Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/9cae3a-08ba-466a-9a9a-c730c4916879/1/J1JzVbdCjYwjM8PTAUKhSKbTR_M.roa
File: J1JzVbdCjYwjM8PTAUKhSKbTR_M.roa (raw, json)
Hash identifier: L78UG94OVkkJ6bQku5IVh60IjUmWhPOSDWqrMmnovtw=
Subject key identifier: 27:52:73:55:B7:42:8D:8C:23:33:C3:D3:01:42:A1:48:A6:D3:47:F3
Certificate issuer: /CN=b4b58721100907bf34f0d93fa54973fd2f4df707
Certificate serial: 1AA7CA23
Authority key identifier: B4:B5:87:21:10:09:07:BF:34:F0:D9:3F:A5:49:73:FD:2F:4D:F7:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tLWHIRAJB7808Nk_pUlz_S9N9wc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/9cae3a-08ba-466a-9a9a-c730c4916879/1/J1JzVbdCjYwjM8PTAUKhSKbTR_M.roa
Signing time: Sat 01 Jan 2022 15:01:48 +0000
ROA not before: Sat 01 Jan 2022 15:01:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44220
IP address blocks: 94.103.48.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 447203875 (0x1aa7ca23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4b58721100907bf34f0d93fa54973fd2f4df707
Validity
Not Before: Jan 1 15:01:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27527355b7428d8c2333c3d30142a148a6d347f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f7:24:22:7f:75:81:3b:f0:95:0e:a3:98:67:
b8:88:b0:6c:ea:1a:3c:30:aa:03:73:b7:4d:e3:2f:
e3:a4:09:ce:c1:66:40:56:af:d1:e5:69:cf:80:6f:
08:6c:b3:02:e9:2b:c9:2d:cf:41:9d:f7:1a:52:e3:
37:d8:ce:29:60:65:68:76:e7:ce:f3:64:c4:a9:62:
2c:51:ad:54:50:65:19:bc:4b:1b:da:c8:2a:9b:32:
a9:6b:0e:dd:30:69:42:bd:cf:52:3a:a2:06:8e:30:
db:4b:90:20:bc:4b:10:97:f0:ab:77:6a:90:d6:01:
e7:09:55:21:39:2a:5b:dd:3e:88:5c:9f:aa:e6:79:
f6:92:06:fa:af:86:22:6f:86:7b:db:b9:c6:1b:12:
9c:38:79:68:79:94:f2:52:ca:8a:b8:49:fe:02:2f:
3f:76:c9:94:73:1d:f3:74:b2:ba:2f:03:b5:2d:10:
ac:7f:98:35:d6:bc:45:b0:6a:f1:b8:41:79:14:eb:
08:5b:40:9b:48:58:a6:f7:8e:91:48:74:89:58:d8:
de:44:d5:51:6d:41:3c:fa:01:90:13:f9:06:db:1c:
0c:92:7c:fa:2f:30:89:f4:fb:b3:07:8c:e8:6e:8e:
69:b8:17:59:19:44:80:7b:82:f3:02:45:0d:5b:1d:
c5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:52:73:55:B7:42:8D:8C:23:33:C3:D3:01:42:A1:48:A6:D3:47:F3
X509v3 Authority Key Identifier:
keyid:B4:B5:87:21:10:09:07:BF:34:F0:D9:3F:A5:49:73:FD:2F:4D:F7:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tLWHIRAJB7808Nk_pUlz_S9N9wc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/9cae3a-08ba-466a-9a9a-c730c4916879/1/J1JzVbdCjYwjM8PTAUKhSKbTR_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/9cae3a-08ba-466a-9a9a-c730c4916879/1/tLWHIRAJB7808Nk_pUlz_S9N9wc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.103.48.0/20
