Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/18403d-7792-4f9d-9368-bfb6cf0f0835/1/J8g7cZ3te-XjH4vB99S63bY5jw8.roa
File: J8g7cZ3te-XjH4vB99S63bY5jw8.roa (raw, json)
Hash identifier: kTqC/5LOxbM1zdbO1odgPNoINkirS3IzV43BF84XudQ=
Subject key identifier: 27:C8:3B:71:9D:ED:7B:E5:E3:1F:8B:C1:F7:D4:BA:DD:B6:39:8F:0F
Certificate issuer: /CN=5b1c1e0624039bd1f1a946cb513c93386fab6b19
Certificate serial: 01941FFAB49D23A1EE7F0A66B9647DAE0A2B
Authority key identifier: 5B:1C:1E:06:24:03:9B:D1:F1:A9:46:CB:51:3C:93:38:6F:AB:6B:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WxweBiQDm9HxqUbLUTyTOG-raxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/18403d-7792-4f9d-9368-bfb6cf0f0835/1/J8g7cZ3te-XjH4vB99S63bY5jw8.roa
Signing time: Wed 01 Jan 2025 03:48:31 +0000
ROA not before: Wed 01 Jan 2025 03:48:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31545
IP address blocks: 193.16.109.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:b4:9d:23:a1:ee:7f:0a:66:b9:64:7d:ae:0a:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b1c1e0624039bd1f1a946cb513c93386fab6b19
Validity
Not Before: Jan 1 03:48:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=27c83b719ded7be5e31f8bc1f7d4baddb6398f0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8c:20:6b:12:6a:3b:3d:6f:6e:ec:b2:80:1f:
ab:88:c9:a8:1e:55:c4:54:65:5f:13:20:f7:0d:e9:
a8:8a:27:27:1b:fe:b1:08:c8:a0:ad:f1:d6:db:72:
a9:f5:d6:ed:77:c6:6c:73:c3:4d:50:71:07:da:07:
da:c4:23:43:9f:d2:b3:bd:00:3b:4d:4d:93:2e:b3:
25:ad:22:a0:06:d2:2b:ff:3a:12:63:8e:ec:2f:a7:
3d:b9:3d:fb:42:f0:f8:eb:10:ba:01:2d:fe:0f:c4:
64:66:f5:92:ba:fb:51:8d:f0:b5:3d:fd:03:92:99:
55:c7:8e:a5:06:c3:90:d8:7e:c2:fd:36:27:86:3a:
68:f2:85:0e:76:38:e6:91:8e:ea:7b:11:bb:71:2e:
ad:9b:a6:4e:4b:67:3a:46:dd:9d:de:a7:98:78:1d:
c5:37:fc:a8:6d:86:b5:fa:89:1c:66:b5:12:fa:60:
0d:63:d6:36:cb:08:f8:3b:85:51:31:45:9a:9f:1e:
91:73:ef:9b:e3:8a:27:7b:f1:cb:67:54:12:4d:09:
81:d2:a1:a7:6f:c0:ac:b8:d9:2c:7b:b0:b4:91:9f:
d3:94:36:6a:dc:ad:47:9e:25:d1:6d:cf:36:32:01:
24:a9:0a:75:6d:f3:88:91:11:7c:56:61:c0:2a:af:
5d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:C8:3B:71:9D:ED:7B:E5:E3:1F:8B:C1:F7:D4:BA:DD:B6:39:8F:0F
X509v3 Authority Key Identifier:
keyid:5B:1C:1E:06:24:03:9B:D1:F1:A9:46:CB:51:3C:93:38:6F:AB:6B:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WxweBiQDm9HxqUbLUTyTOG-raxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/18403d-7792-4f9d-9368-bfb6cf0f0835/1/J8g7cZ3te-XjH4vB99S63bY5jw8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/18403d-7792-4f9d-9368-bfb6cf0f0835/1/WxweBiQDm9HxqUbLUTyTOG-raxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.109.0/24
