Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/pTKcLvXGyfvIdfJHiGNopegs5Q0.roa
File: pTKcLvXGyfvIdfJHiGNopegs5Q0.roa (raw, json)
Hash identifier: 5I3zasf04HhazzGiV9y+sgVwka2jTvDHI2lgFqJ+iuQ=
Subject key identifier: A5:32:9C:2E:F5:C6:C9:FB:C8:75:F2:47:88:63:68:A5:E8:2C:E5:0D
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 01948AE31A11C45FC9E5783217802D9BD2FD
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/pTKcLvXGyfvIdfJHiGNopegs5Q0.roa
Signing time: Tue 21 Jan 2025 22:02:06 +0000
ROA not before: Tue 21 Jan 2025 22:02:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215232
IP address blocks: 95.164.54.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:8a:e3:1a:11:c4:5f:c9:e5:78:32:17:80:2d:9b:d2:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Jan 21 22:02:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a5329c2ef5c6c9fbc875f247886368a5e82ce50d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:23:00:4a:da:25:a0:d1:ca:0d:2c:23:26:52:
68:71:32:b7:50:9b:00:69:66:57:86:e9:ae:5a:b2:
ff:b5:b1:ca:f1:c3:f3:94:8d:e2:fa:cc:e4:13:24:
2b:fc:c9:27:de:85:d2:08:f4:f2:a4:2d:16:91:f3:
96:a9:0f:37:a5:67:e9:dc:10:ff:7c:d3:19:ba:12:
a3:ac:50:4b:32:6a:21:b8:73:d7:03:f3:ca:6c:dd:
f7:ab:b7:13:3f:78:48:eb:7c:47:4b:eb:3a:fa:67:
66:dc:64:55:12:06:ec:64:f5:45:a8:ef:ff:4e:b0:
e9:4e:b4:16:25:8c:df:31:f8:1d:36:a8:eb:13:a1:
c9:bc:7c:50:86:d5:b4:2f:9d:7b:ae:c0:90:9e:09:
20:c9:a5:2a:31:fb:2f:1c:72:2d:d4:5e:35:1b:e9:
9f:76:9f:71:9e:b9:d0:dc:2a:f2:2e:39:0b:6b:31:
1f:84:78:b8:22:59:ca:a3:bf:2b:c6:14:1e:9a:1c:
1d:1c:69:f8:43:b1:68:94:b0:44:05:ac:2b:9d:df:
60:f6:f2:ca:1c:95:c7:7c:95:3a:b1:4f:10:be:18:
2d:62:ee:8f:d3:2f:9f:57:24:eb:67:d4:df:a0:41:
c0:92:1a:c9:85:ad:f8:53:f5:7e:a7:0c:5e:90:ad:
82:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:32:9C:2E:F5:C6:C9:FB:C8:75:F2:47:88:63:68:A5:E8:2C:E5:0D
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/pTKcLvXGyfvIdfJHiGNopegs5Q0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.164.54.0/24
Signature Algorithm: sha256WithRSAEncryption
61:5e:cc:99:93:d2:b5:66:d0:9a:1c:60:aa:44:bc:72:16:38:
0e:21:2a:bd:7c:ff:c1:07:fe:ae:b4:b8:21:e8:6e:17:21:5b:
04:8c:e6:96:75:16:e0:7c:fd:05:a2:f8:7d:59:4e:d8:1d:0b:
be:83:2b:6e:a4:04:9b:5b:de:a4:b9:87:03:7e:37:e7:fc:b6:
77:63:d7:61:ab:fa:e9:ca:32:21:c0:0b:a8:f3:3e:91:d1:ce:
45:2d:f5:35:80:82:23:26:7d:e6:e7:d8:e5:f2:d4:29:6a:83:
7d:a7:cc:4c:9f:98:4f:dd:1c:10:34:58:cf:56:35:f8:5d:1d:
49:91:02:50:10:9a:75:7e:27:68:de:4e:e0:7b:2e:f7:15:31:
37:74:55:8b:36:a3:f7:31:23:c4:29:2e:34:f3:af:f8:94:41:
16:37:3a:3e:4e:0d:2c:d2:aa:50:c8:97:6c:0a:95:ef:c5:83:
07:0d:f1:d6:93:c3:d0:d2:8e:76:59:ce:34:8a:cd:85:7a:30:
79:7f:49:cf:4e:f0:42:cc:64:0f:ee:64:9e:0f:cb:45:ba:93:
8a:36:c2:e6:6b:c6:c3:4e:59:89:34:11:41:67:22:57:64:b2:
df:44:3a:01:06:fb:13:8b:62:fc:09:bb:b7:af:b0:83:f8:70:
5a:cc:f2:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 20:29:10 2025 by rpki-client