Signature Algorithm: sha256WithRSAEncryption
77:cd:0f:86:6c:c0:35:e8:7b:8f:87:0e:84:9d:20:96:cc:74:
4b:d5:05:f1:00:84:e3:88:4f:bb:1c:5c:0b:94:3d:c6:6c:1b:
fe:85:9d:7b:05:3c:68:e7:b1:0a:80:a5:9d:53:16:39:47:3d:
4c:d9:05:26:0e:42:85:0f:9e:d3:bc:fa:45:70:ea:75:3b:eb:
de:d5:51:78:b4:39:a1:ee:64:17:b1:20:c4:a8:71:c8:5c:73:
35:cc:e9:1f:15:3c:01:5e:4f:20:2d:1d:d6:56:07:f6:59:e9:
50:59:f6:bf:f9:42:22:29:9c:52:c3:be:79:a5:be:58:63:28:
64:a4:25:50:dc:dc:67:20:84:56:79:a1:da:5d:37:cd:3d:5f:
cc:11:b8:7e:15:e1:61:a7:57:43:27:48:ae:9e:f3:a5:55:b0:
bc:24:ce:5c:2c:b1:fe:85:c5:18:ab:cd:92:48:ba:c1:44:88:
4a:1e:e2:f1:73:91:d5:f3:fa:cd:41:d0:29:57:44:83:f1:37:
f5:89:ec:61:fc:f3:97:7d:d0:c2:eb:e6:a0:20:de:92:70:2d:
0f:fe:f3:68:a0:af:75:91:8b:c0:93:08:07:a0:1f:eb:46:e1:
50:0d:59:5d:c4:42:5e:5b:2d:e9:ae:8c:5e:eb:98:b1:17:a8:
65:72:3e:1f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGqfKIzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NGI1ODcyMTEwMDkwN2JmMzRmMGQ5M2ZhNTQ5NzNmZDJmNGRmNzA3MB4XDTIyMDEw
MTE1MDE0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjc1MjczNTViNzQy
OGQ4YzIzMzNjM2QzMDE0MmExNDhhNmQzNDdmMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKD3JCJ/dYE78JUOo5hnuIiwbOoaPDCqA3O3TeMv46QJzsFm
QFav0eVpz4BvCGyzAukryS3PQZ33GlLjN9jOKWBlaHbnzvNkxKliLFGtVFBlGbxL
G9rIKpsyqWsO3TBpQr3PUjqiBo4w20uQILxLEJfwq3dqkNYB5wlVITkqW90+iFyf
quZ59pIG+q+GIm+Ge9u5xhsSnDh5aHmU8lLKirhJ/gIvP3bJlHMd83Syui8DtS0Q
rH+YNda8RbBq8bhBeRTrCFtAm0hYpveOkUh0iVjY3kTVUW1BPPoBkBP5BtscDJJ8
+i8wifT7sweM6G6OabgXWRlEgHuC8wJFDVsdxb0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQnUnNVt0KNjCMzw9MBQqFIptNH8zAfBgNVHSMEGDAWgBS0tYchEAkHvzTw
2T+lSXP9L033BzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RMV0hJUkFKQjc4MDhOa19wVWx6X1M5Tjl3Yy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzkvOWNhZTNhLTA4YmEtNDY2YS05YTlhLWM3MzBjNDkxNjg3OS8x
L0oxSnpWYmRDall3ak04UFRBVUtoU0tiVFJfTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzkv
OWNhZTNhLTA4YmEtNDY2YS05YTlhLWM3MzBjNDkxNjg3OS8xL3RMV0hJUkFKQjc4
MDhOa19wVWx6X1M5Tjl3Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBF5nMDANBgkqhkiG9w0BAQsFAAOC
AQEAd80PhmzANeh7j4cOhJ0glsx0S9UF8QCE44hPuxxcC5Q9xmwb/oWdewU8aOex
CoClnVMWOUc9TNkFJg5ChQ+e07z6RXDqdTvr3tVReLQ5oe5kF7EgxKhxyFxzNczp
HxU8AV5PIC0d1lYH9lnpUFn2v/lCIimcUsO+eaW+WGMoZKQlUNzcZyCEVnmh2l03
zT1fzBG4fhXhYadXQydIrp7zpVWwvCTOXCyx/oXFGKvNkki6wUSISh7i8XOR1fP6
zUHQKVdEg/E39YnsYfzzl33QwuvmoCDeknAtD/7zaKCvdZGLwJMIB6Af60bhUA1Z
XcRCXlst6a6MXuuYsReoZXI+Hw==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:25 2025 by rpki-client