Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/i7LPx3k5NSVEBiacqO7vPHaWiwU.roa
File: i7LPx3k5NSVEBiacqO7vPHaWiwU.roa (raw, json)
Hash identifier: gYTLRIvfaUJXoKPS7pQ+Cpl5E8jxQVsdISY+9vzV8lg=
Subject key identifier: 8B:B2:CF:C7:79:39:35:25:44:06:26:9C:A8:EE:EF:3C:76:96:8B:05
Certificate issuer: /CN=592e7c1f2394c3e3aaa8ccb647fd83671d6098b7
Certificate serial: 01948E520147C7285DDCFE70BE857D6DF2EA
Authority key identifier: 59:2E:7C:1F:23:94:C3:E3:AA:A8:CC:B6:47:FD:83:67:1D:60:98:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WS58HyOUw-OqqMy2R_2DZx1gmLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/i7LPx3k5NSVEBiacqO7vPHaWiwU.roa
Signing time: Wed 22 Jan 2025 14:02:06 +0000
ROA not before: Wed 22 Jan 2025 14:02:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213537
IP address blocks: 95.130.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:8e:52:01:47:c7:28:5d:dc:fe:70:be:85:7d:6d:f2:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=592e7c1f2394c3e3aaa8ccb647fd83671d6098b7
Validity
Not Before: Jan 22 14:02:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8bb2cfc7793935254406269ca8eeef3c76968b05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:bf:27:50:b3:d0:52:b0:41:ea:2b:d8:cf:2a:
da:7c:3c:9a:46:3a:c4:f0:16:36:58:b1:cb:da:e3:
84:f1:d3:47:51:61:83:d8:98:98:21:7c:5c:10:01:
cb:cb:86:b7:6d:d8:20:54:ab:c0:7e:61:a5:65:e6:
08:52:3e:a9:87:61:af:53:a2:44:b4:31:d8:e9:15:
09:29:f1:9c:d0:a2:0c:c3:2d:f9:6b:e0:af:dc:36:
71:6b:e0:3e:f0:61:08:9d:2e:92:aa:ef:65:0a:2b:
96:8b:7a:eb:67:3e:4b:2d:09:de:ba:cf:87:fa:30:
8b:b6:84:88:a0:05:9a:e7:49:b8:34:8b:62:d8:28:
07:7e:0a:76:fd:6d:0c:ca:97:76:53:6f:35:a1:4e:
76:c4:0c:0d:5f:5c:54:59:5b:e2:55:a0:2e:7a:37:
19:6e:3f:5a:7b:41:3c:ae:7a:98:54:8a:21:63:51:
d2:7e:34:ac:54:85:9b:41:b1:b9:a5:b1:f3:c8:00:
f2:71:f7:39:e5:8b:09:5d:3b:c7:1f:7c:75:3b:52:
1d:1f:c9:ca:08:bf:46:b5:34:c4:59:8c:e3:9c:db:
59:84:4a:9b:27:0f:52:81:bc:68:95:71:12:f5:d6:
27:72:f5:05:63:59:21:00:ab:6d:f2:3e:a0:0e:32:
fc:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:B2:CF:C7:79:39:35:25:44:06:26:9C:A8:EE:EF:3C:76:96:8B:05
X509v3 Authority Key Identifier:
keyid:59:2E:7C:1F:23:94:C3:E3:AA:A8:CC:B6:47:FD:83:67:1D:60:98:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WS58HyOUw-OqqMy2R_2DZx1gmLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/i7LPx3k5NSVEBiacqO7vPHaWiwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/WS58HyOUw-OqqMy2R_2DZx1gmLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.130.172.0/24
Signature Algorithm: sha256WithRSAEncryption
32:8d:28:fe:3f:45:c5:4a:ab:35:19:cd:d2:19:53:f0:43:01:
8c:cf:10:8a:2e:4b:44:83:bb:63:e5:ba:54:62:94:f3:4a:a7:
ef:68:b1:9e:f4:bd:d5:4c:d5:1e:7f:22:34:85:41:31:5e:3f:
41:88:67:98:ad:cb:2a:77:2f:85:5e:47:7f:12:13:32:84:6a:
8b:22:88:e8:f3:63:d9:1e:5e:75:da:e4:a4:a1:cf:34:08:dd:
78:4d:b4:1f:d1:1f:48:a4:65:a2:0e:61:8c:a0:99:50:a5:5e:
b6:8e:1a:39:20:47:6c:da:b0:2e:50:f0:b3:e4:1b:3f:72:76:
06:0a:d7:86:e9:ac:0e:52:51:29:36:ce:94:6d:7f:da:fe:7d:
2d:39:23:37:e2:f6:d1:28:19:9b:ac:81:57:93:60:2c:04:e4:
b5:8a:02:6f:21:c6:05:0b:3d:12:c0:bd:d3:50:89:68:de:ac:
4f:16:2d:e6:da:71:df:0d:2f:93:01:c3:c1:c1:f9:9c:43:41:
1c:64:46:e9:40:82:3b:80:2f:b3:b1:4e:6b:84:b0:d4:65:e4:
1b:b0:46:77:47:b0:3a:6f:9d:01:12:3c:85:c4:39:b0:33:4f:
ff:e3:b0:a0:68:41:60:5d:a4:29:99:d7:08:7e:5a:fa:bc:fc:
1b:f1:f5:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:07 2025 by rpki-client on console.sobornost.net