Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/AERoVkXttXYaAV-o4WmR-rk9JKs.roa
File: AERoVkXttXYaAV-o4WmR-rk9JKs.roa (raw, json)
Hash identifier: ukA03trWt0VfFa89c1xGiBjhrgMUEAp5Wd3Xo49j2dA=
Subject key identifier: 00:44:68:56:45:ED:B5:76:1A:01:5F:A8:E1:69:91:FA:B9:3D:24:AB
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27CC87C3
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/AERoVkXttXYaAV-o4WmR-rk9JKs.roa
Signing time: Sat 01 Jan 2022 16:08:52 +0000
ROA not before: Sat 01 Jan 2022 16:08:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56592
IP address blocks: 31.148.8.0/22 maxlen: 24
95.47.190.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 667715523 (0x27cc87c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0044685645edb5761a015fa8e16991fab93d24ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:95:c6:31:91:a8:a4:4d:68:84:ba:e7:f0:2c:
03:ee:51:e2:a9:9c:38:7f:3e:b3:e2:79:ca:fd:76:
1f:5d:c7:3f:f8:1b:7d:ae:60:54:01:e8:05:ba:38:
04:ec:cc:1c:29:4f:df:3e:5c:e3:c9:d2:98:6f:d5:
3e:23:db:ed:1a:00:18:fa:65:37:bb:2c:de:bf:61:
85:6a:26:3e:47:48:b7:88:8f:31:ff:db:e5:b9:e8:
8f:19:36:7d:ae:84:08:52:a2:e0:53:70:6c:64:98:
89:a7:5e:06:a2:88:b4:e4:d4:6b:e7:1f:f5:98:a2:
b4:d5:30:d6:45:41:bf:00:da:42:cb:70:60:0a:34:
ed:f5:ba:9d:37:03:00:7e:ab:cd:af:21:4d:1d:67:
c8:93:38:55:79:73:bb:0f:11:f6:cb:03:f9:5e:ee:
e7:3c:46:04:15:37:27:e6:fa:12:74:97:39:b1:52:
f5:63:4f:d8:93:75:05:b2:8b:9b:7d:4a:16:fb:71:
53:a1:8e:8d:62:6a:c3:5b:28:fb:7f:62:ce:c3:df:
92:44:eb:ce:e8:a2:c1:0b:8d:31:8e:91:c0:7f:d0:
15:dd:f7:a1:22:fc:8b:ef:26:68:6c:8b:6e:77:b9:
84:da:4f:04:7b:f2:f6:61:57:99:05:52:36:15:5a:
a2:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:44:68:56:45:ED:B5:76:1A:01:5F:A8:E1:69:91:FA:B9:3D:24:AB
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/AERoVkXttXYaAV-o4WmR-rk9JKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.8.0/22
95.47.190.0/24
Signature Algorithm: sha256WithRSAEncryption
85:d4:01:ed:56:37:c4:96:aa:f5:52:a2:2e:63:31:7c:64:a3:
3c:8f:ea:5e:3e:74:3b:f3:39:23:de:5e:71:09:7a:e1:d0:f9:
53:ba:1c:b8:14:05:8c:92:28:78:37:21:ab:5e:03:a8:9e:8d:
4d:06:69:d3:82:6c:b2:70:ff:f8:4b:04:26:54:31:ab:cb:b5:
e3:f8:a1:0f:c5:88:13:96:07:61:cc:14:25:eb:66:db:0a:b8:
e2:36:75:89:ea:24:c5:61:ac:ff:81:be:fa:34:ae:5d:8c:ae:
b0:32:42:cb:3c:2c:cd:ca:63:6a:9c:14:6b:44:c7:9c:5c:5c:
1b:4c:da:50:4c:3f:54:1b:f7:d9:47:f5:10:05:db:38:98:9c:
18:cd:a2:32:a9:88:1c:0b:40:6f:d1:87:97:10:ab:b4:48:2c:
67:65:f5:7d:0f:66:26:3b:fd:d2:03:3d:f3:f5:9f:30:43:2d:
2b:a2:6e:43:0d:15:af:21:b9:28:09:48:32:28:c8:3a:15:cf:
eb:e6:5a:9b:82:8f:58:34:79:3b:64:e5:c1:ed:c7:e1:1d:8c:
62:bc:36:0a:65:65:36:76:82:3a:ff:13:87:7c:28:01:00:46:
28:a9:2a:54:58:d8:69:89:c7:dc:0b:51:de:90:f2:36:79:ed:
9b:a1:fd:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:03:23 2025 by rpki-client