Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/AuzeUWyzLARjc-lrzgdh56i6OaI.roa
File: AuzeUWyzLARjc-lrzgdh56i6OaI.roa (raw, json)
Hash identifier: 5GBXJBBGvym+/JgzZ0RNe3erDTPqT0G8IIsFE7vOR6I=
Subject key identifier: 02:EC:DE:51:6C:B3:2C:04:63:73:E9:6B:CE:07:61:E7:A8:BA:39:A2
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01857095BC53624E73C03C8C5BB0ACCC05F4
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/AuzeUWyzLARjc-lrzgdh56i6OaI.roa
Signing time: Mon 02 Jan 2023 03:45:39 +0000
ROA not before: Mon 02 Jan 2023 03:45:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212006
IP address blocks: 95.47.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:bc:53:62:4e:73:c0:3c:8c:5b:b0:ac:cc:05:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02ecde516cb32c046373e96bce0761e7a8ba39a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:20:9f:f6:d8:26:08:f4:3d:17:5e:7e:41:2a:
2e:79:5d:f2:e3:42:d9:ef:52:9d:0a:9e:52:b3:f8:
bc:1f:6c:4a:1c:7e:af:a5:92:e7:19:9c:32:55:60:
8f:38:39:01:cb:ab:a1:8c:33:12:28:7f:d3:32:8f:
3b:88:5a:51:20:6b:ac:71:18:3f:c8:be:71:7f:4e:
1a:31:bb:85:87:9d:10:fe:32:28:4c:98:06:30:c2:
ba:c1:83:6b:9b:de:47:d0:c6:97:d3:cf:3b:a9:ae:
7d:5e:af:fc:dc:94:17:fc:48:07:82:6b:15:85:43:
14:90:b1:ec:c5:ea:82:59:80:6d:24:ca:ee:3c:ae:
3e:0a:fe:57:c3:2c:b8:06:f5:c9:93:cb:b0:41:19:
7c:b7:f3:ed:02:65:e2:62:4e:8e:9f:7b:52:2d:b0:
c3:87:29:7c:33:ce:c2:cf:2a:3f:0f:4a:d2:d3:cd:
4b:cb:3f:6e:84:be:37:55:30:ab:be:a2:a2:62:8f:
4b:18:4b:45:58:88:57:0a:a3:ba:26:fc:2f:27:c4:
a7:e9:24:05:ce:11:87:17:ab:76:59:56:d5:38:4a:
45:a5:8d:9f:20:1f:98:13:4b:0c:61:2e:b9:a3:16:
b8:33:29:59:d5:b1:1f:54:65:9a:c6:12:a1:77:54:
ab:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:EC:DE:51:6C:B3:2C:04:63:73:E9:6B:CE:07:61:E7:A8:BA:39:A2
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/AuzeUWyzLARjc-lrzgdh56i6OaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.233.0/24
Signature Algorithm: sha256WithRSAEncryption
44:c0:58:cc:44:58:8e:41:a5:d9:4f:cf:45:fd:8b:da:a6:94:
9c:7e:1e:09:3a:ff:a3:29:3b:7e:09:25:d2:55:6f:49:ce:81:
fe:da:f9:2d:01:a1:f5:38:29:c6:24:15:55:b9:4b:6a:bc:89:
3a:6b:be:43:f4:c4:c5:b3:c1:1e:e0:0b:b3:aa:0c:f5:5e:8c:
c5:e3:1b:d7:90:62:9e:ac:98:29:82:49:e9:3b:a9:5a:f0:0c:
f6:22:cf:ec:c7:bb:ea:9b:07:db:f4:9a:5e:2b:5a:33:2d:10:
aa:e6:a4:d8:1d:bc:02:96:e2:cd:0b:27:74:ef:e8:b1:95:3f:
1d:1e:ad:22:21:83:ac:ed:09:9d:83:eb:c8:82:65:63:e0:d2:
5d:35:1a:76:4d:58:a6:5a:4e:6c:4f:0c:5d:a1:07:da:6f:75:
cd:47:de:6e:e2:ae:06:f7:9a:53:87:45:8b:d1:c8:70:23:64:
5d:04:67:27:8f:f0:dc:ef:f7:da:70:89:33:5e:8c:b1:31:e1:
57:6d:f4:fe:a6:ab:6e:cf:9b:a4:e2:19:81:80:55:6b:4c:e0:
89:53:4c:8a:4a:5b:ab:1e:a7:46:0e:d6:c1:60:df:27:be:92:
d8:9a:57:31:d2:48:f0:ce:9a:79:1e:2e:c8:eb:0d:a4:92:bc:
a2:5c:c1:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:17:58 2025 by rpki-client