Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Rx8qpssgYsoEz0bEWmdmkqQ4e30.roa
File: Rx8qpssgYsoEz0bEWmdmkqQ4e30.roa (raw, json)
Hash identifier: avTQeM+pQXrduhDMf9US5dOSATgJKdFMNZ6h1p7s5uc=
Subject key identifier: 47:1F:2A:A6:CB:20:62:CA:04:CF:46:C4:5A:67:66:92:A4:38:7B:7D
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27C68C5C
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Rx8qpssgYsoEz0bEWmdmkqQ4e30.roa
Signing time: Sat 01 Jan 2022 16:08:50 +0000
ROA not before: Sat 01 Jan 2022 16:08:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56352
IP address blocks: 95.47.142.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 667323484 (0x27c68c5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=471f2aa6cb2062ca04cf46c45a676692a4387b7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:99:79:d1:96:98:3b:03:cc:1d:06:01:44:9c:
9c:d6:12:0e:62:9b:10:96:c3:e5:60:ec:26:6d:5a:
49:ab:69:6f:d9:e1:66:38:bb:72:66:68:28:69:a8:
bf:4e:40:05:f8:e2:b5:d6:88:66:30:bc:1d:ea:79:
39:28:d0:9a:3c:02:fc:38:64:3d:70:d2:9f:07:dc:
8e:b3:ba:75:e2:77:36:ec:41:18:1a:5f:bb:bc:8d:
68:80:ad:f9:a1:33:00:86:3c:8b:fe:57:2f:5a:4f:
94:16:49:a9:d5:46:85:71:50:66:ee:a6:60:ac:d1:
3a:57:2c:13:8c:9f:e6:2d:7a:b8:bd:f9:11:9a:1d:
25:18:55:e6:9e:57:3c:71:f2:59:35:29:8e:a8:c2:
9c:39:f7:76:e1:b2:64:9a:51:07:68:78:65:fb:e1:
f5:8e:1d:bf:90:83:9f:59:d8:f4:00:99:56:72:5b:
47:bd:b9:df:b5:cb:7d:b7:a5:bc:5e:12:f0:4e:c9:
b8:3a:db:f5:82:a2:0c:4d:0d:a4:ac:65:47:2d:46:
34:7d:71:d6:5c:e5:53:ad:23:72:7e:9f:53:f3:85:
b4:d0:6f:1e:1d:e6:f8:68:6c:3f:88:0c:3d:80:c4:
a0:e1:b3:a2:1f:8a:23:cd:16:4c:9b:d0:50:d4:fa:
14:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:1F:2A:A6:CB:20:62:CA:04:CF:46:C4:5A:67:66:92:A4:38:7B:7D
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Rx8qpssgYsoEz0bEWmdmkqQ4e30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.142.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:49:09:1e:59:6b:43:bb:00:ad:f2:ad:e7:dd:02:73:30:71:
b8:86:16:f1:08:e1:1e:4b:75:0a:cd:3f:29:30:69:da:89:45:
d1:f8:e6:1d:eb:64:20:db:5b:99:15:4e:97:dc:cf:a5:de:19:
77:b9:b9:bd:b4:a2:02:ae:f0:65:f8:5a:17:a1:ae:7f:7b:66:
c1:02:bf:ad:ed:00:30:bd:a2:90:68:53:b2:a7:e6:e8:45:c8:
ab:7e:41:4b:db:2f:10:5c:46:fc:be:18:da:91:f2:09:21:f6:
f1:56:e7:3f:36:84:4d:69:be:61:a4:00:26:f9:70:a6:6e:bf:
75:cc:30:13:a1:67:64:b7:42:d9:62:37:c7:bb:8f:80:b5:95:
cc:20:0c:38:c5:01:fa:45:51:31:c1:fd:03:89:bd:37:69:6d:
f2:a5:d4:00:ce:9f:06:0e:3f:3f:24:9c:df:88:33:36:6f:3e:
51:6c:d8:7b:b3:fe:d4:46:f8:0d:70:b3:98:f4:15:d8:33:90:
49:bc:77:6e:99:42:90:0c:a9:64:e4:31:5d:3b:23:ca:fb:db:
7a:35:87:97:9e:08:44:7b:77:a6:a0:92:88:e2:19:d5:7d:af:
cc:3c:f5:42:d8:89:1f:60:45:65:a9:bf:d6:71:59:5d:36:c1:
da:83:47:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:29:28 2025 by rpki-client