Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/Vuwy4UpCh3r45QRPGtnFisDhkBg.roa
File: Vuwy4UpCh3r45QRPGtnFisDhkBg.roa (raw, json)
Hash identifier: nn4gkMTZTxc05c4TzvqQVbbL5rTK/jkU1c33DwnOyy8=
Subject key identifier: 56:EC:32:E1:4A:42:87:7A:F8:E5:04:4F:1A:D9:C5:8A:C0:E1:90:18
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 01959A151D891C793E02B4735BC46C26DD90
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/Vuwy4UpCh3r45QRPGtnFisDhkBg.roa
Signing time: Sat 15 Mar 2025 13:53:49 +0000
ROA not before: Sat 15 Mar 2025 13:53:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212027
IP address blocks: 188.191.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:9a:15:1d:89:1c:79:3e:02:b4:73:5b:c4:6c:26:dd:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Mar 15 13:53:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=56ec32e14a42877af8e5044f1ad9c58ac0e19018
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:06:0a:a2:ec:1e:a4:22:59:17:7f:82:72:2c:
cb:0f:41:9c:a2:12:84:34:92:f7:9e:96:06:78:d6:
5c:fb:3b:b4:1d:f7:de:51:da:7f:b1:4d:08:2d:d5:
63:0c:50:5f:c5:ff:fe:ac:2c:47:ac:fc:21:77:28:
db:fe:0b:f3:03:14:e6:8d:64:cb:f9:59:d7:36:2c:
79:e4:55:b9:9b:4b:7e:0d:b8:80:39:6b:30:61:02:
c8:ab:e6:23:03:c6:3c:0c:98:34:70:49:6a:f9:db:
fc:1e:54:da:44:34:3d:78:84:4e:e9:f9:e6:82:4d:
76:5f:4f:b0:8d:59:4c:ab:7b:1e:af:36:49:8d:7d:
43:cd:d7:1a:fb:27:de:c4:46:bf:f5:95:b8:9f:3f:
25:13:ae:a3:f3:4e:5e:f2:50:3e:7f:1e:a2:1d:85:
58:81:a8:96:87:bd:b9:cd:d9:5f:6f:ce:62:3e:40:
eb:94:e3:c0:24:10:7b:9d:9a:3b:e6:17:79:c9:b0:
77:b0:19:c9:84:85:e7:d0:68:bc:86:ee:de:70:33:
04:ec:e7:a1:2a:19:97:63:c2:c4:f6:64:87:7e:52:
d5:44:48:bc:ff:fe:1d:6a:45:ae:f6:4b:57:1d:f7:
4b:7e:13:0d:9c:7c:ef:8b:c8:23:b4:c2:2a:a5:fd:
89:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:EC:32:E1:4A:42:87:7A:F8:E5:04:4F:1A:D9:C5:8A:C0:E1:90:18
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/Vuwy4UpCh3r45QRPGtnFisDhkBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.111.0/24
Signature Algorithm: sha256WithRSAEncryption
32:7e:60:4b:83:51:43:2e:b8:d2:29:41:14:2b:6f:c1:9b:30:
0e:66:4e:80:4a:11:b9:3a:e2:10:78:38:c7:53:f9:35:cf:18:
0f:f9:db:91:67:89:92:5f:c8:2a:c5:bc:60:c5:32:e2:f2:e3:
40:27:79:fc:3e:62:22:5c:1d:dc:2d:4c:e3:c8:fb:40:17:7d:
e4:18:4f:e2:78:51:38:f5:f9:07:16:81:ab:32:7e:f1:5e:5e:
a9:d4:eb:7d:09:02:08:b4:a5:a5:8c:9c:e3:a9:20:a0:42:6c:
0f:72:71:1b:8d:a5:ee:a4:ff:09:42:97:c5:31:dc:f3:a0:b4:
4c:7e:a0:8f:46:39:91:4f:85:f8:72:28:3a:4e:2c:c2:f8:fe:
65:48:a7:6a:b5:f0:90:7b:20:76:dc:4c:bd:d1:cd:53:72:d6:
8a:00:5e:7a:4f:37:71:7e:90:f9:34:04:e8:44:1f:2e:7a:d7:
14:eb:9b:fd:72:3e:69:52:12:aa:e1:06:cf:fc:8c:91:82:85:
bd:ad:6d:6c:db:99:90:c1:68:89:4e:2f:b8:a9:5d:4e:08:c4:
58:fb:b0:10:3f:be:dd:1d:6e:d8:1a:3a:fe:fc:70:e7:34:de:
09:29:d9:44:85:30:64:7d:38:0e:ef:61:be:c6:4f:d5:82:d8:
1e:fb:c3:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 00:53:38 2025 by rpki-client