Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/jg8lYeCtyTT_p8fd8vlwTGgNKOg.roa
File: jg8lYeCtyTT_p8fd8vlwTGgNKOg.roa (raw, json)
Hash identifier: 1X2gtj8QpQ4dcN7D0bQMwXH/56LxqQLGQMDkTln56uA=
Subject key identifier: 8E:0F:25:61:E0:AD:C9:34:FF:A7:C7:DD:F2:F9:70:4C:68:0D:28:E8
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 28508559
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/jg8lYeCtyTT_p8fd8vlwTGgNKOg.roa
Signing time: Sat 01 Jan 2022 16:10:13 +0000
ROA not before: Sat 01 Jan 2022 16:10:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209863
IP address blocks: 95.47.162.0/24 maxlen: 24
93.170.78.0/24 maxlen: 24
2a02:128:4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 676365657 (0x28508559)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:10:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e0f2561e0adc934ffa7c7ddf2f9704c680d28e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d3:8a:3b:b0:1d:b6:36:c6:7d:73:c6:93:9d:
9f:03:84:b7:a0:13:8d:98:15:bb:55:cb:50:d1:d8:
e1:9a:cb:a9:7e:df:b2:67:b8:ed:b1:fb:35:a8:14:
1c:c0:a1:eb:e5:a3:7b:a2:d9:f3:12:b7:d1:4c:50:
aa:e5:e9:44:01:47:a5:ee:61:57:1c:67:74:e5:e0:
16:e5:28:e8:8d:c9:89:50:ce:76:f6:bd:82:af:a6:
e1:11:ed:bd:7d:ed:15:ba:47:99:5e:3a:f9:cd:d4:
3d:02:d7:e0:60:99:75:6b:73:eb:4c:66:46:f5:48:
33:01:2c:1e:a7:3d:9d:f8:9c:3f:26:9f:47:0b:b1:
d3:4d:cb:22:77:1e:b3:ef:20:02:87:1d:73:36:8c:
98:fb:ba:85:11:12:ec:78:a9:91:45:b9:6b:d3:b9:
fc:cd:e5:ed:a9:fb:3e:c7:49:2a:9e:d4:16:e7:50:
cc:9c:52:db:3b:2d:d6:a3:07:e7:f4:59:7c:0b:62:
f5:44:4c:50:a7:7f:e1:48:36:14:c7:73:fe:10:6d:
0f:dd:4c:50:8f:58:f6:d1:b6:83:c4:b9:71:d7:13:
10:0b:9f:ee:5b:a2:4c:68:93:54:81:73:4c:82:8d:
d2:a4:d2:38:f5:46:ae:5b:64:4e:5b:53:62:f7:d0:
d6:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:0F:25:61:E0:AD:C9:34:FF:A7:C7:DD:F2:F9:70:4C:68:0D:28:E8
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/jg8lYeCtyTT_p8fd8vlwTGgNKOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.78.0/24
95.47.162.0/24
IPv6:
2a02:128:4::/48
Signature Algorithm: sha256WithRSAEncryption
6f:91:3e:7b:9d:ab:e5:74:5d:d6:67:91:32:74:18:0f:d4:aa:
bf:32:9f:c7:cc:36:7c:d3:d0:26:51:ef:85:b5:be:ce:61:bd:
e5:f3:65:fc:60:b8:32:f0:c2:ba:bf:78:ba:ee:e7:9d:a1:55:
59:16:b4:da:e2:0d:78:dd:a9:bc:d5:c4:f7:3c:d1:f7:e0:75:
22:81:1c:b6:48:44:bf:8c:c5:74:b4:bb:7a:ae:65:6d:31:92:
aa:51:2d:59:94:ef:1a:2f:01:7d:8f:20:07:be:8a:7c:2f:5b:
d1:2a:d0:fb:30:70:0e:0d:76:fe:a6:e3:c4:49:b3:bf:58:3a:
b6:e2:96:f2:d5:88:d5:21:e2:d3:ae:d9:30:c4:a7:de:fd:c0:
a7:ea:b5:57:13:f5:0e:1e:0a:14:44:ad:9b:23:9e:87:63:89:
1c:55:ab:2b:c2:7e:21:d0:ac:6b:bc:00:33:c8:50:9e:06:fa:
9a:01:ca:c8:bc:4b:4a:56:e9:62:4e:6a:48:77:b5:c7:a1:b9:
90:17:5d:88:dd:52:31:7e:6b:57:0c:d7:fd:21:dd:93:5a:b9:
d2:da:2a:14:57:69:f1:f7:ca:8d:06:e7:5a:b9:31:a9:63:11:
e6:81:49:ab:9f:31:23:fe:87:e5:d8:03:47:22:33:24:84:88:
e2:73:14:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:58:31 2025 by rpki-client