Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/8fCgmpTrfWTKfdc4X1K68aZlNjo.roa
File: 8fCgmpTrfWTKfdc4X1K68aZlNjo.roa (raw, json)
Hash identifier: GBVAa+ZOHHU+qvUCLKH4BugHxPUXpU4kHkmbYz2tM18=
Subject key identifier: F1:F0:A0:9A:94:EB:7D:64:CA:7D:D7:38:5F:52:BA:F1:A6:65:36:3A
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 284EF66A
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/8fCgmpTrfWTKfdc4X1K68aZlNjo.roa
Signing time: Sat 01 Jan 2022 16:10:12 +0000
ROA not before: Sat 01 Jan 2022 16:10:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209458
IP address blocks: 95.46.115.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 676263530 (0x284ef66a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:10:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1f0a09a94eb7d64ca7dd7385f52baf1a665363a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:3d:8b:41:60:a7:c8:ac:ce:64:b7:fc:ac:72:
a7:e6:63:c7:9a:89:11:68:2d:a7:9a:6f:14:61:ae:
a9:b3:47:44:19:d8:9a:e7:4e:31:ec:f1:9c:2f:6e:
f4:3d:1c:47:95:06:ac:66:ad:d1:93:84:e0:42:90:
c2:25:6b:dd:c4:03:0d:d3:c3:d5:32:ec:71:62:b7:
e0:01:ef:12:3f:2a:4d:1a:f2:5b:7b:98:54:b5:07:
c7:7b:d6:42:73:b2:5c:fc:bc:e6:78:bc:a8:ba:b9:
be:93:12:ff:6a:93:39:a4:54:45:50:36:08:62:76:
ac:83:92:65:0e:36:d0:22:d9:b8:e5:80:ea:4f:8d:
4d:e3:c0:a2:dd:99:fd:66:f1:4a:94:61:08:10:c5:
e3:c0:c6:ae:1a:3f:71:01:e2:1c:b7:96:11:75:8d:
15:18:5d:f0:86:9a:62:27:47:e0:5a:76:b9:37:90:
80:a2:b1:11:9f:95:e1:9f:1a:6d:3a:07:c7:7d:d3:
de:db:3f:8b:59:f0:08:88:7e:f9:e3:60:93:4e:f5:
c5:a4:c4:f8:41:f0:aa:72:92:62:03:fa:11:e7:18:
2e:6e:86:18:85:91:0d:07:b9:0b:7f:53:92:f2:5b:
b4:1e:77:32:b4:2a:2b:a3:ab:ad:6c:50:9e:d7:65:
c5:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:F0:A0:9A:94:EB:7D:64:CA:7D:D7:38:5F:52:BA:F1:A6:65:36:3A
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/8fCgmpTrfWTKfdc4X1K68aZlNjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.46.115.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:aa:56:8a:01:64:af:e8:f1:93:1f:8f:0f:6e:56:7e:61:52:
d8:fe:e0:71:92:3f:2a:94:f9:e8:94:89:ac:b6:96:ae:e8:36:
f4:6f:56:5c:e8:74:11:41:dc:5d:f5:4f:81:01:24:74:5d:1e:
a0:3a:cf:a8:98:63:f1:6a:26:3a:51:c6:65:d9:63:59:38:9e:
7f:4e:11:7a:d3:a0:11:c5:9d:a0:1d:a0:67:c8:13:fb:02:1c:
7e:51:12:ca:63:f2:bf:ea:52:72:37:ea:a6:18:9a:94:4f:a4:
b0:03:76:28:01:66:c4:bc:ad:f1:51:3c:96:19:1e:43:d9:3e:
c8:c5:4d:1f:f0:e1:c6:aa:4c:1f:93:82:1f:07:0f:cb:ea:24:
14:2c:8a:77:a4:46:c5:ea:c1:90:be:84:0a:08:15:0f:ab:fb:
4a:ac:42:87:d3:7a:86:8a:a7:9e:7b:e4:bf:29:f0:06:c1:f9:
03:e5:d8:f2:75:c8:b4:84:20:dd:c7:1a:0c:9b:3f:fb:c0:d4:
92:05:12:be:84:62:50:7a:35:ac:83:df:7c:c1:b0:2c:23:ec:
7d:65:c5:c2:68:a0:34:d4:16:ae:5f:85:62:85:ba:63:67:4f:
46:f9:5c:b0:2b:78:f5:40:3c:92:ae:7c:fc:34:d6:68:6f:58:
32:69:74:a9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEKE72ajANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDEw
MTE2MTAxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjFmMGEwOWE5NGVi
N2Q2NGNhN2RkNzM4NWY1MmJhZjFhNjY1MzYzYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANg9i0Fgp8iszmS3/Kxyp+Zjx5qJEWgtp5pvFGGuqbNHRBnY
mudOMezxnC9u9D0cR5UGrGat0ZOE4EKQwiVr3cQDDdPD1TLscWK34AHvEj8qTRry
W3uYVLUHx3vWQnOyXPy85ni8qLq5vpMS/2qTOaRURVA2CGJ2rIOSZQ420CLZuOWA
6k+NTePAot2Z/WbxSpRhCBDF48DGrho/cQHiHLeWEXWNFRhd8IaaYidH4Fp2uTeQ
gKKxEZ+V4Z8abToHx33T3ts/i1nwCIh++eNgk071xaTE+EHwqnKSYgP6EecYLm6G
GIWRDQe5C39TkvJbtB53MrQqK6OrrWxQntdlxcECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTx8KCalOt9ZMp91zhfUrrxpmU2OjAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
LzhmQ2dtcFRyZldUS2ZkYzRYMUs2OGFabE5qby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAF8uczANBgkqhkiG9w0BAQsFAAOC
AQEAXapWigFkr+jxkx+PD25WfmFS2P7gcZI/KpT56JSJrLaWrug29G9WXOh0EUHc
XfVPgQEkdF0eoDrPqJhj8WomOlHGZdljWTief04RetOgEcWdoB2gZ8gT+wIcflES
ymPyv+pScjfqphialE+ksAN2KAFmxLyt8VE8lhkeQ9k+yMVNH/DhxqpMH5OCHwcP
y+okFCyKd6RGxerBkL6ECggVD6v7SqxCh9N6hoqnnnvkvynwBsH5A+XY8nXItIQg
3ccaDJs/+8DUkgUSvoRiUHo1rIPffMGwLCPsfWXFwmigNNQWrl+FYoW6Y2dPRvlc
sCt49UA8kq58/DTWaG9YMml0qQ==
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:48:52 2025 by rpki-client