Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/32b4a2-2b2f-4f6a-9b48-c1f3b9ede4db/1/TJWvUqrg7T_IMdtvKh7pWxn-1FA.roa
File: TJWvUqrg7T_IMdtvKh7pWxn-1FA.roa (raw, json)
Hash identifier: W33cBPkZzsGr3PQ9lMSnYDHPRBO0ERxpu0ay6Rnd19s=
Subject key identifier: 4C:95:AF:52:AA:E0:ED:3F:C8:31:DB:6F:2A:1E:E9:5B:19:FE:D4:50
Certificate issuer: /CN=78bd1c6c688a175abc8d598fbcd107fca5254bde
Certificate serial: 01856C6EDB2ED3A32CEBD055A713BAED8520
Authority key identifier: 78:BD:1C:6C:68:8A:17:5A:BC:8D:59:8F:BC:D1:07:FC:A5:25:4B:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eL0cbGiKF1q8jVmPvNEH_KUlS94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/32b4a2-2b2f-4f6a-9b48-c1f3b9ede4db/1/TJWvUqrg7T_IMdtvKh7pWxn-1FA.roa
Signing time: Sun 01 Jan 2023 08:24:42 +0000
ROA not before: Sun 01 Jan 2023 08:24:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60419
IP address blocks: 185.31.84.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6e:db:2e:d3:a3:2c:eb:d0:55:a7:13:ba:ed:85:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78bd1c6c688a175abc8d598fbcd107fca5254bde
Validity
Not Before: Jan 1 08:24:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4c95af52aae0ed3fc831db6f2a1ee95b19fed450
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ee:64:d3:ff:2d:4e:61:a5:90:c7:74:06:b6:
97:53:b2:0c:15:43:a0:06:72:ee:14:1f:90:cc:bf:
ca:6e:75:c6:76:8e:5b:33:ad:aa:a0:e2:5b:d4:10:
7d:49:d3:2d:77:5f:0e:08:e4:df:78:53:03:83:22:
71:89:16:bf:c5:a0:fa:e1:e3:f6:19:3a:17:24:3a:
7b:dd:ff:72:71:8f:36:3c:b8:5d:4f:6c:04:a3:af:
aa:fc:40:a5:1e:0c:b6:98:c1:b8:9a:66:29:2c:a7:
df:cd:ff:eb:be:d6:58:cb:3f:b4:67:78:46:7a:aa:
66:4f:c1:fd:fb:c5:58:e8:ac:1c:3f:79:43:8c:54:
55:bd:48:d5:39:e9:23:27:8d:59:e4:ad:ee:32:9a:
7f:a2:32:33:24:4c:d9:d4:b7:81:89:b1:bf:f9:70:
0b:31:4d:05:4f:ef:19:04:96:73:8d:33:78:10:ec:
09:09:90:bc:3a:fa:5e:ed:29:0c:f1:77:a7:65:69:
16:29:b5:f1:f1:13:3e:00:61:db:dc:82:ca:a9:b6:
d3:b6:69:97:8a:69:8f:c3:67:f5:8d:89:6c:1b:44:
48:4e:ee:1b:e1:db:a8:91:43:a1:f8:9b:03:32:80:
3c:44:51:a8:a9:7a:28:57:a6:a7:18:a4:bd:c9:08:
32:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:95:AF:52:AA:E0:ED:3F:C8:31:DB:6F:2A:1E:E9:5B:19:FE:D4:50
X509v3 Authority Key Identifier:
keyid:78:BD:1C:6C:68:8A:17:5A:BC:8D:59:8F:BC:D1:07:FC:A5:25:4B:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eL0cbGiKF1q8jVmPvNEH_KUlS94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/32b4a2-2b2f-4f6a-9b48-c1f3b9ede4db/1/TJWvUqrg7T_IMdtvKh7pWxn-1FA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/32b4a2-2b2f-4f6a-9b48-c1f3b9ede4db/1/eL0cbGiKF1q8jVmPvNEH_KUlS94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.31.84.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:fb:e9:31:04:b2:81:b9:12:c1:1e:3b:ba:4f:b9:7b:3f:06:
