Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/lmB1Bb-W2R0xjx83WKXaqBIhaCM.roa
File: lmB1Bb-W2R0xjx83WKXaqBIhaCM.roa (raw, json)
Hash identifier: NwxwcwiypgjRVP7aonHHkp5/Y1CFilmx2IzlIoeumZY=
Subject key identifier: 96:60:75:05:BF:96:D9:1D:31:8F:1F:37:58:A5:DA:A8:12:21:68:23
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0194258F9975CF82A377BB647384FEBBE863
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/lmB1Bb-W2R0xjx83WKXaqBIhaCM.roa
Signing time: Thu 02 Jan 2025 05:49:15 +0000
ROA not before: Thu 02 Jan 2025 05:49:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42146
IP address blocks: 95.46.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:99:75:cf:82:a3:77:bb:64:73:84:fe:bb:e8:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 05:49:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=96607505bf96d91d318f1f3758a5daa812216823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6a:a5:02:32:2e:33:5f:4a:f6:2d:d2:17:1c:
d6:b0:18:15:45:b5:0b:fc:8e:a9:cf:cd:5d:71:25:
f3:46:ed:64:6f:5f:95:d5:c9:48:76:53:50:f6:3e:
d5:64:46:08:22:af:61:b0:05:2b:b5:81:5b:dc:fb:
eb:a3:96:fe:d3:96:23:7d:c0:97:b5:16:9d:92:c3:
37:b7:dd:70:c3:6c:74:6b:3c:d0:9e:c5:65:55:01:
1d:b2:8a:87:b3:6e:24:85:25:36:17:61:11:59:77:
d2:8f:16:1d:3d:29:ae:83:e5:a9:ee:5f:24:d0:26:
3d:75:62:9a:a3:b2:b8:1c:9a:74:0c:54:b4:d3:d1:
de:41:b8:0a:8c:28:97:62:6e:36:63:eb:8d:12:96:
e1:22:41:c3:36:11:bb:2b:f2:d8:48:2e:32:c5:db:
c4:ca:5d:30:1d:8a:4d:75:79:e3:a4:79:dd:63:52:
02:81:67:ba:ef:f1:bb:d7:54:dd:3c:1b:97:e4:95:
dd:c4:7d:f5:ff:7a:9b:aa:e3:92:05:ed:62:62:5d:
d8:95:58:10:4b:93:08:e1:c2:51:a0:cb:c2:9a:b1:
be:3b:f2:bf:64:a0:21:a1:10:c4:e1:bf:c2:91:51:
8d:4b:fd:4f:27:79:7d:66:cf:aa:17:fd:27:6d:0c:
3d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:60:75:05:BF:96:D9:1D:31:8F:1F:37:58:A5:DA:A8:12:21:68:23
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/lmB1Bb-W2R0xjx83WKXaqBIhaCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.46.76.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:6c:36:8f:f2:37:e3:3f:9c:bd:d7:3f:94:65:c7:57:02:1a:
29:93:f6:91:bc:34:31:1e:56:e5:c5:db:be:38:b0:c0:8e:81:
28:dd:29:c7:ba:7d:be:a9:b4:8f:80:bb:1f:4a:5e:2b:d8:ce:
f4:48:2f:ed:72:13:ff:c7:32:ad:74:65:cf:9d:b0:00:75:4f:
3a:b9:1f:02:e1:fc:60:03:4f:11:d0:cf:a3:d5:64:b1:39:84:
42:d1:4b:1d:bd:b8:3f:7d:5a:4a:4b:42:b2:3b:61:2e:60:e1:
db:2b:ba:58:7a:5a:2d:0b:83:8d:51:be:3e:2b:4d:7b:7e:94:
86:07:75:dc:dd:db:99:f4:03:64:ec:7d:86:71:53:1c:8d:11:
78:12:28:bf:2f:e8:fe:fd:89:03:cb:01:b0:41:d5:39:87:9b:
b3:23:f0:d4:02:9c:8d:eb:35:68:a3:97:20:fd:b3:97:59:bc:
0c:53:ce:6a:63:8d:a2:24:11:d9:62:4d:8d:f5:b5:4a:8e:33:
10:8e:ed:84:3c:d8:5d:03:0b:0f:6a:74:c7:ae:2f:fc:1a:6c:
d2:cd:0b:5b:1e:9b:d4:31:2d:5f:fa:79:e0:f5:83:51:05:de:
04:81:6e:13:db:ea:41:e7:be:21:4a:2c:17:44:df:6f:1c:a8:
24:b6:70:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:03:22 2025 by rpki-client