Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/bdADRpE461NHp1kTMzpe6NpLc94.roa
File: bdADRpE461NHp1kTMzpe6NpLc94.roa (raw, json)
Hash identifier: avFFdmk0GX+REjpCR/TxyXsZhdJicI1Q8YinQsela0g=
Subject key identifier: 6D:D0:03:46:91:38:EB:53:47:A7:59:13:33:3A:5E:E8:DA:4B:73:DE
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0181D9DCF243180FBC08DF4CA5BEB912EE3F
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/bdADRpE461NHp1kTMzpe6NpLc94.roa
Signing time: Thu 07 Jul 2022 18:12:24 +0000
ROA not before: Thu 07 Jul 2022 18:12:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60245
IP address blocks: 95.46.148.0/24 maxlen: 24
95.46.149.0/24 maxlen: 24
31.148.172.0/23 maxlen: 24
95.46.98.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d9:dc:f2:43:18:0f:bc:08:df:4c:a5:be:b9:12:ee:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jul 7 18:12:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6dd003469138eb5347a75913333a5ee8da4b73de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c0:e5:16:0c:3c:65:a6:1b:53:f1:90:18:79:
56:25:2b:2a:1a:60:06:e4:fb:7e:59:5e:72:84:2e:
ec:73:32:da:9a:66:6e:7b:55:a3:5c:84:6c:27:98:
9a:1a:fa:c1:f8:cd:68:22:e4:31:c6:d3:2a:92:2c:
55:53:d0:37:9e:57:a1:86:9b:93:90:a1:af:00:c3:
ac:50:c9:1a:3c:0b:02:48:6d:3f:26:43:92:5e:e2:
7e:54:b5:e9:c3:24:5f:07:f9:f5:a5:66:77:07:cd:
95:87:dc:21:5d:25:35:c3:f6:e9:59:d6:ff:05:b1:
b5:ad:3e:6b:33:03:1c:3b:ab:33:66:9e:ae:ae:75:
2e:22:da:1a:3b:23:7b:97:d0:a1:54:5b:75:2e:80:
7e:10:bb:15:25:49:89:00:53:09:a4:4b:6e:b9:f0:
fe:33:e9:33:3d:de:51:c5:0f:c0:5a:a8:cd:de:9c:
ff:d7:be:8e:d0:e2:a8:24:d3:d3:4f:ca:5a:45:e7:
19:c6:32:cf:b1:7c:f4:3e:1f:e0:a9:fc:19:49:30:
91:91:21:ea:8a:0f:61:5c:5d:8b:7e:ce:44:a8:60:
ac:7c:fc:58:f9:79:1f:28:55:ed:6d:65:75:63:21:
f8:89:ce:77:51:c6:26:94:4e:aa:19:5f:3d:4f:79:
89:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:D0:03:46:91:38:EB:53:47:A7:59:13:33:3A:5E:E8:DA:4B:73:DE
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/bdADRpE461NHp1kTMzpe6NpLc94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.172.0/23
95.46.98.0/23
95.46.148.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:45:93:8f:22:1e:6a:5e:1c:f5:3d:7b:9c:a3:0c:e7:cf:fa:
7d:27:a5:6c:a4:4b:62:b7:9d:36:06:ce:6b:04:ef:f9:19:84:
1b:ea:69:ce:af:34:6f:e3:27:78:74:4d:9c:a9:8d:61:5e:ac:
f2:0a:08:f0:1f:21:84:66:57:95:29:8b:67:02:a1:60:29:8b:
8e:2a:34:f2:f9:dd:4b:39:a2:b5:02:30:3d:e6:43:3e:b2:4b:
6f:92:10:8c:57:89:c9:a7:f9:86:8b:ba:39:6f:b3:0d:f3:37:
56:84:c7:11:f1:74:1c:48:de:5c:03:8b:25:cf:12:02:38:13:
1c:17:83:ec:b1:10:89:a2:81:70:32:63:d6:f0:fb:c3:db:53:
d0:7a:a5:ae:e6:f0:ea:8a:12:2d:db:51:57:28:01:64:db:1d:
b2:94:e7:87:62:4e:a2:db:9a:47:10:5c:6d:b4:2d:00:2c:2b:
1f:c8:40:fb:d8:f2:e7:15:93:8d:22:99:dc:33:eb:97:ad:65:
ab:80:a1:d9:a7:88:45:dd:70:15:4a:18:1a:f6:a4:9b:ea:f9:
c0:06:9e:55:58:cf:ac:e3:06:26:2b:75:6b:0f:83:0c:dc:fe:
4f:0a:bc:e3:87:07:82:6e:46:7d:dc:77:e0:2a:5f:ce:07:be:
a6:3c:e5:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:46:26 2025 by rpki-client