Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/36LtBuk9z0MizFQcOnJRnljMVtw.roa
File: 36LtBuk9z0MizFQcOnJRnljMVtw.roa (raw, json)
Hash identifier: Um8YZ46DfNHQiemxpDAaO+GLPEFAWMArk1pTZ3xeG7o=
Subject key identifier: DF:A2:ED:06:E9:3D:CF:43:22:CC:54:1C:3A:72:51:9E:58:CC:56:DC
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01857095872AE0EC54D53408F090AE66C91A
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/36LtBuk9z0MizFQcOnJRnljMVtw.roa
Signing time: Mon 02 Jan 2023 03:45:25 +0000
ROA not before: Mon 02 Jan 2023 03:45:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64423
IP address blocks: 95.46.40.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:87:2a:e0:ec:54:d5:34:08:f0:90:ae:66:c9:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dfa2ed06e93dcf4322cc541c3a72519e58cc56dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ef:84:55:c9:57:e3:30:a2:db:d6:fd:b9:bc:
3c:23:67:4b:1b:0c:a5:73:37:2a:95:53:f5:ca:79:
a1:e8:00:5f:0b:f3:c2:0b:90:98:42:8d:51:b2:22:
36:a3:68:55:f0:90:7e:7e:e3:c5:50:03:07:e9:97:
fa:fa:f4:0e:98:ba:15:93:bc:c1:d4:1d:e1:c6:26:
a7:06:2a:41:2e:b6:e1:54:76:70:7a:8b:86:33:46:
ba:cc:41:43:a0:98:84:9a:a6:6f:80:77:5f:6a:28:
b7:58:67:d4:32:f8:c2:49:ed:6e:b8:82:13:eb:2b:
a5:fb:04:24:3f:6b:7c:7a:02:b6:b3:41:ee:7a:a4:
4d:97:1d:80:c0:c9:3e:7c:18:54:23:9b:0b:9b:c6:
56:ef:dd:16:31:48:62:04:cb:aa:b0:92:fe:5a:c1:
8f:9d:78:0f:6e:83:e5:e6:27:c9:ff:8a:92:e3:cf:
bd:71:64:1a:ca:87:c6:97:41:48:77:52:9f:1b:42:
6f:8c:d0:bb:26:7d:60:cb:66:8a:2c:86:ec:86:5b:
9b:65:6c:d8:03:ed:26:c2:08:aa:a8:79:db:a0:01:
cd:48:2a:59:9a:e8:c0:34:d7:33:9e:67:30:9b:30:
dd:62:29:30:8f:08:3e:1d:32:e5:c0:49:ea:50:03:
92:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:A2:ED:06:E9:3D:CF:43:22:CC:54:1C:3A:72:51:9E:58:CC:56:DC
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/36LtBuk9z0MizFQcOnJRnljMVtw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.46.40.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:26:c5:a0:8f:cd:a9:41:cd:cf:6d:41:c8:72:b7:1a:37:86:
e0:93:b5:59:35:eb:9b:ea:16:be:4d:19:1e:9f:fd:a3:1d:29:
d0:a6:f4:a5:ff:e6:0b:fe:30:07:53:cb:49:12:b0:25:46:91:
97:db:22:8b:48:f3:97:7b:23:f3:9e:73:7e:81:5b:d4:f4:07:
ed:f7:f7:5d:c8:28:83:46:b4:af:61:37:ad:3b:c8:ba:46:13:
ad:ea:df:82:2f:1e:f8:6e:30:38:ff:51:15:e3:03:a5:19:40:
ec:a6:40:57:85:d9:eb:75:65:df:0d:1d:cb:f3:2e:a5:f3:30:
8a:ca:b3:92:6e:60:8f:83:1e:85:94:6d:48:26:94:fd:34:d7:
9d:4a:7a:fe:b1:c6:97:b8:5f:3d:4f:03:3e:87:61:20:a7:2f:
3b:e8:46:dc:c9:99:b6:12:2f:98:c8:5e:88:2a:1a:96:be:58:
20:65:71:82:a9:b0:ad:b3:23:7a:d5:cc:1b:9e:00:0f:b0:7f:
4a:78:ab:65:3f:f2:88:b0:81:17:0b:f1:ef:b1:5a:81:f4:ac:
23:b9:cf:1d:4a:59:35:24:9b:66:21:b2:69:d6:62:3c:1e:33:
21:e5:5d:1a:47:7e:72:57:9c:6d:cf:52:89:73:12:e2:1f:dd:
da:62:3a:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:08:28 2025 by rpki-client