Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/a8e808-95f3-4ab3-978b-23cd7cceac45/1/vyfSa2q6mSG8cYU6_MNjWQxfU1U.roa
File: vyfSa2q6mSG8cYU6_MNjWQxfU1U.roa (raw, json)
Hash identifier: vhWQDI2ny47SbOlxtzbhnHDv9vT3YK0OdW3EJNS61OA=
Subject key identifier: BF:27:D2:6B:6A:BA:99:21:BC:71:85:3A:FC:C3:63:59:0C:5F:53:55
Certificate issuer: /CN=3fbf0d4f25ec119728f14a9c51aee8034fff3ff6
Certificate serial: 01839E63D7A1A454833969E8DD93193B5B15
Authority key identifier: 3F:BF:0D:4F:25:EC:11:97:28:F1:4A:9C:51:AE:E8:03:4F:FF:3F:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P78NTyXsEZco8UqcUa7oA0__P_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/a8e808-95f3-4ab3-978b-23cd7cceac45/1/vyfSa2q6mSG8cYU6_MNjWQxfU1U.roa
Signing time: Mon 03 Oct 2022 15:08:06 +0000
ROA not before: Mon 03 Oct 2022 15:08:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210703
IP address blocks: 176.118.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9e:63:d7:a1:a4:54:83:39:69:e8:dd:93:19:3b:5b:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fbf0d4f25ec119728f14a9c51aee8034fff3ff6
Validity
Not Before: Oct 3 15:08:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf27d26b6aba9921bc71853afcc363590c5f5355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:15:a4:0a:e6:d7:ea:57:11:0e:c4:7a:bc:03:
de:29:b8:6d:de:e0:09:7a:b7:3a:e7:ca:8b:a6:9a:
d7:a9:79:85:08:d0:f4:b5:d9:a4:e0:c5:3a:fc:ca:
87:45:c6:69:f8:69:92:58:ac:5a:22:8a:1e:44:28:
20:8c:bf:99:87:70:d5:2b:b7:98:3f:b6:e9:d5:85:
6b:bc:55:30:cd:b4:92:07:8a:4f:d8:28:ec:31:e5:
f6:58:95:ec:06:69:37:40:e0:b5:8b:0c:3a:e4:c7:
94:4f:af:4e:da:e5:35:5a:70:70:1f:59:3f:9e:4a:
75:3c:7d:fa:68:ee:f6:75:3e:2d:14:0d:eb:df:55:
36:73:fb:16:65:58:ed:01:98:ff:d8:09:3e:14:19:
55:29:35:98:37:ae:32:57:49:77:81:95:db:88:aa:
82:f9:1f:81:84:31:c9:ae:e8:9e:51:c7:11:52:21:
f9:63:92:dc:9f:ab:e4:e8:b6:23:cb:3a:53:5b:08:
f4:0b:c1:04:3c:2c:ae:1e:a7:ce:ac:f8:c8:be:73:
68:f0:f9:ed:cd:b3:72:36:1b:e2:5d:ff:f8:a5:bc:
0f:56:00:2a:15:fe:0e:42:86:52:3d:69:b5:ad:0f:
f9:83:c1:56:63:90:3d:60:de:e1:b1:3b:e7:22:03:
29:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:27:D2:6B:6A:BA:99:21:BC:71:85:3A:FC:C3:63:59:0C:5F:53:55
X509v3 Authority Key Identifier:
keyid:3F:BF:0D:4F:25:EC:11:97:28:F1:4A:9C:51:AE:E8:03:4F:FF:3F:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P78NTyXsEZco8UqcUa7oA0__P_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/a8e808-95f3-4ab3-978b-23cd7cceac45/1/vyfSa2q6mSG8cYU6_MNjWQxfU1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/a8e808-95f3-4ab3-978b-23cd7cceac45/1/P78NTyXsEZco8UqcUa7oA0__P_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.33.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:47:59:0a:fa:e4:0b:1e:d4:5a:ba:ad:d8:ce:e0:fe:10:e5:
89:58:e6:3c:b0:51:d6:81:63:08:4a:e4:04:4b:be:d8:3a:b7:
52:06:a3:56:87:b4:61:02:a7:4a:6c:a5:55:ca:95:eb:ef:a9:
34:cf:03:f3:62:ed:ff:9a:5a:30:00:73:e8:e5:47:7c:31:63:
9c:e7:ec:8e:1a:74:11:f3:c9:ef:1a:34:31:73:24:92:ed:de:
2a:48:28:57:0c:17:17:78:ae:d7:5f:8b:ef:66:6b:30:da:8f:
5c:90:da:68:e8:97:21:9b:f2:7a:9d:be:d1:69:5f:74:4f:7a:
49:a0:5a:3b:69:70:b1:4c:b8:e1:7c:61:ed:9c:23:f9:df:9d:
f6:1b:24:ee:cf:a0:49:52:0f:e5:8f:03:c6:7f:98:75:8b:08:
4f:62:b3:13:4a:d8:4f:ad:fd:fb:37:4c:18:52:c5:45:e4:3c:
c1:4f:a1:1c:42:f8:eb:fc:67:29:ba:2c:2d:c4:5b:c7:51:8e:
63:77:ca:e8:94:88:c7:ca:55:bd:b7:74:61:de:af:f5:28:88:
fa:79:fb:c8:d2:fe:22:df:83:47:c3:04:ca:78:ff:95:21:57:
3a:fc:7c:13:1e:a5:ec:10:ce:e9:63:22:43:27:ed:f1:77:62:
49:23:ae:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:12 2024 by rpki-client on console-fra.rpki-client.org