Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/a1c142-8943-49f4-8cc9-6ef2b9d7f104/1/4CzxU32p0OsbQ2acUILmVz-H57g.roa
File: 4CzxU32p0OsbQ2acUILmVz-H57g.roa (raw, json)
Hash identifier: hWxe2dLQahkcq3K3iEDxq0GoyziJ/QYi70dEJgbPRDE=
Subject key identifier: E0:2C:F1:53:7D:A9:D0:EB:1B:43:66:9C:50:82:E6:57:3F:87:E7:B8
Certificate issuer: /CN=b3143920956802a8eb4b4627a2ff4f3987ec1a3d
Certificate serial: 059D7B0D
Authority key identifier: B3:14:39:20:95:68:02:A8:EB:4B:46:27:A2:FF:4F:39:87:EC:1A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxQ5IJVoAqjrS0Ynov9POYfsGj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/a1c142-8943-49f4-8cc9-6ef2b9d7f104/1/4CzxU32p0OsbQ2acUILmVz-H57g.roa
Signing time: Sat 01 Jan 2022 01:53:30 +0000
ROA not before: Sat 01 Jan 2022 01:53:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47913
IP address blocks: 81.25.24.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94206733 (0x59d7b0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3143920956802a8eb4b4627a2ff4f3987ec1a3d
Validity
Not Before: Jan 1 01:53:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e02cf1537da9d0eb1b43669c5082e6573f87e7b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:fa:27:ac:36:ba:dc:1e:c1:fb:c6:b5:99:53:
73:58:cd:3d:b2:0d:da:f4:28:97:46:cd:c6:7f:f5:
71:69:51:40:52:c5:c0:11:dc:20:ea:8d:21:d5:2f:
8c:f2:eb:95:5d:75:84:24:f1:f0:0f:3a:b6:de:f0:
f2:7e:a6:cb:c1:b9:24:ab:9e:1a:73:e2:8d:70:4b:
3b:04:a5:31:b8:1b:3b:bf:3e:15:f5:49:d5:e1:da:
1a:b3:ab:ca:fe:b6:6b:3a:11:b4:83:eb:a2:7d:2c:
fe:39:fc:10:e4:ab:01:79:b2:e3:cf:89:e1:0f:a5:
ec:bd:8e:0d:ce:02:87:75:33:a2:90:4f:fc:b3:96:
85:39:09:be:19:f3:64:f3:4b:21:d3:73:28:93:65:
80:6f:52:c9:70:9d:81:34:82:da:83:22:87:13:e9:
bc:dc:61:f3:dd:2a:7f:3e:7e:b3:8b:2e:0d:27:0c:
b3:e4:cb:90:46:38:0c:c8:f2:ac:b0:ea:84:94:11:
a3:8f:b2:8e:4d:f9:1e:bb:62:83:3e:74:ab:8a:7a:
47:4a:e8:c7:73:23:49:33:43:46:8b:08:28:64:a0:
dd:9f:9b:43:d3:82:d5:b1:b3:35:e9:07:fb:ea:fa:
14:39:78:22:cc:b3:e1:d5:6e:e6:24:ee:9f:3d:ee:
93:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:2C:F1:53:7D:A9:D0:EB:1B:43:66:9C:50:82:E6:57:3F:87:E7:B8
X509v3 Authority Key Identifier:
keyid:B3:14:39:20:95:68:02:A8:EB:4B:46:27:A2:FF:4F:39:87:EC:1A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxQ5IJVoAqjrS0Ynov9POYfsGj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/a1c142-8943-49f4-8cc9-6ef2b9d7f104/1/4CzxU32p0OsbQ2acUILmVz-H57g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/a1c142-8943-49f4-8cc9-6ef2b9d7f104/1/sxQ5IJVoAqjrS0Ynov9POYfsGj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.25.24.0/21
