Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/9baf4f-a79c-4a92-b7c7-06a4795f52e5/1/VmIVfgo_RMzgR2fOfqX-u2mSWzc.roa
File: VmIVfgo_RMzgR2fOfqX-u2mSWzc.roa (raw, json)
Hash identifier: YvtZiscryTY4euhpVIi1rjF2EoByRj6WMk20hUHc2lg=
Subject key identifier: 56:62:15:7E:0A:3F:44:CC:E0:47:67:CE:7E:A5:FE:BB:69:92:5B:37
Certificate issuer: /CN=fb08bfb7f36f091de2744a72461e4d801ee7edb4
Certificate serial: 053A200A
Authority key identifier: FB:08:BF:B7:F3:6F:09:1D:E2:74:4A:72:46:1E:4D:80:1E:E7:ED:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-wi_t_NvCR3idEpyRh5NgB7n7bQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/9baf4f-a79c-4a92-b7c7-06a4795f52e5/1/VmIVfgo_RMzgR2fOfqX-u2mSWzc.roa
Signing time: Sat 01 Jan 2022 06:58:54 +0000
ROA not before: Sat 01 Jan 2022 06:58:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 328543
IP address blocks: 193.239.178.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87695370 (0x53a200a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb08bfb7f36f091de2744a72461e4d801ee7edb4
Validity
Not Before: Jan 1 06:58:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5662157e0a3f44cce04767ce7ea5febb69925b37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:02:f7:09:4e:25:5f:75:ff:69:68:82:51:23:
f7:33:1f:ea:8f:15:12:bf:ca:91:30:87:a1:62:a7:
b8:4a:eb:cb:90:3e:56:1a:7f:e1:19:32:25:ce:a9:
a6:6d:03:e7:9e:91:cc:a1:96:5b:05:c6:5d:ec:2a:
d7:98:73:36:72:99:2a:6b:48:6b:5f:8f:f2:ce:92:
66:84:d3:02:08:95:36:95:2a:ed:28:3a:12:83:aa:
0d:14:cd:fa:70:9b:60:34:0f:28:1f:4c:f3:ca:36:
bc:08:9e:6b:aa:e6:3e:d3:9c:98:98:8e:71:c3:42:
14:70:4e:97:09:16:c1:0f:08:24:f0:f0:af:a0:7b:
c7:d9:7f:41:42:07:e8:09:71:06:82:ec:f8:0b:3a:
d6:77:a0:bd:a7:54:54:a0:60:75:b2:d4:2f:e2:e7:
6e:63:64:c0:14:47:a7:5e:aa:fe:d9:f4:73:d0:94:
31:24:c4:e8:37:23:d1:12:79:2c:49:cd:e0:dd:f0:
52:11:70:fb:cc:0e:af:66:4c:2f:40:2e:8c:60:15:
bc:bd:48:ad:1a:a8:28:92:43:fc:58:9f:2b:0e:19:
f1:b9:a1:a9:d7:54:9b:0a:6b:c1:91:d9:af:a0:45:
c5:74:bc:4f:cd:30:31:b0:4f:38:5c:bf:79:cb:be:
1c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:62:15:7E:0A:3F:44:CC:E0:47:67:CE:7E:A5:FE:BB:69:92:5B:37
X509v3 Authority Key Identifier:
keyid:FB:08:BF:B7:F3:6F:09:1D:E2:74:4A:72:46:1E:4D:80:1E:E7:ED:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-wi_t_NvCR3idEpyRh5NgB7n7bQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/9baf4f-a79c-4a92-b7c7-06a4795f52e5/1/VmIVfgo_RMzgR2fOfqX-u2mSWzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/9baf4f-a79c-4a92-b7c7-06a4795f52e5/1/1-wi_t_NvCR3idEpyRh5NgB7n7bQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.178.0/23
Signature Algorithm: sha256WithRSAEncryption
28:c6:40:f7:22:ca:05:f9:30:c9:14:6d:8c:4a:8b:00:37:2e:
2b:54:bf:97:57:53:f2:b4:a5:f9:1e:69:7e:e8:27:48:28:0a:
46:a2:49:a9:46:48:01:52:3e:62:fc:99:23:38:06:b3:82:6d:
96:7b:e8:75:c4:0e:54:52:d8:de:31:27:9d:26:b6:79:7e:df:
ad:32:c2:a8:09:0b:9b:da:f6:70:1e:ec:f5:0a:08:6c:2e:a9:
d0:81:31:52:ad:20:73:d9:c6:4e:7c:44:f1:bd:f8:7d:54:2d:
31:89:6e:b0:8b:9b:fe:f0:36:05:1c:38:a5:08:80:4f:d4:51:
59:59:34:55:ff:43:a5:6b:ea:69:ce:f3:ec:0d:bb:74:b4:54:
23:4e:09:b9:24:09:99:33:59:b3:af:c8:01:0d:2e:3f:12:41:
69:d5:99:51:b5:e3:a8:80:26:12:38:d2:38:92:7c:6b:d1:46:
09:0f:56:cb:bc:f1:22:e5:92:6b:31:50:4d:25:c5:4e:2c:bc:
8c:10:ca:fa:f5:9b:32:f2:fc:b5:d6:6c:5c:d5:d8:4b:d8:c9:
a0:67:d8:13:a9:b2:fa:72:3e:32:a9:80:df:b2:7b:66:e6:32:
1a:b1:b9:eb:5d:8d:99:7f:92:32:b8:69:eb:18:f7:74:0b:40:
eb:fc:b3:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:49 2023 by rpki-client on console-ams.rpki-client.org