVALzRM5v6CYjZLkb3VZJoU0RYzvXwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFHe2iCRlHIvgKWdDIZ+ubdGqeAx4MB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvZDdhSUpHVWNpLUFwWjBNaG42NXQwYXA0REhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAK/CdY6mOESJ84IjXeM8
gat4FA6elsh3cyfQCTvnTrIc1fBdnX4S851UD+kn88ewjfNB0htpmRBj3VclSZOU
UDjnHwN/Srk0p98NEWIl0tbeXx52voIRXRP8GU754Xqoi1VWiFrlWJRi4wW0iUj0
QQwXRsgXn5UYUeeBtU0ySvEc2Vg9sgPFMIHH2POmQFX026SIHfSioF/1x5kKxGG+
IZpv6fdtoDh5cMz8hh4BOwWsbLMR96wxWgO9t2YN0LKarBwwbKkb217UbX5yGBgN
uSz8xecwr4zaWf8yEs5NwkoQZ6V1plWNnLIeN0wqrQxjIptKSWNX+qMNyHYtALIP
OgY=
-----END CERTIFICATE-----
Generated at Mon Jun 9 06:16:37 2025 by rpki-client