Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/X0jFPtY61yWZFoZOpWbF-Hyf-qQ.roa
File: X0jFPtY61yWZFoZOpWbF-Hyf-qQ.roa (raw, json)
Hash identifier: 2XoYX0A8zLDob5+URwsqSsqDCm+UXdsFMFbNsUpLWeo=
Subject key identifier: 5F:48:C5:3E:D6:3A:D7:25:99:16:86:4E:A5:66:C5:F8:7C:9F:FA:A4
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 0194258F1F44DBC409E6CE7FAEC19740E7D9
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/X0jFPtY61yWZFoZOpWbF-Hyf-qQ.roa
Signing time: Thu 02 Jan 2025 05:48:43 +0000
ROA not before: Thu 02 Jan 2025 05:48:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206887
IP address blocks: 95.183.220.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:1f:44:db:c4:09:e6:ce:7f:ae:c1:97:40:e7:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Jan 2 05:48:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5f48c53ed63ad7259916864ea566c5f87c9ffaa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:73:df:07:61:d3:fe:99:03:e5:88:5f:07:a0:
90:9e:8d:d9:24:1d:0c:70:37:ee:97:3a:1b:87:17:
c5:68:9d:99:02:c4:73:86:0a:a8:46:e4:38:e7:25:
9d:3a:21:ed:62:5e:e1:ba:d7:d8:e2:41:dd:c4:30:
c4:bc:83:c6:d1:17:1c:53:29:93:39:74:3a:dd:07:
88:7b:85:44:42:03:b3:11:64:75:e4:29:d7:57:fd:
77:2d:b9:b8:43:84:ce:73:6b:ca:6f:91:da:bd:d0:
12:cd:9a:36:cf:35:d2:b6:c9:9e:ca:8d:d6:38:55:
a5:ca:bd:61:cb:ef:4c:09:c6:8e:3f:e8:9e:8f:b3:
12:37:07:2c:0a:e8:21:12:8e:60:04:f9:ce:78:60:
2a:df:5a:19:25:1d:34:5f:ee:2d:2d:04:13:fe:cc:
35:81:46:48:07:33:9e:eb:24:40:9b:a8:5d:c3:d2:
a9:7f:c8:04:34:29:a1:42:34:34:8d:11:ad:56:74:
0e:04:93:38:f2:a5:a5:32:af:fa:e0:6a:d4:eb:cd:
b4:b0:04:3b:c8:06:b4:3a:f1:bf:2c:d0:26:36:88:
87:93:c0:41:65:58:c6:65:59:d9:2e:8f:c1:ec:76:
08:8b:e7:ec:b1:ba:0f:5b:2f:c9:de:89:59:63:92:
74:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:48:C5:3E:D6:3A:D7:25:99:16:86:4E:A5:66:C5:F8:7C:9F:FA:A4
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/X0jFPtY61yWZFoZOpWbF-Hyf-qQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.183.220.0/22
Signature Algorithm: sha256WithRSAEncryption
22:5d:78:95:75:f9:e5:ac:32:1e:50:65:24:15:e6:ef:07:e7:
11:ed:af:1b:46:06:8e:84:b4:ac:1a:33:56:5b:3b:ce:39:70:
dc:47:6a:d4:56:c3:31:61:c5:0f:3e:3b:a4:67:f9:eb:79:4c:
3d:ad:06:5e:59:e9:ad:87:44:7b:30:94:bf:6e:e7:ee:5c:53:
4f:63:69:fb:71:e4:e5:b7:a8:b0:d2:ec:3b:da:97:c5:65:dc:
79:0b:3b:9a:0b:c4:55:8c:31:87:99:3c:2b:a5:7a:5a:9d:bd:
df:78:e3:10:b8:00:12:e3:de:c4:3f:e3:cb:7d:78:cf:f5:10:
d9:c8:66:b0:83:ec:2d:07:a8:96:46:e7:ea:48:90:6b:82:85:
78:7c:ce:19:47:b6:a7:8f:95:6a:99:8e:82:79:98:ae:c5:9a:
fd:91:5b:c8:ca:2f:0b:57:c9:c9:d5:7e:e0:c4:6c:bb:e6:29:
4b:d9:9a:03:8d:56:30:c9:dc:b1:d3:50:bb:fa:57:5b:d3:48:
ac:4f:43:18:aa:91:8d:c3:6c:f5:ba:13:bc:91:4f:71:c1:6a:
b2:fc:be:7b:02:76:15:45:8e:bc:48:3f:04:9e:9d:a5:3f:74:
54:98:07:70:07:6a:c6:71:6f:ed:4a:b2:fb:41:f6:09:cf:62:
47:90:c1:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 21:01:18 2025 by rpki-client