Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/vm3AkptGALvAIgoY078ymc1XraE.roa
File: vm3AkptGALvAIgoY078ymc1XraE.roa (raw, json)
Hash identifier: u7VTKuFFoDvsz4NJh5f73LnR4kgTqMbb59uC7JU+Hv8=
Subject key identifier: BE:6D:C0:92:9B:46:00:BB:C0:22:0A:18:D3:BF:32:99:CD:57:AD:A1
Certificate issuer: /CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Certificate serial: 019425FDA821D3DC48B5EACDDB6C2C88B973
Authority key identifier: 62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/vm3AkptGALvAIgoY078ymc1XraE.roa
Signing time: Thu 02 Jan 2025 07:49:28 +0000
ROA not before: Thu 02 Jan 2025 07:49:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 52000
IP address blocks: 95.161.81.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:a8:21:d3:dc:48:b5:ea:cd:db:6c:2c:88:b9:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Validity
Not Before: Jan 2 07:49:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=be6dc0929b4600bbc0220a18d3bf3299cd57ada1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:93:4d:3c:33:d1:ec:44:46:8d:55:d1:72:5c:
ef:37:ee:51:f2:7d:c2:0d:6f:2e:8d:03:ca:5f:89:
75:de:6a:c2:3c:36:a2:bb:34:1b:2c:b6:d6:64:35:
37:c6:ad:f5:0b:1e:72:2b:4b:6c:27:ab:d6:ae:bd:
08:82:7c:03:5c:70:b4:37:67:30:a9:be:bf:67:15:
52:d8:f8:3d:3b:f8:1d:f7:6f:9c:fb:76:02:bd:dd:
85:09:9f:55:1a:57:ac:3e:d9:73:18:1d:92:d7:ae:
cf:ef:91:84:d3:1c:c2:25:4e:c5:51:de:9e:84:9d:
cc:5a:0a:41:83:ea:63:97:f0:e9:99:23:90:b9:c6:
2e:33:12:a6:86:1d:f8:6d:e1:77:41:d0:9b:99:cc:
c3:7e:bb:98:d1:36:c4:b9:fd:62:97:22:35:03:19:
3e:6d:1e:87:12:a4:5f:b2:ba:36:26:fe:85:38:18:
e7:cf:78:40:e1:c7:7c:e3:42:1b:88:04:18:4f:ec:
ce:3a:12:8b:15:d4:bb:c1:bb:03:8a:75:30:5e:d7:
40:50:81:4c:47:52:42:a0:01:92:25:ae:7e:2b:36:
20:f1:83:a8:34:ac:ee:08:6a:40:28:b2:53:ee:12:
4f:e3:0d:a9:61:54:1d:09:80:2b:7c:6e:68:57:a4:
af:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:6D:C0:92:9B:46:00:BB:C0:22:0A:18:D3:BF:32:99:CD:57:AD:A1
X509v3 Authority Key Identifier:
keyid:62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/vm3AkptGALvAIgoY078ymc1XraE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.161.81.0/24
Signature Algorithm: sha256WithRSAEncryption
64:d3:78:9b:42:76:5b:37:00:86:a1:0e:ef:c0:dd:52:8b:e8:
cd:f4:04:5e:f0:d4:9b:73:a8:80:1c:66:d8:f7:f3:70:dd:b3:
80:37:04:36:7c:cc:b6:6d:0f:1e:42:e4:3a:cc:c1:59:43:af:
c8:78:ee:9a:dd:08:0b:fd:af:0d:e5:a6:93:3b:0d:f5:cc:9b:
19:a3:3e:75:ec:89:7b:a8:e1:fe:85:52:e4:a2:a4:4f:cc:9e:
29:41:74:55:01:dd:93:1e:fd:8c:77:d5:76:ca:06:c9:61:8f:
f1:3c:aa:65:fd:e1:12:e1:86:46:f2:cc:49:4c:b9:fd:5e:a1:
53:bb:5c:05:12:6b:53:c7:2e:19:12:ab:a6:35:d2:02:8a:6e:
07:6f:cb:47:a4:68:20:74:f6:13:be:75:ed:d9:0a:73:c3:c6:
07:2b:db:f3:d0:c4:17:85:b5:82:34:76:3a:14:94:73:31:9a:
1a:7a:2b:25:1e:f5:19:ec:f0:0b:2b:05:f0:f5:75:17:a1:4a:
18:91:1b:b1:fa:08:a2:f6:d6:8f:8e:9e:27:49:b4:a8:1a:7e:
46:02:9c:e0:db:dc:7f:28:06:02:14:b4:b6:c7:20:b6:e5:1a:
a9:8b:52:b4:09:d9:5e:c6:9a:52:9e:d5:ac:b9:df:f4:53:17:
43:b8:6b:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:30:34 2025 by rpki-client