Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/9a0eb2-e994-4719-a166-5d6dd0ba52cf/1/Eem0N3GXMChoR9TCOhSTBkWIdjc.roa
File: Eem0N3GXMChoR9TCOhSTBkWIdjc.roa (raw, json)
Hash identifier: igndwr3EyynLXRXaxAnOCIr8pyhy15Y9vo4ph2wbRZ8=
Subject key identifier: 11:E9:B4:37:71:97:30:28:68:47:D4:C2:3A:14:93:06:45:88:76:37
Certificate issuer: /CN=97cca0952db8aa9fe5e5703c6f189a06a57f4bb1
Certificate serial: 01952473C9FEB660DFBDE36F5255BBF8D267
Authority key identifier: 97:CC:A0:95:2D:B8:AA:9F:E5:E5:70:3C:6F:18:9A:06:A5:7F:4B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l8yglS24qp_l5XA8bxiaBqV_S7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/9a0eb2-e994-4719-a166-5d6dd0ba52cf/1/Eem0N3GXMChoR9TCOhSTBkWIdjc.roa
Signing time: Thu 20 Feb 2025 17:42:02 +0000
ROA not before: Thu 20 Feb 2025 17:42:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60606
IP address blocks: 95.173.203.0/24 maxlen: 24
95.173.212.0/24 maxlen: 24
185.2.42.0/24 maxlen: 24
2a06:5d80::/32 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:24:73:c9:fe:b6:60:df:bd:e3:6f:52:55:bb:f8:d2:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97cca0952db8aa9fe5e5703c6f189a06a57f4bb1
Validity
Not Before: Feb 20 17:42:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=11e9b437719730286847d4c23a14930645887637
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9e:33:42:b3:92:21:ef:18:95:31:1c:68:8b:
7e:38:e3:13:33:f5:ed:52:ca:fe:db:c7:96:2d:d3:
89:90:03:18:93:33:a3:c5:0e:7f:c5:5a:38:e4:0c:
d4:57:c7:a9:5f:dd:e9:c3:06:59:92:ac:cc:0e:95:
9c:9d:aa:de:3d:23:5d:ed:4f:4a:8d:46:31:ef:73:
09:1b:77:ed:8f:55:06:48:f1:53:b0:94:22:98:79:
78:c8:4e:a3:23:2b:8e:3f:3d:36:0e:b8:b5:39:7d:
47:70:ae:da:a3:29:0b:bb:5e:45:27:9e:ea:db:1a:
4b:b2:29:8d:48:be:65:8e:64:c8:93:66:2d:3f:b8:
7d:9a:a0:f3:d5:9a:e9:c3:3e:78:af:49:50:15:9d:
93:19:49:8d:76:22:79:e4:db:2f:05:4e:6e:e5:2e:
a9:f8:0a:65:ef:da:74:1c:46:c6:e3:ab:1e:57:99:
bc:b7:45:a7:ce:b0:02:1c:2c:cf:70:99:1d:af:13:
e4:19:cd:b2:28:78:77:04:e3:50:48:94:3e:7c:c1:
8d:2b:52:88:7a:45:78:dd:96:5c:f0:c1:3f:b5:85:
e6:97:4c:37:bf:05:97:2a:4d:51:39:28:32:cd:39:
79:c9:ea:cc:8a:40:12:3d:65:35:65:d4:8d:cf:91:
9e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:E9:B4:37:71:97:30:28:68:47:D4:C2:3A:14:93:06:45:88:76:37
X509v3 Authority Key Identifier:
keyid:97:CC:A0:95:2D:B8:AA:9F:E5:E5:70:3C:6F:18:9A:06:A5:7F:4B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l8yglS24qp_l5XA8bxiaBqV_S7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/9a0eb2-e994-4719-a166-5d6dd0ba52cf/1/Eem0N3GXMChoR9TCOhSTBkWIdjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/9a0eb2-e994-4719-a166-5d6dd0ba52cf/1/l8yglS24qp_l5XA8bxiaBqV_S7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.173.203.0/24
95.173.212.0/24
185.2.42.0/24
IPv6:
2a06:5d80::/32
Signature Algorithm: sha256WithRSAEncryption
47:55:bd:7e:4c:65:9f:73:48:a5:08:bd:89:d8:fb:f4:c7:35:
07:0b:64:71:a9:d3:76:74:a0:f1:96:5b:79:4f:99:84:65:af:
49:85:76:a9:cc:e1:64:af:95:ef:7e:7c:9d:6f:32:03:2e:1e:
a6:71:17:bf:d8:1e:2a:bf:4a:55:1f:a4:ce:5c:43:40:0f:9e:
7c:37:7c:d3:d9:79:75:52:73:0d:e5:6f:ce:b4:bc:6f:87:a0:
34:b6:02:1c:6e:12:7a:75:87:49:16:e2:ce:ac:ee:d5:d3:2a:
8e:82:cb:c1:ac:d1:b2:29:58:60:10:d5:fe:74:3b:2a:71:ea:
48:3b:07:f8:bc:7a:ed:8e:ff:ba:ce:67:26:c7:53:f9:3f:2b:
d8:a0:7e:8a:06:32:40:c0:ed:4b:73:fe:58:91:27:6d:37:3a:
64:df:91:4b:55:23:aa:ec:45:d6:ef:bc:44:14:37:84:cb:fb:
5d:6a:80:df:a9:bf:d4:22:61:0c:f5:3b:e5:0e:c5:63:c9:93:
87:0e:5f:bf:12:bc:d8:58:cf:d9:14:f4:87:a9:39:58:43:91:
b4:a6:e8:42:bf:09:51:15:59:83:52:ec:bd:b6:47:e8:19:84:
d6:88:66:61:07:82:db:81:9d:ef:59:f5:0c:c7:c3:ea:45:ff:
f5:5f:50:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:07 2025 by rpki-client on console.sobornost.net