Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/g5gzIbZX6ioLsi8ierdFg1mlXb4.roa
File: g5gzIbZX6ioLsi8ierdFg1mlXb4.roa (raw, json)
Hash identifier: MMdAxxUAgF5h1Lz9MTI9HGTex07vqtmXBHapWavCpKQ=
Subject key identifier: 83:98:33:21:B6:57:EA:2A:0B:B2:2F:22:7A:B7:45:83:59:A5:5D:BE
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01857095691778D4307FB9A2D8F9E224D905
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/g5gzIbZX6ioLsi8ierdFg1mlXb4.roa
Signing time: Mon 02 Jan 2023 03:45:18 +0000
ROA not before: Mon 02 Jan 2023 03:45:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60108
IP address blocks: 95.47.140.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:69:17:78:d4:30:7f:b9:a2:d8:f9:e2:24:d9:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83983321b657ea2a0bb22f227ab7458359a55dbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:dc:c9:dd:74:65:66:a8:b1:fd:d4:dd:bd:0e:
a9:f2:79:bb:92:d5:59:29:d9:f8:22:fb:b1:81:e3:
ec:c9:ff:01:c4:61:af:63:95:ea:7f:74:e0:d3:68:
07:82:be:d9:c7:e8:59:d3:20:e5:b3:75:f6:bb:b4:
a3:e4:75:96:40:56:5a:e0:64:80:a4:98:7f:9f:63:
3f:48:92:3c:d4:a9:e7:de:81:1e:54:c1:5c:3c:e6:
46:6b:dc:3d:44:b1:e5:07:22:45:e8:6c:a2:c0:fe:
8b:66:71:13:18:28:96:00:1d:fb:4b:9c:1c:0e:4b:
7b:b6:95:ea:ee:4c:96:0d:44:f1:03:cf:5e:f0:b5:
95:f5:6b:8d:6a:79:03:36:8d:1c:6d:08:fc:8d:af:
d3:10:99:d6:36:1b:a2:d3:c3:15:36:13:d3:bd:c4:
bd:0a:fa:5e:76:ca:53:a1:f0:ca:56:d2:8c:5f:69:
c4:6b:86:14:6f:81:2d:36:9c:6b:db:1e:1d:ff:fd:
64:6d:79:ee:48:8d:dc:c8:49:ed:81:20:3a:4b:74:
08:3b:90:65:50:46:2e:09:b1:a3:ba:03:e7:64:f3:
64:8f:b8:0d:1e:4c:64:f4:8b:13:29:d4:5f:8a:62:
ec:03:81:a3:c2:94:9f:e6:57:39:08:99:c1:df:c8:
38:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:98:33:21:B6:57:EA:2A:0B:B2:2F:22:7A:B7:45:83:59:A5:5D:BE
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/g5gzIbZX6ioLsi8ierdFg1mlXb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.140.0/24
Signature Algorithm: sha256WithRSAEncryption
72:8e:67:06:5b:96:dc:89:a8:cf:65:a9:2f:0f:19:e0:03:ef:
3f:22:d7:ed:a7:9f:fc:58:dd:91:b1:33:84:d4:fb:fe:68:5d:
5a:a8:6d:4a:8d:dd:3a:55:f7:2d:d3:6e:c7:c7:d9:26:14:d2:
55:a7:f7:6f:40:6c:c9:c2:20:3a:d2:e3:83:3f:5f:40:d5:10:
66:39:ae:19:3a:86:07:4d:29:90:ce:0a:f4:dd:0b:69:b0:1c:
5f:e2:7b:e8:43:23:7c:40:d2:db:f0:d2:cf:01:74:99:e2:9b:
c7:1b:a3:d6:57:14:51:89:15:cb:cc:41:11:87:4e:3b:d5:6d:
ad:48:75:f3:25:42:0e:d7:45:83:ac:3c:db:5d:61:06:29:96:
b4:25:87:20:5a:10:bf:f7:31:ac:b8:4c:38:c3:2a:3c:24:cb:
ac:ed:20:a6:a0:3a:f3:d7:f0:70:ec:36:ba:a7:4c:ca:7a:4e:
37:1b:2b:68:92:04:c7:a2:98:c4:49:1f:23:23:39:b7:c3:60:
d8:b8:74:23:58:a8:17:d3:0d:75:d0:c6:68:0f:2a:70:3e:0b:
a3:0f:c2:e9:6b:bd:bc:15:60:07:1d:c1:a8:48:06:d6:9a:a6:
b4:68:ff:d7:6c:e7:61:a5:7a:2e:51:35:24:05:91:14:d5:63:
7a:55:70:c1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwlWkXeNQwf7mi2PniJNkFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh
YWVmNDIwHhcNMjMwMTAyMDM0NTE4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4Mzk4MzMyMWI2NTdlYTJhMGJiMjJmMjI3YWI3NDU4MzU5YTU1ZGJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn9zJ3XRlZqix/dTdvQ6p8nm7ktVZ
Kdn4IvuxgePsyf8BxGGvY5Xqf3Tg02gHgr7Zx+hZ0yDls3X2u7Sj5HWWQFZa4GSA
pJh/n2M/SJI81Knn3oEeVMFcPOZGa9w9RLHlByJF6GyiwP6LZnETGCiWAB37S5wc
Dkt7tpXq7kyWDUTxA89e8LWV9WuNankDNo0cbQj8ja/TEJnWNhui08MVNhPTvcS9
CvpedspTofDKVtKMX2nEa4YUb4EtNpxr2x4d//1kbXnuSI3cyEntgSA6S3QIO5Bl
UEYuCbGjugPnZPNkj7gNHkxk9IsTKdRfimLsA4GjwpSf5lc5CJnB38g4TwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIOYMyG2V+oqC7IvInq3RYNZpV2+MB8GA1UdIwQY
MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt
MDYyYzY5MzNhYmVkLzEvZzVnekliWlg2aW9Mc2k4aWVyZEZnMW1sWGI0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk
LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXy+MMA0G
CSqGSIb3DQEBCwUAA4IBAQByjmcGW5bciajPZakvDxngA+8/Itftp5/8WN2RsTOE
1Pv+aF1aqG1Kjd06Vfct027Hx9kmFNJVp/dvQGzJwiA60uODP19A1RBmOa4ZOoYH
TSmQzgr03QtpsBxf4nvoQyN8QNLb8NLPAXSZ4pvHG6PWVxRRiRXLzEERh0471W2t
SHXzJUIO10WDrDzbXWEGKZa0JYcgWhC/9zGsuEw4wyo8JMus7SCmoDrz1/Bw7Da6
p0zKek43GytokgTHopjESR8jIzm3w2DYuHQjWKgX0w110MZoDypwPgujD8Lpa728
FWAHHcGoSAbWmqa0aP/XbOdhpXouUTUkBZEU1WN6VXDB
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:00:47 2025 by rpki-client