Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/VYMXc39_AbwKtyIGLhZmJKP93e4.roa
File: VYMXc39_AbwKtyIGLhZmJKP93e4.roa (raw, json)
Hash identifier: bLCCqCrOyE5phW7hOMU/2th4A8xOrsB4zDLnOFQ9Mfg=
Subject key identifier: 55:83:17:73:7F:7F:01:BC:0A:B7:22:06:2E:16:66:24:A3:FD:DD:EE
Certificate issuer: /CN=8756d27768e11d94a0bbcdfb3fbcd740d45a00f4
Certificate serial: 0192767E76640DDF189D0E81A2D35FDD3144
Authority key identifier: 87:56:D2:77:68:E1:1D:94:A0:BB:CD:FB:3F:BC:D7:40:D4:5A:00:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h1bSd2jhHZSgu837P7zXQNRaAPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/VYMXc39_AbwKtyIGLhZmJKP93e4.roa
Signing time: Thu 10 Oct 2024 12:54:12 +0000
ROA not before: Thu 10 Oct 2024 12:54:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 84.238.160.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:76:7e:76:64:0d:df:18:9d:0e:81:a2:d3:5f:dd:31:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8756d27768e11d94a0bbcdfb3fbcd740d45a00f4
Validity
Not Before: Oct 10 12:54:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=558317737f7f01bc0ab722062e166624a3fdddee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:55:f6:1f:3e:9c:22:6d:e1:60:b7:03:a2:c6:
30:c2:f4:23:d7:f7:fa:ee:36:28:1e:2e:33:45:31:
7c:60:f2:4f:b7:c7:80:c0:0c:12:85:07:d5:cb:cf:
b0:1c:0e:8f:bd:e6:3d:de:0e:3b:c9:08:6b:a1:86:
d1:0c:8a:6e:65:22:eb:e8:0c:85:69:74:82:ea:27:
bf:6d:34:9c:a6:ab:52:95:24:67:bb:32:5d:d2:76:
c2:ec:54:73:e3:2c:a7:ad:73:32:0e:a0:61:b2:6a:
05:35:48:c8:aa:e1:e5:28:15:dc:4d:95:3c:35:bb:
61:0a:b1:da:2c:31:76:9a:07:5c:34:8e:18:89:ad:
96:8b:0a:ae:18:55:7f:b7:13:c2:28:33:c8:c5:52:
35:13:6d:90:65:3f:cc:c8:b2:0a:77:fb:07:03:18:
3b:19:8e:d7:ef:d5:d0:e0:ad:f7:ac:11:f8:69:ce:
2c:c4:56:14:aa:10:77:e9:3c:94:71:ab:4a:da:45:
9b:a2:2c:b0:0c:a4:9e:93:32:d6:7b:2a:27:5f:06:
02:a8:43:17:25:a4:c0:b6:53:3f:96:e3:8a:ca:eb:
0c:21:d4:92:ed:26:8c:50:0d:bc:ee:e4:cf:83:5e:
29:e6:f3:54:16:83:08:e5:67:74:e7:b1:3d:8f:4d:
d7:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:83:17:73:7F:7F:01:BC:0A:B7:22:06:2E:16:66:24:A3:FD:DD:EE
X509v3 Authority Key Identifier:
keyid:87:56:D2:77:68:E1:1D:94:A0:BB:CD:FB:3F:BC:D7:40:D4:5A:00:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h1bSd2jhHZSgu837P7zXQNRaAPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/VYMXc39_AbwKtyIGLhZmJKP93e4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.238.160.0/22
Signature Algorithm: sha256WithRSAEncryption
74:c3:56:a2:a4:d4:ca:97:38:33:f2:8c:ec:21:c9:1b:1c:73:
ca:9e:6f:fe:2c:d5:33:b3:98:47:5c:6d:b0:1b:ef:eb:a1:de:
61:d6:89:eb:98:6e:9c:80:4f:58:1e:0a:26:72:76:cc:7b:34:
70:18:30:c2:39:fa:8e:30:55:ee:d2:d8:57:5f:85:12:84:6b:
57:a6:c3:cb:fe:d5:c3:9e:1d:81:3f:ee:ea:a8:d0:55:b7:e1:
4a:ee:fb:ec:d3:de:b5:95:39:20:58:6b:4b:9c:1a:44:4f:1b:
3c:e3:f8:c7:9d:74:ba:a1:91:bd:1f:16:0e:fd:ae:a1:4b:bb:
85:f8:18:8e:62:ce:b2:ee:9e:78:eb:32:13:da:0d:7a:8d:92:
f0:16:58:2e:ab:12:3f:8b:21:68:e0:34:45:3e:c1:ce:4f:b0:
d4:89:bb:72:14:14:c1:2e:8e:4a:cd:6c:fd:0f:2c:75:98:cc:
80:b8:72:a2:f2:59:ea:28:44:44:7f:3a:86:77:5a:44:7c:ae:
93:a9:26:9b:d5:c7:25:c1:c7:9d:9d:18:4d:b5:c3:ea:6d:96:
7a:b8:bd:5d:06:53:db:12:70:1c:5e:5b:11:85:65:d7:f8:76:
08:32:82:b7:bc:3f:88:bc:fa:8a:20:79:b1:70:f9:79:36:40:
8c:5c:14:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 20:48:27 2025 by rpki-client