Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/sYgFeo5U5JJJuKFzm0AHl1zkcUs.roa
File: sYgFeo5U5JJJuKFzm0AHl1zkcUs.roa (raw, json)
Hash identifier: aaMJmiH40uBLJ87a6mzj+yS2+1fxFu17kfOxdkNdB4A=
Subject key identifier: B1:88:05:7A:8E:54:E4:92:49:B8:A1:73:9B:40:07:97:5C:E4:71:4B
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0194258FBD6304AFF6E510AC56BF516A8281
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/sYgFeo5U5JJJuKFzm0AHl1zkcUs.roa
Signing time: Thu 02 Jan 2025 05:49:24 +0000
ROA not before: Thu 02 Jan 2025 05:49:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51803
IP address blocks: 95.46.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:bd:63:04:af:f6:e5:10:ac:56:bf:51:6a:82:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 05:49:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b188057a8e54e49249b8a1739b4007975ce4714b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:63:47:28:7c:64:5f:12:1e:9f:a5:d2:01:9e:
aa:68:e1:b6:69:cd:36:77:36:75:72:13:ce:ce:f4:
d6:6b:fc:78:33:ce:a8:2a:0e:f2:24:76:36:90:a7:
2f:cd:a2:fc:41:72:8c:7d:76:5b:a6:5c:03:07:4a:
6b:8f:06:8b:dc:28:52:5e:a1:09:12:53:66:eb:ef:
c9:6b:81:a9:5c:9a:49:95:bc:2a:e3:73:85:08:ad:
ef:a7:85:93:08:62:93:8b:2e:04:fd:14:d7:61:0d:
be:84:a7:36:db:78:a0:de:96:8d:01:69:16:df:8f:
52:a2:54:ad:14:a5:50:75:c9:72:0b:df:5e:f4:39:
ff:09:ef:6e:04:23:74:84:d2:76:0b:e5:64:dd:78:
8c:c5:8f:17:72:e9:a6:53:69:6d:c2:a9:a5:d4:d0:
af:7e:6c:3e:0c:10:60:72:7b:aa:1d:7e:69:12:94:
9c:34:93:e3:cb:34:d8:e7:e0:f7:69:16:50:92:e4:
94:1b:e2:ba:30:75:92:b3:ba:52:63:4b:92:8b:69:
9a:0f:89:e8:6d:34:ea:b7:3d:97:8e:32:9b:64:59:
3e:a9:96:c2:b2:b8:d6:03:6a:9c:63:76:d4:9f:34:
7c:e2:f5:b5:94:28:8a:cc:af:2b:2f:2e:26:a6:60:
42:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:88:05:7A:8E:54:E4:92:49:B8:A1:73:9B:40:07:97:5C:E4:71:4B
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/sYgFeo5U5JJJuKFzm0AHl1zkcUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.46.32.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:13:31:b5:d2:de:1d:9b:fb:79:ce:3f:4a:55:54:1a:49:4e:
6a:bc:fb:28:e6:6c:69:3a:87:c1:a6:6a:2a:45:b1:8e:33:01:
93:3b:00:ca:2b:47:05:1b:1b:8f:9f:71:f0:88:e3:90:49:0d:
60:eb:7e:cb:b2:b6:bf:83:d7:1c:89:3f:39:7f:57:79:29:77:
79:bf:39:19:0c:14:f3:d3:a6:17:ee:cb:f5:4a:36:9e:82:62:
70:76:34:77:41:68:cb:e7:34:cc:ee:93:8a:83:df:1d:44:9c:
98:da:20:d7:60:89:cc:31:f1:c1:8e:f1:f7:ba:e1:ef:61:c7:
2e:98:21:56:ab:eb:11:1a:80:56:1b:e0:9e:1d:8a:33:c3:81:
20:80:a0:55:3c:da:23:e0:4e:e2:26:3e:44:19:25:40:7d:bf:
91:68:a6:5b:90:28:d8:db:41:a9:ec:90:b9:2a:7d:30:e1:63:
97:91:f3:03:0a:41:97:de:03:1f:76:6e:5e:c1:45:f3:08:f6:
e5:e9:62:1c:6d:73:b5:b6:c7:6f:6e:dc:28:8b:52:6a:08:16:
7e:2f:1c:45:3b:bd:36:84:cb:40:c1:2c:8f:bc:92:53:ef:0b:
85:42:bd:26:60:e1:e5:e2:fc:d3:39:59:c7:40:12:c9:ad:6c:
c9:fb:4d:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:03:34 2025 by rpki-client