Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/7ocyvi5wjzhfzVUfVsYGEjoq2qw.roa
File: 7ocyvi5wjzhfzVUfVsYGEjoq2qw.roa (raw, json)
Hash identifier: PbXPSIU35KkZHndHmgBOrI9yi94iXi9wD68k+NiSKRM=
Subject key identifier: EE:87:32:BE:2E:70:8F:38:5F:CD:55:1F:56:C6:06:12:3A:2A:DA:AC
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01857095840FE530158B1E8A52D5B48DCBE6
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/7ocyvi5wjzhfzVUfVsYGEjoq2qw.roa
Signing time: Mon 02 Jan 2023 03:45:24 +0000
ROA not before: Mon 02 Jan 2023 03:45:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62339
IP address blocks: 95.47.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:84:0f:e5:30:15:8b:1e:8a:52:d5:b4:8d:cb:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee8732be2e708f385fcd551f56c606123a2adaac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3f:eb:be:49:26:a3:16:e3:f9:6a:49:0e:4b:
27:5a:de:62:e1:5f:a3:ef:11:34:3f:9a:28:73:1b:
7d:38:fe:a8:48:d4:70:08:b4:7a:6d:48:aa:0e:02:
41:82:25:84:e8:d2:63:28:37:e9:83:1a:b2:48:d6:
bc:2a:64:32:f6:ea:69:53:fc:9d:c9:90:1d:6b:6a:
c0:3f:d3:d4:e5:90:3c:ae:ba:ad:5e:8b:a8:b1:b1:
fc:ae:99:5a:20:28:45:3b:42:77:3b:79:3e:26:e0:
64:d1:73:58:91:8c:8b:b6:20:a9:88:7b:7e:2a:17:
46:e0:26:d7:ef:6f:a1:29:34:92:e7:84:e3:ff:32:
68:40:4f:4e:ae:f9:80:93:1f:8e:71:05:86:4e:16:
e6:5c:87:02:89:12:1c:56:a9:1a:58:95:2e:cc:3c:
6f:f5:4d:a2:ce:91:7d:3f:75:09:6c:44:f3:54:0d:
3a:f4:4b:93:f0:1a:85:37:26:87:de:50:ce:43:12:
40:f9:49:87:61:35:b9:d1:09:32:29:c3:3d:e7:ae:
c2:71:68:1f:ea:6a:8c:2d:43:17:63:5a:eb:5d:39:
dc:18:a1:c0:77:04:74:b1:b3:7b:0f:dd:28:83:bb:
9e:13:63:d4:67:82:bb:ff:f4:7f:32:af:ce:a5:e6:
85:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:87:32:BE:2E:70:8F:38:5F:CD:55:1F:56:C6:06:12:3A:2A:DA:AC
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/7ocyvi5wjzhfzVUfVsYGEjoq2qw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.245.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:6b:55:0b:b7:91:e6:a3:92:3c:cb:d3:8b:0d:85:cd:85:4b:
a9:7a:bb:8c:fc:e0:4d:af:02:a2:86:8c:e2:08:fc:de:f5:bc:
6c:5e:4b:0a:34:ea:8e:db:66:0e:c1:d9:de:1f:58:71:98:be:
cb:43:0b:ca:49:12:57:12:76:c8:f1:5a:c8:6f:ce:bb:00:04:
7c:ed:e8:26:fa:ca:fd:92:a7:3c:81:3d:88:96:4a:97:2a:8c:
c0:e1:71:70:8e:4c:8e:af:77:b7:b6:e3:83:c7:ba:7b:e8:19:
5e:20:69:ea:2f:0b:a3:8c:1b:0a:1f:36:36:ce:de:22:04:73:
13:76:17:45:65:d5:dc:69:be:46:58:04:af:1e:b4:ec:c6:5f:
95:7a:d9:94:78:50:88:30:bb:74:d6:d8:2f:a6:80:b7:48:ad:
7d:19:b2:5b:7b:ea:38:e4:45:f9:03:9b:b7:68:2a:0f:5a:5d:
c9:cd:2d:06:b3:31:9b:0b:c3:b5:91:96:75:01:ce:ea:77:ef:
a3:2b:38:d3:56:b5:6d:e8:01:17:85:73:07:8f:fb:d7:dd:fc:
ee:1e:2d:2b:4f:c5:ab:7e:f4:ea:5e:55:1c:4e:23:4c:e9:e1:
09:e7:5a:94:48:02:72:4c:19:0b:25:e0:c1:a1:46:f0:16:26:
64:9d:43:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:27:22 2025 by rpki-client