Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/V60283Mvh3QYfJ5nbbKkXv4eeGk.roa
File: V60283Mvh3QYfJ5nbbKkXv4eeGk.roa (raw, json)
Hash identifier: wZUf+VsTN1+J7sS5nzgqCs8JlEjqgDVmzZE3hb0CpWI=
Subject key identifier: 57:AD:36:F3:73:2F:87:74:18:7C:9E:67:6D:B2:A4:5E:FE:1E:78:69
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27F53C85
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/V60283Mvh3QYfJ5nbbKkXv4eeGk.roa
Signing time: Sat 01 Jan 2022 16:09:15 +0000
ROA not before: Sat 01 Jan 2022 16:09:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60839
IP address blocks: 95.47.124.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 670383237 (0x27f53c85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=57ad36f3732f8774187c9e676db2a45efe1e7869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e4:0d:93:92:9e:38:67:4e:5e:09:0e:f7:b9:
d7:a8:66:d2:ff:98:02:c4:86:78:dc:5e:eb:62:e8:
1f:53:c3:53:90:d6:ff:a1:9e:04:f9:95:49:de:3b:
8b:a5:65:22:67:e9:ad:80:04:9e:c1:16:81:48:c6:
83:41:ae:94:3f:ab:32:f9:39:9e:c8:45:1f:f7:15:
fb:eb:80:e8:b2:8f:f2:4c:8a:e2:b4:b0:7e:f4:93:
69:82:4f:9d:72:55:91:09:1e:cc:ad:30:46:00:ac:
73:ff:bb:df:42:66:66:36:1b:33:78:51:ed:25:2f:
ae:62:4d:08:a0:83:3c:f9:a3:e6:05:f3:65:a5:8d:
f4:0c:d8:21:6b:88:9a:73:77:f9:dc:c5:b4:db:6f:
fc:c2:a2:ef:52:e5:51:7a:a6:b6:0d:60:b1:1d:6b:
23:8c:15:b5:df:4c:de:ce:99:15:76:17:f2:fe:b9:
a0:0c:78:c9:d7:79:7f:a6:ab:ea:ed:11:a3:be:fe:
a4:0b:55:02:56:ff:97:39:ca:12:c3:dd:7e:78:e4:
6b:04:04:60:ca:2c:00:62:de:9c:f4:a3:c4:43:af:
3e:e3:84:02:e6:1a:92:65:7a:eb:b6:83:6b:2e:c8:
55:ee:d1:f6:77:6e:f1:0c:7f:65:22:14:34:2d:99:
2f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:AD:36:F3:73:2F:87:74:18:7C:9E:67:6D:B2:A4:5E:FE:1E:78:69
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/V60283Mvh3QYfJ5nbbKkXv4eeGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.124.0/23
Signature Algorithm: sha256WithRSAEncryption
24:38:88:d2:49:df:1f:a6:51:46:d2:06:be:0d:63:f7:dd:d9:
9a:f1:73:ab:9e:f7:f6:bf:f5:45:1d:ee:bc:c1:79:66:eb:bf:
72:9a:4c:b8:24:a7:a5:fa:4b:76:ea:a2:97:96:7e:0f:6f:36:
f7:d3:94:a7:f7:39:4d:d0:0a:67:01:93:32:70:a9:dd:5b:7d:
b9:8e:54:7e:b3:ec:85:2d:71:c7:cc:67:2e:d0:c1:19:94:48:
0b:70:2b:b5:f8:c7:61:1e:4b:e2:b0:2e:a3:23:ab:b4:9d:e9:
a2:b8:b6:5f:9c:03:70:b8:ba:b0:19:95:4c:86:cd:27:4c:00:
2f:58:5a:17:ed:d9:e1:55:67:d9:73:87:fb:a6:33:81:2f:45:
81:07:e7:9c:d2:c2:48:f2:5c:3e:5f:21:a9:d1:94:da:20:5a:
2c:df:03:24:5a:6e:fd:51:45:6e:ee:79:e3:c7:8b:6c:e0:0c:
71:22:77:4f:05:6e:c6:f7:3b:78:f3:83:b7:a8:8f:7a:94:52:
7f:f4:9f:97:8f:63:57:94:d7:cc:33:60:dc:03:26:9a:3a:f4:
04:37:18:f0:84:e1:f6:e6:e5:35:b9:54:d6:54:5b:52:98:9a:
0d:39:2f:77:d7:74:2f:70:b0:66:93:bc:25:33:7d:dc:c2:26:
cf:f9:07:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 01:55:52 2025 by rpki-client