Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/jolebSuoWdvX0MoEeaazZKW0czw.roa
File: jolebSuoWdvX0MoEeaazZKW0czw.roa (raw, json)
Hash identifier: U9zYyMwA55ndclpYt3+aGwX7OSYescdwsjXndTSyM9A=
Subject key identifier: 8E:89:5E:6D:2B:A8:59:DB:D7:D0:CA:04:79:A6:B3:64:A5:B4:73:3C
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 019425900B465215340D6695940684FD2862
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/jolebSuoWdvX0MoEeaazZKW0czw.roa
Signing time: Thu 02 Jan 2025 05:49:44 +0000
ROA not before: Thu 02 Jan 2025 05:49:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212006
IP address blocks: 95.47.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:90:0b:46:52:15:34:0d:66:95:94:06:84:fd:28:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 05:49:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8e895e6d2ba859dbd7d0ca0479a6b364a5b4733c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2f:4d:5c:67:0c:92:56:46:03:33:13:cb:7d:
9d:c3:08:ce:87:6e:da:db:65:5c:99:9b:45:49:e5:
7c:e2:f8:43:ec:33:56:f2:2c:36:18:9e:c5:0e:e0:
ac:07:c9:9e:3b:3b:7f:86:93:93:46:20:ae:22:b2:
3a:0e:37:0e:23:87:ec:57:66:3e:76:eb:6e:b1:d3:
70:be:21:7f:2b:2c:f5:04:c5:0c:e5:b1:50:14:66:
a4:66:8c:d8:ed:11:1c:c9:56:75:ee:f5:ee:9d:c1:
4e:94:a6:d4:78:80:1d:1b:32:44:91:37:d3:f5:a3:
e2:2e:41:37:8f:33:d4:28:90:51:35:82:43:2d:81:
44:af:ea:75:df:8f:33:a9:31:e3:63:60:e3:db:9e:
ee:ab:f8:a8:45:47:9a:8c:c2:20:ad:84:1e:e7:22:
a2:f8:3f:d6:7f:4a:8c:4b:86:1f:4b:ab:fd:46:63:
82:1a:ce:08:c8:1a:f9:8f:dd:4f:ed:0d:8a:49:f2:
7f:c1:e8:97:34:2f:ff:8c:5e:d0:73:d9:47:d8:93:
fc:72:25:ac:ef:ec:b7:a9:0c:96:84:58:3d:95:78:
38:2b:7a:c2:73:05:e8:09:45:31:8e:8b:bd:8c:52:
c0:7f:8c:93:d9:8e:b3:dc:61:0b:87:da:0b:09:6a:
b3:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:89:5E:6D:2B:A8:59:DB:D7:D0:CA:04:79:A6:B3:64:A5:B4:73:3C
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/jolebSuoWdvX0MoEeaazZKW0czw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.233.0/24
Signature Algorithm: sha256WithRSAEncryption
01:74:00:a7:18:b3:a0:ec:ee:5e:40:18:44:f9:5f:c3:0d:30:
db:71:2d:f6:b5:7c:aa:0c:9f:ea:b3:6f:85:7d:9c:e5:d2:a7:
44:61:50:0d:ca:db:f5:83:6b:42:77:66:98:74:84:a6:4e:e9:
90:77:1f:e0:a5:85:57:62:ed:42:02:1e:2e:de:d4:68:8d:a7:
38:92:02:f3:b0:74:a4:6a:9f:44:cb:5e:d5:99:7f:70:7e:67:
c2:88:90:0d:2e:ca:29:34:5e:a8:2b:82:2b:b6:a1:32:f1:f5:
8a:9e:fd:8b:dd:1f:4c:bd:42:b2:df:bf:2f:6f:80:8e:ea:d6:
d6:8c:11:54:c6:b4:77:a4:49:09:d2:95:a6:ba:7e:82:cc:a4:
b9:2c:c0:98:8a:ab:8b:b5:dd:74:b4:59:a8:4e:1c:f1:19:c2:
79:43:d8:6a:a5:39:ac:0a:c7:5b:6f:12:f0:40:42:38:60:51:
70:6f:bf:f3:12:7e:d9:89:a5:3b:75:71:f4:eb:be:d1:9d:69:
95:5e:a0:16:66:7d:51:97:fa:66:5f:02:e8:25:d9:31:a2:ce:
5c:9d:c1:27:76:2a:1a:96:7e:74:28:ea:9c:47:90:65:ba:94:
32:c1:0b:58:cc:27:03:dd:c0:d2:83:07:07:9a:ce:a5:36:37:
1a:02:6b:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:51:04 2025 by rpki-client