Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/FhgciW-wz-OdWrFgpuswL-2ZyOY.roa
File: FhgciW-wz-OdWrFgpuswL-2ZyOY.roa (raw, json)
Hash identifier: L9LNoFfuHwk6BRLPA9kbTaFxB2csTaJMTYCA0dx/p+0=
Subject key identifier: 16:18:1C:89:6F:B0:CF:E3:9D:5A:B1:60:A6:EB:30:2F:ED:99:C8:E6
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27C9DA32
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/FhgciW-wz-OdWrFgpuswL-2ZyOY.roa
Signing time: Sat 01 Jan 2022 16:08:52 +0000
ROA not before: Sat 01 Jan 2022 16:08:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56465
IP address blocks: 95.47.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 667540018 (0x27c9da32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=16181c896fb0cfe39d5ab160a6eb302fed99c8e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:56:ac:1f:49:e1:04:38:ed:a1:37:6e:87:79:
25:9b:23:ec:ab:f9:3c:6d:ae:e5:75:85:26:a5:bf:
b0:64:94:1e:7c:68:2a:71:20:86:cf:ef:2a:15:a7:
fd:de:fb:9a:89:81:be:4e:7d:26:98:41:1c:09:5c:
57:2c:0a:8c:0d:51:59:d2:a2:ca:78:83:37:9f:c9:
c4:d0:04:c4:95:40:83:43:a8:b4:e5:87:af:af:96:
fc:82:43:37:fb:46:23:7f:f9:1e:67:f2:41:74:68:
8c:b9:54:1f:b9:a7:33:34:84:78:a2:e3:20:9d:da:
46:a6:78:5e:bb:59:0d:fc:fc:63:88:bd:45:26:78:
1c:46:bf:14:4e:64:d1:1f:b5:bf:91:9c:12:cd:15:
08:39:12:c2:e0:5f:2e:58:e4:89:93:0c:96:c3:c5:
22:37:cd:01:5b:1d:d6:10:36:13:40:5b:80:49:7c:
f5:26:3b:f4:4c:c0:b3:73:af:9f:f9:72:d9:be:08:
fd:cb:95:46:b2:e0:09:41:85:8c:2e:83:e2:69:da:
0c:46:8c:8a:0c:2a:36:fc:67:72:5e:bd:d5:e4:57:
c2:2a:42:ca:a7:21:2f:0b:2f:47:ff:a2:46:42:b0:
93:96:c9:cc:31:a0:d2:79:af:03:22:71:90:f6:e2:
54:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:18:1C:89:6F:B0:CF:E3:9D:5A:B1:60:A6:EB:30:2F:ED:99:C8:E6
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/FhgciW-wz-OdWrFgpuswL-2ZyOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.116.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:1b:c0:4a:d8:e4:83:95:a2:e7:11:46:bd:21:cd:0a:36:91:
ed:71:23:bc:5d:98:69:6f:39:bd:d3:29:6e:67:1e:30:e4:52:
37:01:ec:2b:b6:b8:08:38:53:aa:78:20:4f:1b:88:f4:8a:20:
ac:4e:a5:cd:3c:67:66:34:70:a6:c8:a0:d6:62:59:0d:e2:60:
9f:54:61:d2:21:ed:8e:f7:d3:a1:a4:ba:6f:12:50:f6:2c:58:
3f:34:3f:4c:35:ca:fb:af:41:80:20:df:98:dc:9b:e7:6d:e2:
b9:61:ba:78:a8:c1:d4:d4:b9:95:0a:50:b4:71:a6:2b:0d:e2:
f4:13:86:af:87:24:5a:9c:30:a7:fd:4a:b3:5d:5b:6d:b3:f6:
ad:32:d9:51:a4:58:c7:49:41:56:83:3c:0a:5d:c0:bc:31:af:
41:41:0f:94:b7:7c:8d:1a:97:a9:a8:47:92:12:34:8f:f8:69:
87:16:3e:89:44:7e:8d:42:00:3a:b3:3b:02:d4:28:35:c2:b5:
2e:c7:05:c3:89:25:63:4a:0f:44:50:d5:fe:48:ea:ab:e8:34:
d4:92:f9:a5:7e:eb:d5:a4:b5:50:01:0c:1e:af:68:40:ff:58:
fd:9b:ac:93:b6:e4:30:a0:f9:ca:c0:e1:41:83:e9:58:60:cc:
d4:70:43:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:27:31 2025 by rpki-client