Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/pC7aDOGfNSE2tIX3LLWZCz6fnYY.roa
File: pC7aDOGfNSE2tIX3LLWZCz6fnYY.roa (raw, json)
Hash identifier: xlz/WYQiqXUVH2BDHglbE32ReIp6bzFNMoHUUfmylI0=
Subject key identifier: A4:2E:DA:0C:E1:9F:35:21:36:B4:85:F7:2C:B5:99:0B:3E:9F:9D:86
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27BFDA75
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/pC7aDOGfNSE2tIX3LLWZCz6fnYY.roa
Signing time: Sat 01 Jan 2022 16:08:45 +0000
ROA not before: Sat 01 Jan 2022 16:08:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51495
IP address blocks: 95.47.57.0/24 maxlen: 24
93.171.220.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 666884725 (0x27bfda75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a42eda0ce19f352136b485f72cb5990b3e9f9d86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:96:f2:1d:b6:51:c8:33:1b:cf:14:f0:8b:e4:
d2:c5:f7:35:60:90:27:a9:1b:9c:8d:5f:04:22:43:
54:f4:df:73:1e:73:46:c8:20:95:6e:f9:11:c4:00:
6e:89:d2:c1:45:7b:7b:e8:53:47:6f:16:33:5a:00:
3e:f1:73:f2:4e:b1:14:c9:b3:a6:d4:8a:18:7a:38:
d7:17:2c:ea:d5:1b:d4:87:b8:8c:8a:82:f5:56:f6:
2b:58:e7:4f:e6:c9:aa:63:82:57:0d:f2:37:df:8f:
68:b8:d9:c5:0a:ed:9c:b8:06:65:3a:e4:da:47:0b:
31:31:a6:d0:81:d0:b6:47:ab:57:c0:a2:93:fa:13:
35:75:6f:6c:dc:12:fa:6d:7f:09:63:e9:21:b2:c7:
fe:f3:81:b9:a9:1e:ba:50:7c:5c:9d:c2:e2:6c:d5:
78:73:2a:7b:af:1c:e8:0c:fd:88:e1:21:26:4b:d7:
e5:27:56:9b:a1:63:7d:4e:78:28:4b:21:b0:d8:db:
43:04:b4:7a:cd:2b:c8:da:d4:96:7a:98:80:f3:84:
70:63:a8:14:53:3a:9d:16:33:f5:27:b1:12:75:88:
8a:7e:e9:3e:76:0c:aa:28:5f:fc:6f:04:8e:33:b6:
44:e3:f6:92:13:04:82:7f:81:36:74:aa:30:e5:dc:
ff:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:2E:DA:0C:E1:9F:35:21:36:B4:85:F7:2C:B5:99:0B:3E:9F:9D:86
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/pC7aDOGfNSE2tIX3LLWZCz6fnYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.220.0/22
95.47.57.0/24
Signature Algorithm: sha256WithRSAEncryption
76:7c:84:97:76:41:33:fe:f1:ea:45:4e:bb:6b:e0:b0:ae:13:
70:72:d4:74:41:2c:04:f3:b8:35:fc:8a:2f:de:95:03:cf:be:
50:d6:14:3d:31:b7:de:4b:6c:de:48:0f:2d:72:ee:22:bd:a0:
2f:38:a0:90:64:14:c3:db:e7:7c:18:0e:38:95:23:64:26:4d:
e7:55:1d:29:2e:40:e1:20:b8:73:63:92:8a:0f:1d:70:b7:65:
fd:c3:fc:68:42:b5:98:eb:f1:08:70:79:b8:e0:d7:3f:22:66:
5e:c0:96:f7:bc:ce:ca:78:1c:eb:1e:e2:22:3b:88:cb:60:da:
4f:49:69:f3:a5:8d:6e:3b:a2:d1:d2:ab:83:4e:5b:d9:f2:ba:
36:c5:ac:2b:c6:ac:9a:99:d8:ef:93:86:d0:7c:9a:fd:ac:58:
55:ae:c0:1b:9a:98:aa:08:af:b7:bc:65:c8:c1:dc:25:08:f8:
9a:32:06:2b:cc:7e:8b:e9:75:69:cd:69:73:5a:db:76:e9:50:
d1:f8:ec:0d:4f:fe:ab:06:a4:44:96:62:38:63:97:1b:0a:4d:
bd:de:d0:3a:32:a8:a5:01:3e:51:9d:20:a3:2a:09:55:57:c5:
d7:f0:e9:b7:15:fc:36:4b:e7:c2:a6:5c:18:ca:f8:ae:33:a0:
58:61:a0:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:31:59 2025 by rpki-client