Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/EzohD33jpkdDXUXqXjdp7GVOu30.roa
File: EzohD33jpkdDXUXqXjdp7GVOu30.roa (raw, json)
Hash identifier: GHafrMyEgO5cqLZ3JPMzFxHunCJYA8ZRPEkYqG8bC0E=
Subject key identifier: 13:3A:21:0F:7D:E3:A6:47:43:5D:45:EA:5E:37:69:EC:65:4E:BB:7D
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 01946E215802E801EBA6F50E4331B2DD8653
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/EzohD33jpkdDXUXqXjdp7GVOu30.roa
Signing time: Thu 16 Jan 2025 08:01:06 +0000
ROA not before: Thu 16 Jan 2025 08:01:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214128
IP address blocks: 188.95.67.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:6e:21:58:02:e8:01:eb:a6:f5:0e:43:31:b2:dd:86:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jan 16 08:01:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=133a210f7de3a647435d45ea5e3769ec654ebb7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e7:76:65:e3:0a:1d:28:17:3c:0d:b0:15:50:
78:a1:0c:0f:ab:0c:d2:09:89:dc:41:2b:83:72:4a:
06:c9:7d:36:bf:a2:61:e0:f5:2e:c9:9c:54:84:08:
8d:d7:4a:45:80:81:e9:6d:9a:a9:5c:f3:d4:f0:97:
2e:62:ba:94:ca:65:3a:16:b6:17:67:47:80:a1:f7:
40:32:ef:e4:7a:a3:a8:bb:cf:74:05:80:3a:3d:ca:
ce:5e:9b:03:59:dc:a3:d9:55:a7:9d:0e:72:9f:b2:
76:8e:1e:a9:27:eb:8f:85:08:ac:cc:a2:16:24:fe:
6c:d0:eb:97:76:9e:22:f9:03:92:80:ed:d7:7f:5f:
68:a9:80:af:0a:db:52:4f:dc:b9:d0:4e:9b:f8:66:
69:13:53:e7:03:3d:04:27:d4:5f:a7:a1:fc:cc:b1:
bb:56:0b:6f:a0:89:46:7b:a0:5d:74:b2:1d:46:bb:
47:92:01:ae:2f:cb:27:f6:b5:6c:e2:18:3b:86:23:
62:e4:96:77:71:44:85:60:d9:1d:c0:6e:e1:6f:8f:
8a:9f:c0:4f:03:df:e6:aa:7d:2c:6c:56:f4:0c:b5:
e4:be:01:56:81:34:27:42:7f:fb:61:f1:f3:05:4f:
a4:7e:c9:1e:26:6a:62:cf:a1:32:07:41:a3:36:a6:
09:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:3A:21:0F:7D:E3:A6:47:43:5D:45:EA:5E:37:69:EC:65:4E:BB:7D
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/EzohD33jpkdDXUXqXjdp7GVOu30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.95.67.0/24
Signature Algorithm: sha256WithRSAEncryption
63:c7:7c:a9:f3:20:b4:fd:d6:af:86:4d:18:72:39:a1:9b:33:
14:a2:e7:35:e1:71:8b:40:28:5f:03:64:13:b8:7e:4d:dd:7e:
56:54:03:6e:8e:dc:ca:06:ac:ad:cb:c7:f1:97:63:c9:69:02:
42:f7:4f:a6:7f:9e:c4:ce:8b:15:d6:30:50:2b:92:93:ab:54:
30:9d:9f:6b:55:6a:d0:9f:9c:dd:5a:24:8c:3b:89:81:6b:16:
89:1c:9a:f8:ac:a5:13:2f:45:d8:4a:bc:a2:e9:b8:8b:ef:91:
f4:1a:14:29:86:2e:d7:be:f2:08:f5:d1:26:05:df:32:a0:0b:
b4:52:d4:a0:e7:23:8e:af:02:b9:c8:80:f4:97:b5:0a:fa:fc:
48:a9:98:94:8d:c8:a4:bb:9b:8d:fb:a1:36:e7:c4:a4:34:bd:
29:2a:05:01:68:10:9f:16:86:22:61:c0:ef:f5:b2:2e:38:a0:
ce:c0:a3:fa:71:77:89:f5:48:91:1d:fc:3f:b3:e0:30:f3:ec:
72:14:c8:3d:fb:fb:ef:0f:4a:22:7e:92:d9:de:37:4f:8e:db:
23:56:8a:7a:34:e6:fc:b1:1e:18:77:ab:a4:2c:61:8e:7b:40:
d9:01:77:7a:ca:e1:81:c2:c7:8a:3a:9f:64:ff:c2:6f:e7:c3:
fb:de:20:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:54:21 2025 by rpki-client