Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/VPF2h2ByJyvcwxWYKrtzmPQ4hbo.roa
File: VPF2h2ByJyvcwxWYKrtzmPQ4hbo.roa (raw, json)
Hash identifier: TQzTKN2nP3lmERsvFxeDzu2OyPBwvHLKMev1QhM79Gw=
Subject key identifier: 54:F1:76:87:60:72:27:2B:DC:C3:15:98:2A:BB:73:98:F4:38:85:BA
Certificate issuer: /CN=5324defbaade93e998e13a942029dd593b8b2ea3
Certificate serial: 018570B064E722CE66426D6BF197EBBA7721
Authority key identifier: 53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/VPF2h2ByJyvcwxWYKrtzmPQ4hbo.roa
Signing time: Mon 02 Jan 2023 04:14:46 +0000
ROA not before: Mon 02 Jan 2023 04:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200443
IP address blocks: 167.160.10.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:64:e7:22:ce:66:42:6d:6b:f1:97:eb:ba:77:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5324defbaade93e998e13a942029dd593b8b2ea3
Validity
Not Before: Jan 2 04:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=54f176876072272bdcc315982abb7398f43885ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:11:c3:23:6e:2b:16:b6:b6:22:f0:eb:a9:eb:
e5:b7:5f:a5:0d:49:f1:e1:9a:33:56:aa:ab:31:35:
bd:69:28:d5:3c:ce:65:fa:3d:fe:cf:56:e2:6a:aa:
18:c4:c5:a1:6a:bc:b6:bc:37:ba:95:f5:d2:1c:38:
89:4e:60:bb:b9:7e:1a:a5:f4:13:7b:46:a3:30:8a:
1d:6c:8f:1f:5d:09:57:56:e8:fc:49:a5:ea:2b:7f:
a4:a5:9f:e9:c2:fe:ee:2f:a2:d8:e0:75:2d:49:db:
f3:16:19:bb:1a:8a:ca:e8:7f:1f:eb:b8:e2:85:f4:
c3:ab:a8:62:98:3a:61:04:c5:e1:39:e8:e2:31:98:
e6:7d:5a:55:84:1d:a2:9c:d2:6e:c8:2c:1b:fc:4f:
c4:c6:b1:58:41:b6:ea:ca:ae:9a:f2:f6:ba:f3:66:
62:e2:55:b1:72:03:c8:8f:c0:02:8e:43:5f:f5:a3:
c9:d9:62:9b:38:3b:d7:57:a3:0d:0a:51:05:41:7e:
0c:10:00:61:9e:fe:bb:84:71:f6:db:7a:e1:84:21:
e1:d0:9e:71:a7:d6:d4:25:fe:b8:8a:15:ae:c3:b5:
3d:21:31:53:25:db:88:10:c6:a3:0b:8e:33:13:8b:
ca:a2:1a:39:ac:0e:05:a0:66:af:45:5a:26:73:00:
20:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:F1:76:87:60:72:27:2B:DC:C3:15:98:2A:BB:73:98:F4:38:85:BA
X509v3 Authority Key Identifier:
keyid:53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/VPF2h2ByJyvcwxWYKrtzmPQ4hbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.160.10.0/24
Signature Algorithm: sha256WithRSAEncryption
84:4c:b7:a2:2b:a8:bf:b8:06:74:a3:ad:da:30:6b:0c:f5:05:
60:fa:fb:5b:9e:f3:7e:ff:c4:5a:31:68:7c:bf:ce:41:60:1e:
c2:f2:c3:cc:6f:ca:31:5d:f7:a0:73:c0:97:f0:ba:5d:14:c9:
22:8a:94:4e:30:0b:17:04:e0:57:fa:94:83:fe:14:a3:eb:3c:
28:eb:86:93:4f:53:1d:25:c0:0f:eb:1d:85:c7:76:4b:a2:86:
83:f8:d4:22:79:10:6b:77:48:28:db:a4:3f:21:ec:63:9f:e3:
25:31:d3:e4:6b:55:4d:7f:c8:c5:79:2a:9d:7f:e0:70:15:99:
44:3c:c1:11:40:2a:0c:c7:7f:9d:a2:cd:d0:cb:35:ce:34:ee:
59:fa:7c:3d:94:b1:6d:c2:3c:6c:52:69:8c:fe:f1:f5:47:43:
e7:40:a9:33:3e:d5:65:cc:67:f2:87:05:2e:de:d0:b5:24:d1:
d0:ef:ea:1e:fb:ce:bb:c2:5e:63:71:90:ae:94:5e:30:d7:ec:
5d:e4:ad:9c:31:73:12:52:0a:c0:aa:0e:45:06:e8:e5:00:1e:
14:e6:0e:31:48:61:74:5e:d0:06:38:0d:20:bd:9d:ca:79:cb:
ae:aa:83:6f:f3:00:00:c7:49:09:9d:64:45:f3:25:d8:98:d0:
e4:8b:24:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 05:25:07 2025 by rpki-client