Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/xHZBRWu_w4Zoq5QXeYC28IAL5HY.roa
File: xHZBRWu_w4Zoq5QXeYC28IAL5HY.roa (raw, json)
Hash identifier: DGVSNx9xPxb4XkVthpA/iRyNXlRTVKiwTBKbRFD+Qlc=
Subject key identifier: C4:76:41:45:6B:BF:C3:86:68:AB:94:17:79:80:B6:F0:80:0B:E4:76
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27BEC39C
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/xHZBRWu_w4Zoq5QXeYC28IAL5HY.roa
Signing time: Sat 01 Jan 2022 16:08:44 +0000
ROA not before: Sat 01 Jan 2022 16:08:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51340
IP address blocks: 95.47.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 666813340 (0x27bec39c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c47641456bbfc38668ab94177980b6f0800be476
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6c:1f:f5:3a:d7:ab:c8:a8:99:2a:a8:51:21:
ba:b0:55:c0:39:2b:33:14:83:21:e8:6d:a8:6d:8f:
e2:8b:b8:57:2e:83:fc:2b:65:05:94:fd:2b:35:32:
a5:a8:72:e8:05:70:93:1d:84:4b:67:b8:d2:bd:42:
ec:51:7a:93:67:5b:e6:64:40:2a:70:48:13:ce:76:
73:3d:2a:0f:d1:3f:eb:f2:67:02:34:14:03:84:ca:
fe:cb:5f:d1:01:25:fe:9b:be:2c:32:67:6b:b5:cf:
81:7a:16:62:46:db:a1:09:53:80:49:3f:44:58:42:
f4:f9:30:ce:92:66:67:16:fb:f2:fe:24:27:63:59:
eb:d1:87:50:fa:d7:7e:57:a1:e6:da:34:ab:f1:81:
bb:07:c8:b2:69:9c:3d:7c:e9:76:8e:14:b7:3f:e6:
b4:65:9b:0c:70:0d:a8:7c:6a:53:24:2d:b8:ad:fe:
73:89:ce:02:1a:34:b1:1b:87:fc:d7:1d:87:d1:d2:
ad:1e:06:5e:a6:77:0d:35:d6:98:81:dc:4d:38:71:
e3:85:44:69:3e:f6:fe:1b:e5:72:a4:2a:3a:5b:b2:
45:aa:33:78:e8:ef:6c:3c:e2:f8:27:f5:b3:35:8d:
84:0c:33:41:27:21:e2:73:47:c8:56:50:6a:e8:e4:
e9:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:76:41:45:6B:BF:C3:86:68:AB:94:17:79:80:B6:F0:80:0B:E4:76
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/xHZBRWu_w4Zoq5QXeYC28IAL5HY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.58.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:44:62:f6:29:e2:1b:dd:b8:e1:00:68:90:bb:a3:40:73:2c:
56:57:96:01:41:71:d2:50:86:e2:69:2a:eb:fc:a8:68:36:c8:
85:01:66:2d:cc:46:f6:10:65:44:67:6f:2f:85:de:46:99:c1:
45:0e:c0:d5:48:f1:aa:b2:f8:06:e7:0a:5d:e6:b6:c5:c6:48:
1b:4e:a4:b4:7b:f9:63:9b:ee:e0:38:9a:8e:24:70:ef:cf:53:
1d:3d:ba:21:b1:f7:b4:10:a9:40:f7:b6:71:13:e1:e7:4a:c6:
01:0d:a8:c0:53:40:ed:42:49:39:34:65:5e:77:fd:f5:c5:97:
1e:54:dd:02:8b:40:07:68:dd:b1:f0:7a:6a:fb:79:2b:9a:31:
5a:35:c9:6b:49:e8:30:81:14:d0:8c:e8:05:67:6c:77:34:24:
c0:27:66:ff:bc:78:32:45:bb:c0:fd:27:e8:06:1d:49:56:de:
14:04:ba:71:c6:d5:db:12:28:2b:7e:26:70:38:8d:e4:56:74:
78:f8:b3:ea:ed:bc:87:2f:8a:2f:dc:ac:78:46:23:58:bd:0f:
1e:26:dc:ca:d0:e5:8c:7e:e4:2b:1d:31:ba:4f:7e:75:bc:6e:
56:39:a7:99:b5:1b:ac:0a:b2:79:f1:06:ff:70:e6:dc:c0:7a:
b1:70:0d:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:46:20 2025 by rpki-client