Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/47z30ILfiDwK9zel8ghaQ82QFxw.roa
File: 47z30ILfiDwK9zel8ghaQ82QFxw.roa (raw, json)
Hash identifier: GylzTm51rxAmZpkulwSa9roNwLajp7mXFDwlZ2O5EDY=
Subject key identifier: E3:BC:F7:D0:82:DF:88:3C:0A:F7:37:A5:F2:08:5A:43:CD:90:17:1C
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01857095BDF2B30C755022BEAEE38B99C5C1
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/47z30ILfiDwK9zel8ghaQ82QFxw.roa
Signing time: Mon 02 Jan 2023 03:45:39 +0000
ROA not before: Mon 02 Jan 2023 03:45:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212206
IP address blocks: 95.47.156.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:bd:f2:b3:0c:75:50:22:be:ae:e3:8b:99:c5:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3bcf7d082df883c0af737a5f2085a43cd90171c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:35:f9:9f:ce:c7:e3:d0:1b:4e:12:75:60:97:
c2:24:84:df:b7:4c:d2:bc:2a:82:d7:1f:04:28:c1:
21:98:79:a9:b8:ba:40:ea:af:45:49:a1:6c:52:7c:
30:85:6e:a5:08:ba:0f:24:54:b6:a2:2f:f5:eb:7c:
50:bb:08:26:e5:ce:0d:e6:5c:82:3d:30:58:89:13:
1c:2b:3e:09:05:fa:4f:35:57:5d:7d:a2:8b:a0:35:
b5:b1:1b:25:a0:93:a2:53:3b:c8:12:da:1d:fa:ab:
bf:42:ea:41:6f:aa:82:8f:18:78:5f:8a:00:db:9d:
a4:e8:da:c6:45:3f:ee:ee:e9:88:d0:ed:6d:29:d6:
23:07:04:d6:77:9c:65:46:6d:91:44:80:fa:12:cf:
fb:c4:26:4f:b9:c8:e1:58:55:a5:34:b4:8e:6b:38:
97:9c:71:d0:c5:6a:ea:7b:c7:8e:09:b0:4f:ee:56:
2b:60:d8:fc:41:2d:bb:da:98:db:4a:47:a8:c7:e9:
71:23:3e:51:d1:5b:fd:36:ab:c1:11:13:13:5e:ce:
2c:4e:e0:33:f5:ec:6f:84:18:f1:84:e3:73:19:30:
23:07:33:d1:fc:5f:1f:d2:d7:13:1c:32:55:5a:be:
d4:ac:5c:42:93:59:16:2e:0a:67:a5:42:53:29:ec:
05:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:BC:F7:D0:82:DF:88:3C:0A:F7:37:A5:F2:08:5A:43:CD:90:17:1C
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/47z30ILfiDwK9zel8ghaQ82QFxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.156.0/24
Signature Algorithm: sha256WithRSAEncryption
77:64:58:3f:08:65:cc:84:15:a8:ce:e4:f4:2b:30:9a:e4:69:
c9:ab:1f:fb:99:f0:ed:0d:63:10:1b:7b:b9:51:73:59:2e:99:
04:e9:a4:e0:c3:5a:43:1c:31:fc:ec:19:da:48:cd:8e:c0:61:
91:58:cc:70:ab:fc:f6:cd:20:7c:e5:f4:25:3e:35:51:23:a8:
6d:9d:ba:ed:1a:37:10:56:ba:7b:0f:f9:c8:31:fb:dd:d6:ee:
fe:49:be:4a:31:4b:bd:67:56:22:5c:a4:76:96:dc:a8:86:2d:
49:51:d4:cb:ac:ce:a0:d2:2e:cf:cc:ed:da:38:d9:43:be:63:
ee:df:dc:d4:9c:0c:07:8e:82:00:78:f1:f0:38:c7:22:54:71:
68:48:5c:83:02:fa:23:8b:79:a6:55:a4:b6:88:c1:1e:c0:a6:
49:6e:94:1c:4d:26:6c:ac:10:28:b2:59:d1:fc:63:93:57:2d:
fe:17:ef:c6:75:3b:bc:49:11:8a:e0:f9:a7:36:a9:1d:68:23:
7d:3f:9f:d0:15:d2:24:37:5b:2b:18:fa:7c:a4:5d:37:a9:d7:
70:99:b4:61:42:33:1e:c2:71:b0:63:4a:a9:8e:10:da:bc:c9:
8d:da:5c:a2:9e:c4:62:8f:16:cb:62:6d:b9:52:f3:73:da:82:
59:36:da:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:03:18 2025 by rpki-client