Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/j1jJDy1bsDo19kM-qcS6eCJYpIY.roa
File: j1jJDy1bsDo19kM-qcS6eCJYpIY.roa (raw, json)
Hash identifier: iG7JzgoGBQGGMxVsaVSziIkyl1Kri/SxbRvg7JUBBws=
Subject key identifier: 8F:58:C9:0F:2D:5B:B0:3A:35:F6:43:3E:A9:C4:BA:78:22:58:A4:86
Certificate issuer: /CN=95b30111b0b720a209f788c8b90f60380b465c2e
Certificate serial: 01942445618C05244BAA32780D63B6352319
Authority key identifier: 95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/j1jJDy1bsDo19kM-qcS6eCJYpIY.roa
Signing time: Wed 01 Jan 2025 23:48:34 +0000
ROA not before: Wed 01 Jan 2025 23:48:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207412
IP address blocks: 212.102.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:61:8c:05:24:4b:aa:32:78:0d:63:b6:35:23:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95b30111b0b720a209f788c8b90f60380b465c2e
Validity
Not Before: Jan 1 23:48:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8f58c90f2d5bb03a35f6433ea9c4ba782258a486
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ec:77:f0:ac:93:74:3b:fb:e8:45:2e:04:d8:
11:a2:85:12:57:ae:1e:7d:04:d1:3d:9e:c7:d5:93:
ce:5e:95:82:25:85:c1:16:dc:32:4c:5a:0e:d5:8a:
7d:ea:57:1b:3b:f1:20:59:d2:dd:83:4a:9f:66:60:
d5:37:a9:11:da:d9:a2:72:16:c7:db:41:c5:af:e4:
ae:04:af:e9:88:7f:f5:54:f9:a1:7f:0c:01:45:f4:
1b:cd:c1:09:84:63:ec:40:66:5d:ae:f9:f4:4f:3c:
7b:a7:ef:a6:e6:3b:a4:69:af:40:5b:92:61:8f:69:
ef:73:5e:3d:80:1f:3f:b7:c5:d9:e4:3b:19:21:bf:
6b:29:c5:5f:fe:8d:8f:e0:6d:5d:1c:98:3d:b4:f0:
5e:17:14:cc:30:70:a2:8c:99:a7:a1:31:40:69:e6:
43:22:29:a9:be:02:45:f0:ca:51:23:d3:d4:cf:6c:
7d:a6:2e:86:00:0a:4c:b4:72:12:6f:09:e8:80:cf:
01:8f:7d:8a:b8:c8:cc:cc:e4:7c:bc:7d:b5:c0:13:
01:e8:b0:c6:92:8f:be:82:18:83:20:eb:80:39:be:
b2:69:f4:b3:90:84:7e:66:6c:14:19:6f:3a:88:0f:
56:35:9d:62:81:72:d0:d6:ac:0e:73:9b:e6:27:be:
67:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:58:C9:0F:2D:5B:B0:3A:35:F6:43:3E:A9:C4:BA:78:22:58:A4:86
X509v3 Authority Key Identifier:
keyid:95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/j1jJDy1bsDo19kM-qcS6eCJYpIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.102.111.0/24
Signature Algorithm: sha256WithRSAEncryption
64:64:fe:f5:78:b1:c8:a0:cd:db:03:bc:91:67:68:ab:62:28:
dd:28:ee:43:20:2d:b8:a9:cd:e9:55:2d:b3:c7:24:49:ba:a1:
e8:2c:cd:1f:32:0d:eb:f0:4c:56:45:cb:43:3d:43:db:85:ee:
