Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/df6aae-5150-49a6-b83d-717f4730064c/1/VfQ3nDVuKA1iHlXb_cbV50JBDCQ.roa
File: VfQ3nDVuKA1iHlXb_cbV50JBDCQ.roa (raw, json)
Hash identifier: HPt1K96qgNLTRpAtLkCTlZlkJ0pSM+6dlXkClvcP0Mg=
Subject key identifier: 55:F4:37:9C:35:6E:28:0D:62:1E:55:DB:FD:C6:D5:E7:42:41:0C:24
Certificate issuer: /CN=3bf35c92ebf139acb59c31586041355a5fc38911
Certificate serial: 03BFA04F
Authority key identifier: 3B:F3:5C:92:EB:F1:39:AC:B5:9C:31:58:60:41:35:5A:5F:C3:89:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_NckuvxOay1nDFYYEE1Wl_DiRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/df6aae-5150-49a6-b83d-717f4730064c/1/VfQ3nDVuKA1iHlXb_cbV50JBDCQ.roa
Signing time: Sat 01 Jan 2022 15:55:52 +0000
ROA not before: Sat 01 Jan 2022 15:55:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2148
IP address blocks: 192.148.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62890063 (0x3bfa04f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bf35c92ebf139acb59c31586041355a5fc38911
Validity
Not Before: Jan 1 15:55:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55f4379c356e280d621e55dbfdc6d5e742410c24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:35:51:5e:09:d2:f1:da:85:d1:03:ce:39:af:
c8:aa:e3:76:e1:5e:24:07:c2:05:63:f7:6e:cb:d6:
b4:c5:8e:be:df:50:89:c4:a5:86:80:70:d1:a5:16:
ea:42:94:a7:f2:a1:99:21:12:de:37:b7:31:2a:c2:
f3:1c:f3:4d:37:98:a2:c0:b4:84:a6:db:98:e2:54:
29:a3:c1:94:48:8e:23:0c:ea:a1:41:6f:09:48:6d:
bb:43:ff:fd:12:03:16:eb:71:8b:ce:72:a3:8b:43:
73:07:5f:de:d0:81:e7:f7:f6:ac:4f:42:81:4b:d6:
18:7e:f0:3c:b4:85:27:29:c6:d3:57:cd:d2:40:32:
8c:3f:9a:da:a7:f8:9a:ba:4d:58:44:e9:15:3f:e1:
73:a8:50:51:66:e4:30:be:cb:d1:1e:56:be:0a:c8:
8a:30:b3:6a:4d:00:cd:01:9a:0c:af:c6:e5:b7:29:
4f:8b:d9:3f:70:77:27:30:e9:23:86:e0:5d:d2:19:
ae:c6:ef:a5:03:1f:d9:e0:d1:10:68:ff:dd:aa:3d:
fd:9d:54:57:1d:62:48:5c:da:58:f3:02:a3:92:37:
9b:b5:d4:97:2c:17:e4:02:b8:5b:ce:80:80:35:81:
c4:05:6d:c5:11:88:e3:96:77:5f:35:f6:a1:a9:0f:
be:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:F4:37:9C:35:6E:28:0D:62:1E:55:DB:FD:C6:D5:E7:42:41:0C:24
X509v3 Authority Key Identifier:
keyid:3B:F3:5C:92:EB:F1:39:AC:B5:9C:31:58:60:41:35:5A:5F:C3:89:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_NckuvxOay1nDFYYEE1Wl_DiRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/df6aae-5150-49a6-b83d-717f4730064c/1/VfQ3nDVuKA1iHlXb_cbV50JBDCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/df6aae-5150-49a6-b83d-717f4730064c/1/O_NckuvxOay1nDFYYEE1Wl_DiRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.148.166.0/24
Signature Algorithm: sha256WithRSAEncryption
05:bd:87:81:dc:5b:8c:cb:66:20:db:66:5f:44:05:77:ba:9d:
ad:f2:42:98:6a:bd:ec:0a:08:47:c2:0e:49:bc:26:d7:cd:08:
c5:d8:10:33:6b:c3:67:fb:03:9f:e7:34:df:cc:74:e1:07:a9:
82:48:13:c9:b8:71:81:66:f0:9e:72:c7:5e:da:d8:ba:de:29:
f1:e7:4d:07:97:e1:12:f8:3a:22:27:c9:d6:ea:3b:14:16:5c:
91:42:3a:5f:d1:03:a6:05:27:0d:e7:ce:19:ac:32:9d:25:9e:
4d:ab:84:47:c2:7d:a5:d5:a9:b6:db:15:84:de:ad:9e:ed:29:
4f:59:98:8f:7c:4a:9b:c1:74:4f:07:78:95:96:18:9c:67:97:
36:76:25:03:fa:da:68:ab:13:05:af:bd:5d:e3:a3:72:7b:eb:
78:25:37:af:83:7d:db:cc:2e:c7:16:f6:d6:3d:10:e1:ee:e4:
d6:8f:7f:08:be:09:b6:be:ff:0a:60:b4:1b:93:af:1c:9d:f0:
c6:19:31:f1:53:8b:53:8d:b6:37:ec:be:85:66:ac:9c:8b:74:
4d:85:85:bd:2a:a0:71:23:6e:af:a8:47:e9:c8:dd:7c:9c:95:
1a:af:a9:ac:9d:7a:fa:78:81:79:50:1a:e6:ef:d6:33:02:ab:
9c:a3:4a:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:43 2024 by rpki-client on console-fra.rpki-client.org