Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/XWPbbrA5jh8CvwdErzPh0ImF-pk.roa
File: XWPbbrA5jh8CvwdErzPh0ImF-pk.roa (raw, json)
Hash identifier: DQVqnbOqTbjQUee5p6QFmVmyiysMcIvR5qjorjzEo04=
Subject key identifier: 5D:63:DB:6E:B0:39:8E:1F:02:BF:07:44:AF:33:E1:D0:89:85:FA:99
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2A17BBFE
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/XWPbbrA5jh8CvwdErzPh0ImF-pk.roa
Signing time: Wed 01 Jun 2022 09:32:26 +0000
ROA not before: Wed 01 Jun 2022 09:32:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59392
IP address blocks: 95.47.204.0/22 maxlen: 24
31.148.52.0/22 maxlen: 24
31.148.56.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 706198526 (0x2a17bbfe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jun 1 09:32:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d63db6eb0398e1f02bf0744af33e1d08985fa99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6c:4b:34:20:a6:34:a7:49:95:18:ac:e8:e6:
b3:7c:93:2c:f0:4c:20:8d:af:0f:17:87:5b:f3:b2:
ba:a4:43:c0:e6:b1:2c:58:46:17:af:36:36:1d:84:
f9:37:bf:0c:39:0a:e8:c8:5f:98:8f:e1:64:a0:26:
89:51:35:47:12:85:4c:f8:b2:48:76:f4:6f:3e:86:
38:6f:eb:21:85:02:6c:37:a3:be:69:44:41:6d:0b:
b5:d9:d6:99:70:93:5c:f1:9f:92:21:37:ea:c1:82:
0b:1f:5f:7f:43:fa:19:03:e6:d0:27:e9:d8:2b:90:
65:df:6c:d4:9c:d5:18:9f:40:00:99:e5:46:b3:bc:
0a:f9:23:ef:8b:4c:9b:f3:e1:ec:b2:db:7e:08:c8:
c2:4c:1b:3e:b2:19:d2:bc:94:d6:30:77:11:3b:de:
10:7f:ca:97:6b:f8:f7:35:d4:1e:66:7d:c7:73:9d:
36:19:a9:72:94:17:17:88:94:db:b1:37:70:20:83:
6b:c7:9f:1f:dd:25:89:62:f1:aa:a9:1e:03:29:6c:
5a:d5:9c:b1:be:b2:c9:33:d6:08:76:3e:f1:94:73:
43:4a:12:c1:92:48:fb:88:c2:a0:49:77:1d:d3:07:
0b:66:bd:b5:7e:30:44:3c:73:e5:a5:66:98:5d:f6:
45:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:63:DB:6E:B0:39:8E:1F:02:BF:07:44:AF:33:E1:D0:89:85:FA:99
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/XWPbbrA5jh8CvwdErzPh0ImF-pk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.52.0-31.148.63.255
95.47.204.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:5b:19:90:31:c6:d8:d4:2f:a9:d6:b3:7d:f4:b9:0e:96:7b:
c9:a9:f9:04:d1:35:4a:b1:da:e5:eb:3e:91:4f:01:49:b9:7e:
7a:a5:17:6f:d4:dc:9f:f7:12:85:d0:17:c3:6c:83:21:7a:bc:
b7:86:c3:50:8e:a0:ed:92:a1:d1:90:de:f5:92:5e:09:8e:08:
b3:b2:bc:96:67:a8:ae:15:55:d7:a5:db:39:25:70:cf:86:b3:
cf:8c:bd:22:04:14:55:d9:eb:5c:ef:c6:2e:af:9b:8d:48:aa:
1a:62:c8:15:0a:f2:7b:fd:87:9a:e0:c8:47:d3:ef:16:44:79:
51:fe:e2:a7:03:41:67:92:6c:c3:ab:15:6c:f9:e2:0d:18:95:
a8:df:89:a3:e6:cd:bc:b9:76:9a:52:2c:88:fb:f1:98:d3:71:
05:a9:74:0c:a7:06:05:d8:8a:a8:75:cc:e5:b7:d5:30:60:57:
99:6e:50:04:46:48:de:4e:37:b1:23:72:ed:a2:c6:cc:2a:0d:
47:c4:b4:ff:b7:78:f9:c0:7b:1c:3d:a5:6e:65:f2:cb:4a:78:
77:a6:8a:83:96:a7:68:77:09:60:91:9d:b3:4d:b4:62:8a:7c:
79:9d:c1:fe:d7:be:6f:0d:03:34:b9:34:0e:2f:ad:07:47:8c:
ae:19:d3:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:53:32 2025 by rpki-client