Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/IQEwKdJED5eQ9FOiSLTxA5AEwps.roa
File: IQEwKdJED5eQ9FOiSLTxA5AEwps.roa (raw, json)
Hash identifier: mc4wE+FMcn2RQfb/mFGbuyIBUTA+zZL0jPqDj+i/vOU=
Subject key identifier: 21:01:30:29:D2:44:0F:97:90:F4:53:A2:48:B4:F1:03:90:04:C2:9B
Certificate issuer: /CN=764f8daadf1d775d59d1502b573901b875513b56
Certificate serial: 07808092
Authority key identifier: 76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/IQEwKdJED5eQ9FOiSLTxA5AEwps.roa
Signing time: Sat 01 Jan 2022 00:59:05 +0000
ROA not before: Sat 01 Jan 2022 00:59:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200923
IP address blocks: 95.140.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125862034 (0x7808092)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764f8daadf1d775d59d1502b573901b875513b56
Validity
Not Before: Jan 1 00:59:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21013029d2440f9790f453a248b4f1039004c29b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:de:72:8a:26:bc:77:18:03:34:7e:a5:97:be:
c3:0f:bd:26:bc:1f:dd:a1:ed:a5:e2:6d:d0:bb:32:
9a:b5:e3:33:87:47:a9:cb:40:b6:81:fe:b5:d3:98:
27:97:59:4e:71:8a:b0:45:bd:37:d3:4f:96:05:f1:
ee:15:51:10:88:e0:64:78:b8:59:6d:71:36:2e:f1:
b2:15:51:25:c4:6f:7a:87:08:17:e9:4f:c9:aa:95:
e3:3b:8b:48:f5:56:dd:29:f6:90:6f:68:77:06:9e:
37:c2:3c:6f:bc:71:ec:83:90:34:8c:4b:94:3e:70:
dd:f6:49:36:2d:33:db:e9:59:0c:c2:b1:b2:a3:97:
eb:10:a3:67:41:c5:5b:09:3c:8e:bb:a4:75:64:27:
c5:9c:32:a3:73:30:a5:19:ed:ee:d9:57:7e:55:b6:
e8:61:7f:ad:7a:c5:15:65:d1:e7:00:82:09:80:dc:
35:d0:63:c4:33:6e:22:70:5f:0a:65:db:d0:8b:3e:
60:91:92:0b:32:92:2d:b7:08:65:a2:fb:ec:dd:73:
c3:78:36:cf:3f:92:0d:25:94:ff:dd:a4:25:5f:a5:
b6:83:5f:b0:8d:81:bc:06:fe:cb:4b:36:b7:6c:1b:
4f:92:a9:1a:2b:b2:6a:e4:9d:46:25:b0:e1:c7:2e:
07:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:01:30:29:D2:44:0F:97:90:F4:53:A2:48:B4:F1:03:90:04:C2:9B
X509v3 Authority Key Identifier:
keyid:76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/IQEwKdJED5eQ9FOiSLTxA5AEwps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.140.123.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:bc:f1:5a:aa:08:61:b5:48:a1:50:2d:bc:49:fc:db:95:31:
de:d2:c8:da:e3:e2:9e:49:84:6b:74:b2:01:3c:9d:33:ba:1b:
e4:9e:e7:70:16:34:d4:5d:02:45:e2:e4:0e:fa:65:c2:94:5e:
47:b5:62:fb:6b:de:bc:f6:d3:c6:55:d3:05:c2:a6:45:9c:ed:
0b:0b:ef:ca:24:bc:75:ee:62:f1:cb:a2:6d:19:60:dc:1a:4a:
67:02:f9:11:ea:18:0f:75:3b:d1:b9:4e:1d:32:79:ca:df:1a:
4d:60:a9:45:88:73:4f:f7:75:ef:b3:d5:36:7d:8a:a7:21:04:
f3:10:25:5d:96:d6:37:46:65:de:53:d5:88:24:90:11:ba:ec:
28:1d:ee:eb:32:9a:5d:c9:26:26:67:3d:fc:59:04:0f:46:79:
4b:c5:88:46:05:8c:97:b5:b6:3d:0f:a1:5e:d5:55:ba:bb:3d:
5b:06:1a:42:52:8c:9c:72:79:09:06:c4:f7:5a:20:fd:1a:de:
d7:46:90:75:0e:49:10:4d:9b:1e:58:6c:c7:a2:0e:06:c1:62:
47:29:35:28:df:a0:fe:87:c7:0e:e1:57:de:9a:57:69:fe:c0:
49:ea:7d:cc:e2:6f:3b:85:04:76:6d:cd:1c:9d:bc:a3:39:a1:
5f:77:89:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:56:44 2025 by rpki-client