4e:5e:d4:ac:0f:88:f5:5a:c7:06:ed:b4:10:32:bb:84:14:1d:
34:53:24:81:a4:34:92:ae:8c:d4:eb:c7:82:c8:38:50:46:f6:
07:ec:b8:23:8f:9b:c9:67:88:c3:51:07:ba:d8:41:71:88:05:
f9:2a:9b:32:9d:82:90:c9:24:11:38:6b:e7:60:70:55:2c:5f:
cd:76:31:92:a7:e0:f0:13:31:79:70:85:a4:b3:13:73:e2:a9:
18:dd:31:cd:f1:24:45:19:e0:67:15:09:3a:ee:67:bb:b6:bb:
fd:e6:21:88:c4:a8:bb:69:65:02:6f:0e:b0:dd:f4:6e:82:ca:
52:80:ef:59:76:95:cc:f2:37:6c:92:22:ff:6f:8d:4e:fc:da:
8a:07:9c:d3:3e:5b:44:87:e7:81:29:1f:a4:82:7a:ca:48:82:
b8:94:ac:8d:63:fc:9d:05:d6:6f:26:8b:d9:f9:bd:dc:8c:c5:
32:73:5f:1f:bc:dd:13:e9:cb:01:2d:35:50:57:b9:5f:c5:b4:
56:25:0d:67
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQkRWGMBSRLqjJ4DWO2NSMZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1YjMwMTExYjBiNzIwYTIwOWY3ODhjOGI5MGY2MDM4MGI0
NjVjMmUwHhcNMjUwMTAxMjM0ODM0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZjU4YzkwZjJkNWJiMDNhMzVmNjQzM2VhOWM0YmE3ODIyNThhNDg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyex38KyTdDv76EUuBNgRooUSV64e
fQTRPZ7H1ZPOXpWCJYXBFtwyTFoO1Yp96lcbO/EgWdLdg0qfZmDVN6kR2tmichbH
20HFr+SuBK/piH/1VPmhfwwBRfQbzcEJhGPsQGZdrvn0Tzx7p++m5jukaa9AW5Jh
j2nvc149gB8/t8XZ5DsZIb9rKcVf/o2P4G1dHJg9tPBeFxTMMHCijJmnoTFAaeZD
IimpvgJF8MpRI9PUz2x9pi6GAApMtHISbwnogM8Bj32KuMjMzOR8vH21wBMB6LDG
ko++ghiDIOuAOb6yafSzkIR+ZmwUGW86iA9WNZ1igXLQ1qwOc5vmJ75ngQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFI9YyQ8tW7A6NfZDPqnEungiWKSGMB8GA1UdIwQY
MBaAFJWzARGwtyCiCfeIyLkPYDgLRlwuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGJNQkViQzNJS0lKOTRqSXVROWdPQXRHWEM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS8wM2JmMjgtYzU1ZC00YzdhLTkxYmIt
OTE2NDZiZjAxNTNkLzEvajFqSkR5MWJzRG8xOWtNLXFjUzZlQ0pZcElZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS8wM2JmMjgtYzU1ZC00YzdhLTkxYmItOTE2NDZiZjAxNTNk
LzEvbGJNQkViQzNJS0lKOTRqSXVROWdPQXRHWEM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1GZvMA0G
CSqGSIb3DQEBCwUAA4IBAQBkZP71eLHIoM3bA7yRZ2irYijdKO5DIC24qc3pVS2z
xyRJuqHoLM0fMg3r8ExWRctDPUPbhe5OXtSsD4j1WscG7bQQMruEFB00UySBpDSS
rozU68eCyDhQRvYH7Lgjj5vJZ4jDUQe62EFxiAX5KpsynYKQySQROGvnYHBVLF/N
djGSp+DwEzF5cIWksxNz4qkY3THN8SRFGeBnFQk67me7trv95iGIxKi7aWUCbw6w
3fRugspSgO9ZdpXM8jdskiL/b41O/NqKB5zTPltEh+eBKR+kgnrKSIK4lKyNY/yd
BdZvJovZ+b3cjMUyc18fvN0T6csBLTVQV7lfxbRWJQ1n
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:09 2025 by rpki-client on console.sobornost.net