45:5d:cf:08:0d:6b:bd:8f:43:6d:12:ff:40:20:bc:6f:3e:47:
25:66:b8:30:11:6f:33:82:56:db:ba:b1:2b:8c:b8:e8:a3:42:
7a:0d:1b:53:cf:59:67:0c:76:ca:70:e0:f8:4d:1a:93:fc:36:
9e:71:87:10:dc:16:a1:78:41:95:83:26:48:93:93:e6:7e:e6:
34:17:14:7b:b2:1d:ff:b0:54:fd:f5:f4:fc:d5:14:01:b7:af:
1f:99:85:b4:87:d7:a6:de:05:cb:8d:86:68:b9:fd:55:93:5d:
fb:dc:72:1f:4f:30:51:79:b5:ff:9f:48:dd:6b:0e:71:37:a9:
fc:fd:a1:ff:93:73:09:18:c1:b4:b6:aa:db:54:d1:e0:18:a4:
98:a8:58:6c:fe:87:49:ef:0f:e7:95:69:6c:69:6e:54:1b:77:
7d:cf:c1:21:f5:f6:40:b8:c4:12:f2:4a:c5:7f:13:80:8b:3f:
74:a1:91:6b:5e:d4:6b:18:1c:1b:63:b4:db:df:e6:ac:2a:a3:
01:9a:47:fa:0f:11:76:e3:39:bc:84:4a:85:77:90:49:48:55:
03:04:9d:d5:47:45:1d:d0:25:c9:b3:50:9c:02:f3:43:97:a3:
17:4b:fd:31
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsbtsu06Ms69BVpxO67YUgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc4YmQxYzZjNjg4YTE3NWFiYzhkNTk4ZmJjZDEwN2ZjYTUy
NTRiZGUwHhcNMjMwMTAxMDgyNDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Yzk1YWY1MmFhZTBlZDNmYzgzMWRiNmYyYTFlZTk1YjE5ZmVkNDUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi+5k0/8tTmGlkMd0BraXU7IMFUOg
BnLuFB+QzL/KbnXGdo5bM62qoOJb1BB9SdMtd18OCOTfeFMDgyJxiRa/xaD64eP2
GToXJDp73f9ycY82PLhdT2wEo6+q/EClHgy2mMG4mmYpLKffzf/rvtZYyz+0Z3hG
eqpmT8H9+8VY6KwcP3lDjFRVvUjVOekjJ41Z5K3uMpp/ojIzJEzZ1LeBibG/+XAL
MU0FT+8ZBJZzjTN4EOwJCZC8Ovpe7SkM8XenZWkWKbXx8RM+AGHb3ILKqbbTtmmX
immPw2f1jYlsG0RITu4b4duokUOh+JsDMoA8RFGoqXooV6anGKS9yQgyjQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEyVr1Kq4O0/yDHbbyoe6VsZ/tRQMB8GA1UdIwQY
MBaAFHi9HGxoihdavI1Zj7zRB/ylJUveMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZUwwY2JHaUtGMXE4alZtUHZORUhfS1VsUzk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8zMmI0YTItMmIyZi00ZjZhLTliNDgt
YzFmM2I5ZWRlNGRiLzEvVEpXdlVxcmc3VF9JTWR0dktoN3BXeG4tMUZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8zMmI0YTItMmIyZi00ZjZhLTliNDgtYzFmM2I5ZWRlNGRi
LzEvZUwwY2JHaUtGMXE4alZtUHZORUhfS1VsUzk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuR9UMA0G
CSqGSIb3DQEBCwUAA4IBAQAO++kxBLKBuRLBHju6T7l7PwZFXc8IDWu9j0NtEv9A
ILxvPkclZrgwEW8zglbburErjLjoo0J6DRtTz1lnDHbKcOD4TRqT/DaecYcQ3Bah
eEGVgyZIk5PmfuY0FxR7sh3/sFT99fT81RQBt68fmYW0h9em3gXLjYZouf1Vk137
3HIfTzBRebX/n0jdaw5xN6n8/aH/k3MJGMG0tqrbVNHgGKSYqFhs/odJ7w/nlWls
aW5UG3d9z8Eh9fZAuMQS8krFfxOAiz90oZFrXtRrGBwbY7Tb3+asKqMBmkf6DxF2
4zm8hEqFd5BJSFUDBJ3VR0Ud0CXJs1CcAvNDl6MXS/0x
-----END CERTIFICATE-----
Generated at Tue Apr 8 09:41:53 2025 by rpki-client