Signature Algorithm: sha256WithRSAEncryption
37:9f:2b:bb:75:bd:b1:c4:68:71:80:65:99:bb:6f:04:60:e3:
30:bc:b7:37:e7:47:e3:00:05:9c:98:7d:92:d7:a5:ff:4e:77:
29:4b:2b:81:42:17:7e:e5:15:75:68:34:6b:5c:a9:12:d7:fc:
ce:90:a3:36:2e:67:67:89:b4:7a:79:55:2d:e0:aa:35:4b:75:
14:d4:35:a6:65:4b:4b:35:a3:fe:37:4f:1b:09:de:56:04:1e:
42:51:be:0c:2a:36:71:6d:78:9e:b2:e9:bb:45:a5:48:15:fa:
b9:fa:09:34:6a:45:38:d8:d7:3d:c9:7b:6a:60:82:7b:a0:8a:
e4:f9:2c:43:d9:a8:8f:cb:14:d9:22:54:6c:64:78:54:05:a5:
b4:41:59:06:97:a9:f4:7d:71:d0:a0:a0:82:78:f8:7a:49:49:
75:02:46:8f:09:2b:d6:cd:ec:97:25:bf:d8:5f:18:7e:08:dc:
b1:79:20:a4:b4:25:15:e0:9d:0a:b4:b4:4a:55:03:cb:ed:5e:
2b:36:e5:8d:49:70:58:50:99:ce:06:a8:17:17:8d:9e:04:bf:
eb:af:a0:3c:85:ac:5c:b6:ee:4e:b7:70:77:b6:00:a9:5b:d7:
b1:cf:f7:dd:e5:4d:c1:5a:4e:0c:d8:93:db:68:fc:08:b8:f5:
4a:58:bd:c1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQf+rSdI6HufwpmuWR9rgorMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViMWMxZTA2MjQwMzliZDFmMWE5NDZjYjUxM2M5MzM4NmZh
YjZiMTkwHhcNMjUwMTAxMDM0ODMxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyN2M4M2I3MTlkZWQ3YmU1ZTMxZjhiYzFmN2Q0YmFkZGI2Mzk4ZjBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0IwgaxJqOz1vbuyygB+riMmoHlXE
VGVfEyD3DemoiicnG/6xCMigrfHW23Kp9dbtd8Zsc8NNUHEH2gfaxCNDn9KzvQA7
TU2TLrMlrSKgBtIr/zoSY47sL6c9uT37QvD46xC6AS3+D8RkZvWSuvtRjfC1Pf0D
kplVx46lBsOQ2H7C/TYnhjpo8oUOdjjmkY7qexG7cS6tm6ZOS2c6Rt2d3qeYeB3F
N/yobYa1+okcZrUS+mANY9Y2ywj4O4VRMUWanx6Rc++b44one/HLZ1QSTQmB0qGn
b8CsuNkse7C0kZ/TlDZq3K1HniXRbc82MgEkqQp1bfOIkRF8VmHAKq9dsQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCfIO3Gd7Xvl4x+LwffUut22OY8PMB8GA1UdIwQY
MBaAFFscHgYkA5vR8alGy1E8kzhvq2sZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3h3ZUJpUURtOUh4cVViTFVUeVRPRy1yYXhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8xODQwM2QtNzc5Mi00ZjlkLTkzNjgt
YmZiNmNmMGYwODM1LzEvSjhnN2NaM3RlLVhqSDR2Qjk5UzYzYlk1anc4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS8xODQwM2QtNzc5Mi00ZjlkLTkzNjgtYmZiNmNmMGYwODM1
LzEvV3h3ZUJpUURtOUh4cVViTFVUeVRPRy1yYXhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRBtMA0G
CSqGSIb3DQEBCwUAA4IBAQA3nyu7db2xxGhxgGWZu28EYOMwvLc350fjAAWcmH2S
16X/TncpSyuBQhd+5RV1aDRrXKkS1/zOkKM2LmdnibR6eVUt4Ko1S3UU1DWmZUtL
NaP+N08bCd5WBB5CUb4MKjZxbXiesum7RaVIFfq5+gk0akU42Nc9yXtqYIJ7oIrk
+SxD2aiPyxTZIlRsZHhUBaW0QVkGl6n0fXHQoKCCePh6SUl1AkaPCSvWzeyXJb/Y
Xxh+CNyxeSCktCUV4J0KtLRKVQPL7V4rNuWNSXBYUJnOBqgXF42eBL/rr6A8haxc
tu5Ot3B3tgCpW9exz/fd5U3BWk4M2JPbaPwIuPVKWL3B
-----END CERTIFICATE-----
Generated at Fri Apr 25 08:08:30 2025 by rpki-client