Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/tCBTeEpVZ9rGnN0OWe0wOiDMqec.roa
File: tCBTeEpVZ9rGnN0OWe0wOiDMqec.roa (raw, json)
Hash identifier: +xHIXcppCVOpv/Ff3OFAwPnh7JSeP+CGAOVt+PcgeQg=
Subject key identifier: B4:20:53:78:4A:55:67:DA:C6:9C:DD:0E:59:ED:30:3A:20:CC:A9:E7
Certificate issuer: /CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Certificate serial: 019425FDAD621942B80BA0C1DAA378F331E7
Authority key identifier: 62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/tCBTeEpVZ9rGnN0OWe0wOiDMqec.roa
Signing time: Thu 02 Jan 2025 07:49:29 +0000
ROA not before: Thu 02 Jan 2025 07:49:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212566
IP address blocks: 95.161.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:ad:62:19:42:b8:0b:a0:c1:da:a3:78:f3:31:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Validity
Not Before: Jan 2 07:49:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b42053784a5567dac69cdd0e59ed303a20cca9e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:76:9d:13:86:db:2c:d6:8c:a0:48:6a:2e:2c:
3a:b1:b3:e2:77:07:68:6b:b3:f1:a8:41:9c:b6:c7:
06:e8:30:19:de:22:42:b5:8d:8f:50:ee:53:d9:c3:
02:01:3d:a3:50:7c:23:e4:27:f0:cb:6d:ac:df:4c:
96:c2:6e:91:e7:32:ba:97:39:b1:16:dc:01:bb:34:
ac:49:98:c6:79:c1:c6:b1:72:ec:74:37:9d:d9:72:
d9:fa:a1:3b:78:47:ac:43:3e:14:61:b1:23:6b:a5:
d5:95:c8:c9:44:fe:d5:e6:7a:f5:f7:85:91:f7:c8:
5e:bd:2c:89:a7:80:4b:4c:ac:f9:f0:06:f3:35:6b:
54:79:7c:ed:cd:02:61:aa:c4:86:18:64:57:a0:8c:
2b:ef:a6:b0:58:b2:57:20:b6:93:4c:b8:8c:5a:16:
19:82:e8:84:29:3b:7e:81:2d:9f:29:fd:f7:6e:95:
17:6a:5e:7a:29:f6:82:c1:67:79:38:df:7b:4f:72:
11:23:27:da:c9:9e:13:25:f4:a5:20:51:d5:73:75:
4f:a3:41:49:04:da:d0:82:e5:8d:65:db:56:ea:f9:
b6:9e:a3:c2:05:a4:94:8e:76:c1:d3:2f:6e:5e:bc:
5c:f4:5e:a1:88:fe:8f:a4:cc:35:6e:50:6f:9d:4e:
60:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:20:53:78:4A:55:67:DA:C6:9C:DD:0E:59:ED:30:3A:20:CC:A9:E7
X509v3 Authority Key Identifier:
keyid:62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/tCBTeEpVZ9rGnN0OWe0wOiDMqec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.161.83.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:ea:5f:b4:45:d8:43:3e:62:f9:4e:12:3e:57:a6:0b:31:7a:
57:82:25:ca:73:a8:4d:2f:f8:8b:29:ba:ee:42:17:2b:62:b3:
6b:35:a1:60:19:f3:0c:07:1c:f8:00:4f:56:ae:73:c6:86:00:
5e:03:25:94:ac:32:ad:f4:14:bb:1a:47:2c:96:b4:b3:06:f2:
8b:ba:66:61:25:88:5d:ba:e5:57:fc:c5:e0:9d:d7:4d:72:58:
f4:6e:2c:62:ad:7f:fb:e8:3c:20:f6:47:ae:a6:a4:ad:10:6d:
97:e0:8d:ce:ef:16:6f:be:f7:df:23:7c:86:a9:2e:64:0b:71:
33:f0:ad:90:4a:ca:c1:9f:b9:3c:85:1d:61:5e:cb:22:6a:24:
05:bd:3b:c6:1c:02:72:d0:0c:7a:33:26:0c:3c:15:36:84:7e:
c0:cf:06:fb:41:0f:60:e9:c3:b5:04:31:ef:36:18:a1:c0:7a:
6f:83:f7:bb:a9:79:b2:53:7c:fe:fd:a7:06:b7:7e:03:04:91:
54:1a:03:0b:95:c6:7c:13:34:8b:d9:40:50:26:20:da:c8:b5:
dc:88:d2:35:68:44:35:65:7c:3a:bf:d6:26:27:37:f6:4c:e8:
64:4b:29:e1:2a:2d:bd:7a:2b:50:7f:b4:da:40:95:7a:e1:b3:
1b:dc:81:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 04:03:03 2025 by rpki-client