Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/h2V-1qw5Ns_0KusZMd0Uxe8G9Lk.roa
File: h2V-1qw5Ns_0KusZMd0Uxe8G9Lk.roa (raw, json)
Hash identifier: 57/X+eqAxvP+U+UNBkBhVb3LDm7YvLlpHvbJH9eksBg=
Subject key identifier: 87:65:7E:D6:AC:39:36:CF:F4:2A:EB:19:31:DD:14:C5:EF:06:F4:B9
Certificate issuer: /CN=727b4876a2d11058c2e6a779fceac5f04083b4c2
Certificate serial: 018964C13AA2BA4F0E07E23DCBAB6C3378F6
Authority key identifier: 72:7B:48:76:A2:D1:10:58:C2:E6:A7:79:FC:EA:C5:F0:40:83:B4:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cntIdqLREFjC5qd5_OrF8ECDtMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/h2V-1qw5Ns_0KusZMd0Uxe8G9Lk.roa
Signing time: Mon 17 Jul 2023 16:48:52 +0000
ROA not before: Mon 17 Jul 2023 16:48:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49505
IP address blocks: 5.172.179.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c1:3a:a2:ba:4f:0e:07:e2:3d:cb:ab:6c:33:78:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=727b4876a2d11058c2e6a779fceac5f04083b4c2
Validity
Not Before: Jul 17 16:48:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87657ed6ac3936cff42aeb1931dd14c5ef06f4b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:fc:66:41:4f:45:67:1f:ec:21:4d:a3:61:e1:
40:c1:7a:de:e0:8c:68:88:14:01:3b:b2:ec:d8:06:
82:25:05:0f:4b:e4:b9:dc:0f:fe:d8:f4:d6:08:99:
15:3c:f6:05:05:d4:29:a1:39:39:f2:06:a3:68:a0:
b1:11:15:78:08:bf:44:cc:13:43:c7:6f:37:9e:d8:
ca:ec:bd:fb:68:e5:0c:7c:f9:07:17:41:ed:94:1e:
24:fe:ea:97:29:91:b9:0e:28:b6:f0:37:00:f9:69:
1f:e6:3c:17:53:25:5e:15:83:54:3b:58:c7:06:ad:
d5:cf:13:94:88:45:a5:f3:11:7a:dc:fa:f3:83:ef:
c3:c6:a7:f9:2f:ae:c7:92:79:2e:f7:2d:09:17:d3:
93:45:f6:93:f5:50:7c:05:2c:a7:fd:07:90:81:d2:
a8:7d:18:af:a4:ba:9c:bf:2d:6d:73:1d:e8:12:32:
5b:c9:63:7d:b9:bd:d3:6f:88:f3:30:30:e8:ce:d7:
e4:67:38:cd:93:d8:cd:7c:1c:95:6c:96:63:dd:e4:
03:d7:0d:50:6c:02:05:39:7d:0b:4b:4d:8c:ab:3a:
cc:0d:ff:c6:5e:bc:f6:77:19:6e:93:bf:27:b4:99:
98:db:7e:23:96:41:69:50:ad:33:72:0e:d3:18:f3:
4f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:65:7E:D6:AC:39:36:CF:F4:2A:EB:19:31:DD:14:C5:EF:06:F4:B9
X509v3 Authority Key Identifier:
keyid:72:7B:48:76:A2:D1:10:58:C2:E6:A7:79:FC:EA:C5:F0:40:83:B4:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cntIdqLREFjC5qd5_OrF8ECDtMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/h2V-1qw5Ns_0KusZMd0Uxe8G9Lk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/cntIdqLREFjC5qd5_OrF8ECDtMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.179.0/24
Signature Algorithm: sha256WithRSAEncryption
