Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/RSOryMaUqLlrJO7L8ChCLEMact4.roa
File: RSOryMaUqLlrJO7L8ChCLEMact4.roa (raw, json)
Hash identifier: 81LXLb10LU0kmxlAeChuNo0BUcP3+cKN0cOuUZi607A=
Subject key identifier: 45:23:AB:C8:C6:94:A8:B9:6B:24:EE:CB:F0:28:42:2C:43:1A:72:DE
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 019425900C0BC76FCC8BF44A65A552031BF4
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/RSOryMaUqLlrJO7L8ChCLEMact4.roa
Signing time: Thu 02 Jan 2025 05:49:44 +0000
ROA not before: Thu 02 Jan 2025 05:49:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212206
IP address blocks: 95.47.156.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:90:0c:0b:c7:6f:cc:8b:f4:4a:65:a5:52:03:1b:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 05:49:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4523abc8c694a8b96b24eecbf028422c431a72de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:99:07:c7:50:17:ff:52:03:0f:35:66:59:95:
5d:fb:35:d8:cb:ab:da:57:98:b1:96:da:09:0f:5c:
37:c4:1a:2a:a6:74:76:05:9c:dd:90:52:5a:2b:da:
25:3f:07:b9:95:9f:bf:b9:28:cd:42:12:e3:9c:87:
7c:9f:2d:52:2e:5b:7f:4f:ba:2a:16:32:29:52:19:
7b:4f:4d:ad:04:bf:2d:c9:a4:74:59:7d:29:3b:8c:
87:96:64:5d:c3:b8:e2:c4:24:15:76:5a:3e:a3:85:
4c:af:91:53:85:8b:4a:64:50:4f:0f:f9:09:a7:39:
9e:e1:57:a9:7b:3a:c8:7d:df:3f:e8:12:7f:be:5b:
85:9b:88:5f:92:08:68:94:7a:df:90:9b:db:72:87:
c1:ac:ff:17:28:62:1b:c4:45:f6:20:ec:d4:84:df:
45:4e:ad:bd:06:08:3f:eb:f7:3c:bc:7e:53:6d:2e:
ef:49:55:9b:b8:cf:1c:78:c8:bd:fd:24:1f:d4:71:
42:a5:5c:83:32:6b:07:07:1b:c9:45:a6:eb:85:91:
79:5f:b6:7d:b6:9a:39:0a:c1:0f:3d:27:8b:9e:2d:
73:09:9f:08:23:a2:3b:53:ae:4c:11:15:69:cf:62:
c9:11:1c:ec:af:25:aa:c7:30:f9:6c:76:99:0d:10:
f0:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:23:AB:C8:C6:94:A8:B9:6B:24:EE:CB:F0:28:42:2C:43:1A:72:DE
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/RSOryMaUqLlrJO7L8ChCLEMact4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.156.0/24
Signature Algorithm: sha256WithRSAEncryption
22:75:04:c0:ca:ee:7a:2c:53:d2:b9:a1:da:b9:3a:18:7b:4b:
28:a0:66:33:86:45:1b:56:21:8c:b5:94:07:a8:56:88:d8:9c:
71:f8:09:ef:1a:1e:dd:a3:b3:90:e0:26:a5:a4:ad:0e:14:24:
ff:79:f8:57:70:1c:8e:c5:97:63:3a:3b:9a:9f:8f:b9:e6:b8:
88:53:89:08:bb:67:38:88:ef:59:bd:05:62:d2:f8:bd:59:08:
af:e3:f6:69:6b:ee:0f:14:56:56:22:01:52:05:7e:f8:c3:07:
a6:33:60:c7:cd:3c:05:3e:05:15:e7:45:e9:3e:5f:9e:38:40:
07:c1:97:23:af:5d:e0:80:9a:18:32:9f:4b:94:45:f9:ec:ce:
34:ad:48:1e:d0:3a:c8:66:df:3f:0f:30:d7:9b:5c:59:ed:4a:
de:ec:62:89:dd:5c:48:75:b3:5a:a4:23:19:32:d1:1a:33:d1:
05:6a:15:9b:7c:6d:31:65:26:7f:d6:e5:d4:6d:0d:43:86:a2:
5a:13:7d:7b:8a:46:54:0b:d1:34:49:53:55:2d:7a:76:55:4f:
9e:e7:a5:d7:37:af:0b:7e:5c:13:b2:97:34:14:3c:f7:96:aa:
34:b2:b6:0d:8a:ca:4f:83:b8:92:3b:9f:93:d0:63:87:3d:f4:
62:3e:17:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:34:28 2025 by rpki-client