Signature Algorithm: sha256WithRSAEncryption
6b:d3:5b:0e:7a:76:82:82:ee:99:7a:e3:4b:ab:45:41:73:1b:
60:b9:be:05:b0:77:0d:1b:76:c9:78:27:b6:d6:39:f9:8c:1e:
d7:e6:39:fb:51:a2:8a:b9:6d:88:38:be:c3:67:e5:ca:45:46:
27:e3:90:5e:be:46:b9:2b:d1:7e:c4:47:61:3b:f6:89:67:ab:
8e:ad:9d:a5:6d:87:4f:f8:81:d2:c9:90:31:85:4e:df:ae:c1:
74:e9:99:fe:a0:12:b5:7d:ed:bf:19:10:af:83:d6:e5:78:de:
5d:ac:0d:d3:a0:39:65:f4:d5:bb:6b:cd:51:4c:88:7f:db:b2:
ee:91:cd:46:07:88:c0:11:59:bd:51:d1:9d:03:99:ae:07:81:
06:45:f4:b4:a1:a4:ca:75:d8:2a:08:e0:3d:63:12:c8:1a:c8:
96:75:31:b8:36:d9:d3:30:6b:03:3e:83:ad:2b:f1:be:33:93:
89:a7:11:e4:85:2e:3b:ab:c9:fb:29:ff:ba:25:03:0a:02:c8:
35:7b:e5:a2:bb:63:b7:63:c6:7e:5d:74:ff:ca:1c:4a:99:96:
45:39:22:67:68:71:ec:48:36:b5:ce:33:fc:16:62:87:0d:21:
d6:66:19:a1:7f:9c:63:39:22:14:12:08:61:12:8a:cf:08:38:
62:cb:ff:e0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBZ17DTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MzE0MzkyMDk1NjgwMmE4ZWI0YjQ2MjdhMmZmNGYzOTg3ZWMxYTNkMB4XDTIyMDEw
MTAxNTMzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTAyY2YxNTM3ZGE5
ZDBlYjFiNDM2NjljNTA4MmU2NTczZjg3ZTdiODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKn6J6w2utwewfvGtZlTc1jNPbIN2vQol0bNxn/1cWlRQFLF
wBHcIOqNIdUvjPLrlV11hCTx8A86tt7w8n6my8G5JKueGnPijXBLOwSlMbgbO78+
FfVJ1eHaGrOryv62azoRtIPron0s/jn8EOSrAXmy48+J4Q+l7L2ODc4Ch3UzopBP
/LOWhTkJvhnzZPNLIdNzKJNlgG9SyXCdgTSC2oMihxPpvNxh890qfz5+s4suDScM
s+TLkEY4DMjyrLDqhJQRo4+yjk35Hrtigz50q4p6R0rox3MjSTNDRosIKGSg3Z+b
Q9OC1bGzNekH++r6FDl4Isyz4dVu5iTunz3uk50CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTgLPFTfanQ6xtDZpxQguZXP4fnuDAfBgNVHSMEGDAWgBSzFDkglWgCqOtL
Riei/085h+waPTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3N4UTVJSlZvQXFqclMwWW5vdjlQT1lmc0dqMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmUvYTFjMTQyLTg5NDMtNDlmNC04Y2M5LTZlZjJiOWQ3ZjEwNC8x
LzRDenhVMzJwME9zYlEyYWNVSUxtVnotSDU3Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmUv
YTFjMTQyLTg5NDMtNDlmNC04Y2M5LTZlZjJiOWQ3ZjEwNC8xL3N4UTVJSlZvQXFq
clMwWW5vdjlQT1lmc0dqMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA1EZGDANBgkqhkiG9w0BAQsFAAOC
AQEAa9NbDnp2goLumXrjS6tFQXMbYLm+BbB3DRt2yXgnttY5+Ywe1+Y5+1Giirlt
iDi+w2flykVGJ+OQXr5GuSvRfsRHYTv2iWerjq2dpW2HT/iB0smQMYVO367BdOmZ
/qAStX3tvxkQr4PW5XjeXawN06A5ZfTVu2vNUUyIf9uy7pHNRgeIwBFZvVHRnQOZ
rgeBBkX0tKGkynXYKgjgPWMSyBrIlnUxuDbZ0zBrAz6DrSvxvjOTiacR5IUuO6vJ
+yn/uiUDCgLINXvlortjt2PGfl10/8ocSpmWRTkiZ2hx7Eg2tc4z/BZihw0h1mYZ
oX+cYzkiFBIIYRKKzwg4Ysv/4A==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:23:00 2025 by rpki-client