65:a3:ca:03:39:d6:4e:91:6b:4c:f9:6d:a0:c9:1d:01:4c:30:
24:53:5b:b1:33:de:f1:24:f1:2f:56:02:46:81:e3:72:0e:81:
66:69:d2:e5:b6:9d:7f:6a:8f:19:f2:37:30:47:fb:eb:61:58:
c1:90:ca:fa:6a:ad:5e:b4:a7:76:7e:36:a3:de:29:49:ec:89:
e4:f4:54:56:f2:12:8b:f8:4c:b6:88:74:55:39:cb:d0:bb:09:
e6:4e:e3:32:0c:cd:ac:1a:f0:a7:c1:87:ad:b4:ed:d3:16:b0:
76:d5:57:31:23:43:1f:fc:b5:9a:e7:6c:be:ec:ed:6b:ac:98:
86:4d:f4:35:a5:6e:d4:d7:27:f8:b2:e0:6c:04:57:f1:50:c2:
4e:81:2b:83:b5:2a:f8:2a:8e:0b:21:70:1c:43:13:23:6e:92:
1f:49:58:73:1d:71:c5:42:9e:82:20:1c:98:0c:41:1e:9d:7f:
f3:62:36:9a:9e:b6:25:0f:d0:e4:a6:72:93:bc:20:11:53:7d:
e9:63:49:2e:8f:fd:7b:f5:21:b9:3e:79:86:40:e1:23:c0:95:
62:6c:c5:c7:40:ca:26:63:7c:6e:54:e6:38:9f:83:90:b3:aa:
92:1d:4c:23:04:a7:6d:45:88:f5:b3:e2:bb:df:06:7e:be:64:
b2:dd:fe:f0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlkwTqiuk8OB+I9y6tsM3j2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyN2I0ODc2YTJkMTEwNThjMmU2YTc3OWZjZWFjNWYwNDA4
M2I0YzIwHhcNMjMwNzE3MTY0ODUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NzY1N2VkNmFjMzkzNmNmZjQyYWViMTkzMWRkMTRjNWVmMDZmNGI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgPxmQU9FZx/sIU2jYeFAwXre4Ixo
iBQBO7Ls2AaCJQUPS+S53A/+2PTWCJkVPPYFBdQpoTk58gajaKCxERV4CL9EzBND
x283ntjK7L37aOUMfPkHF0HtlB4k/uqXKZG5Dii28DcA+Wkf5jwXUyVeFYNUO1jH
Bq3VzxOUiEWl8xF63Przg+/Dxqf5L67Hknku9y0JF9OTRfaT9VB8BSyn/QeQgdKo
fRivpLqcvy1tcx3oEjJbyWN9ub3Tb4jzMDDoztfkZzjNk9jNfByVbJZj3eQD1w1Q
bAIFOX0LS02MqzrMDf/GXrz2dxluk78ntJmY234jlkFpUK0zcg7TGPNP+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIdlftasOTbP9CrrGTHdFMXvBvS5MB8GA1UdIwQY
MBaAFHJ7SHai0RBYwuanefzqxfBAg7TCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY250SWRxTFJFRmpDNXFkNV9PckY4RUNEdE1JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC9hZWVhMTAtNzIwOC00ZDVjLTg1Yjkt
OWUzNTA4OWZhNzhmLzEvaDJWLTFxdzVOc18wS3VzWk1kMFV4ZThHOUxrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC9hZWVhMTAtNzIwOC00ZDVjLTg1YjktOWUzNTA4OWZhNzhm
LzEvY250SWRxTFJFRmpDNXFkNV9PckY4RUNEdE1JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABayzMA0G
CSqGSIb3DQEBCwUAA4IBAQBlo8oDOdZOkWtM+W2gyR0BTDAkU1uxM97xJPEvVgJG
geNyDoFmadLltp1/ao8Z8jcwR/vrYVjBkMr6aq1etKd2fjaj3ilJ7Ink9FRW8hKL
+Ey2iHRVOcvQuwnmTuMyDM2sGvCnwYettO3TFrB21VcxI0Mf/LWa52y+7O1rrJiG
TfQ1pW7U1yf4suBsBFfxUMJOgSuDtSr4Ko4LIXAcQxMjbpIfSVhzHXHFQp6CIByY
DEEenX/zYjaanrYlD9DkpnKTvCARU33pY0kuj/179SG5PnmGQOEjwJVibMXHQMom
Y3xuVOY4n4OQs6qSHUwjBKdtRYj1s+K73wZ+vmSy3f7w
-----END CERTIFICATE-----
Generated at Sun Jun 8 08:30:55 2025 by rpki-client