Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/eee0a3-02d8-4171-a47b-40944b6ac31b/1/LZkpY4lDp7zp4xPqBRbfMYCvu8c.roa
File: LZkpY4lDp7zp4xPqBRbfMYCvu8c.roa (raw, json)
Hash identifier: lHmbd2ytww81+ffO9WB9JpNnnknVTAMbR9SXyzqNoqU=
Subject key identifier: 2D:99:29:63:89:43:A7:BC:E9:E3:13:EA:05:16:DF:31:80:AF:BB:C7
Certificate issuer: /CN=cdd15c493f875da1969927c1b91c96e2ff95352c
Certificate serial: 01856CCAB94B83D45E081979511C6DE62BDD
Authority key identifier: CD:D1:5C:49:3F:87:5D:A1:96:99:27:C1:B9:1C:96:E2:FF:95:35:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zdFcST-HXaGWmSfBuRyW4v-VNSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/eee0a3-02d8-4171-a47b-40944b6ac31b/1/LZkpY4lDp7zp4xPqBRbfMYCvu8c.roa
Signing time: Sun 01 Jan 2023 10:05:03 +0000
ROA not before: Sun 01 Jan 2023 10:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50819
IP address blocks: 95.215.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:b9:4b:83:d4:5e:08:19:79:51:1c:6d:e6:2b:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdd15c493f875da1969927c1b91c96e2ff95352c
Validity
Not Before: Jan 1 10:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d9929638943a7bce9e313ea0516df3180afbbc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:d4:dd:a8:a5:9d:35:d7:ce:05:11:50:fb:7b:
53:0f:18:59:b6:28:9d:51:c9:28:f4:a3:de:77:9f:
7f:a7:8d:35:1b:d8:af:6a:22:01:52:89:97:d4:b4:
7c:70:7a:20:a9:b0:64:9e:05:f4:77:46:48:a1:c0:
38:29:f6:fa:be:19:e4:df:45:38:c7:b2:f8:38:ec:
1e:6e:cd:cd:97:0f:c4:54:1a:ea:4f:55:e4:9c:5d:
b2:b6:35:37:e9:b5:3c:1f:2e:4f:cf:e2:3b:85:4d:
11:8f:9c:41:45:71:47:f8:09:be:42:cf:9e:c6:93:
6f:62:ed:69:b6:5a:00:a5:bf:46:96:8f:ac:b4:80:
ce:55:dd:65:51:51:de:cd:a3:90:04:9f:da:66:cb:
09:4a:03:43:60:40:38:26:6e:54:c3:71:64:fa:62:
e1:95:aa:5c:4e:ab:6a:56:d7:50:00:5b:9c:b2:e4:
83:58:f1:d1:00:45:29:38:77:06:52:4e:aa:15:20:
c5:d7:40:25:66:bd:3a:97:00:e1:00:7a:d9:31:e9:
29:08:41:0f:d2:05:e0:0f:e8:be:76:36:fb:5b:fe:
e1:d0:6d:b9:59:66:45:25:55:4a:62:4a:ce:7b:d6:
9b:dc:d2:5b:7b:e2:0f:d5:b5:7f:56:ce:bc:6a:a1:
ae:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:99:29:63:89:43:A7:BC:E9:E3:13:EA:05:16:DF:31:80:AF:BB:C7
X509v3 Authority Key Identifier:
keyid:CD:D1:5C:49:3F:87:5D:A1:96:99:27:C1:B9:1C:96:E2:FF:95:35:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zdFcST-HXaGWmSfBuRyW4v-VNSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/eee0a3-02d8-4171-a47b-40944b6ac31b/1/LZkpY4lDp7zp4xPqBRbfMYCvu8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/eee0a3-02d8-4171-a47b-40944b6ac31b/1/zdFcST-HXaGWmSfBuRyW4v-VNSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.215.222.0/24
Signature Algorithm: sha256WithRSAEncryption
04:8d:68:2e:81:8b:21:7b:1e:8b:8b:5e:eb:e7:0f:1e:18:e2:
75:66:95:34:bc:c9:22:e8:27:08:83:83:bd:2f:14:5b:d8:7f:
33:eb:f2:e8:a0:fd:03:a9:6e:20:1b:6a:09:c1:1f:c7:4f:81:
c1:5c:72:f2:1a:58:60:0e:70:dc:6f:48:60:98:88:d5:be:66:
48:fb:d8:1c:bf:b1:bb:f6:bd:64:bd:2e:7e:a0:aa:f3:6c:87:
0a:36:b4:d2:3e:4d:4d:ff:bb:45:2c:df:8c:8e:01:1b:c5:77:
dc:ad:59:7f:75:ad:f8:14:a3:a7:9f:29:81:db:ae:a2:c1:b2:
55:48:de:db:b0:e0:de:d2:bc:07:04:64:5d:87:fa:3d:1a:7a:
ec:d7:ac:f1:40:52:85:36:47:f3:f3:a8:e3:0e:55:6a:a3:dd:
68:6d:fe:9a:86:17:ed:bf:24:0c:41:34:84:c5:31:23:af:26:
94:fd:09:8d:52:a9:ec:51:97:e5:9c:84:a5:07:ea:20:83:a9:
f1:29:9f:25:11:52:05:8d:df:bb:db:7d:af:27:ba:b4:57:ae:
87:39:a0:4c:d0:b2:61:c8:00:01:b7:5c:04:2d:91:be:10:a1:
7d:92:dd:cc:b7:18:71:ac:d1:e6:64:7f:94:15:c4:e3:82:32:
d0:85:e8:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:33:29 2025 by rpki-client