Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/VdKvwTuE8fAZIjNuIrTDR_WIMP4.roa
File: VdKvwTuE8fAZIjNuIrTDR_WIMP4.roa (raw, json)
Hash identifier: 81NxCSXk9IbaQVUcS5KQT295pwfPc2VQiCq0VQLtrgQ=
Subject key identifier: 55:D2:AF:C1:3B:84:F1:F0:19:22:33:6E:22:B4:C3:47:F5:88:30:FE
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 01856F42B07FD7E9E3EFA6A8AF4F6E062083
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/VdKvwTuE8fAZIjNuIrTDR_WIMP4.roa
Signing time: Sun 01 Jan 2023 21:35:19 +0000
ROA not before: Sun 01 Jan 2023 21:35:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 266820
IP address blocks: 149.154.184.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:b0:7f:d7:e9:e3:ef:a6:a8:af:4f:6e:06:20:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Jan 1 21:35:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55d2afc13b84f1f01922336e22b4c347f58830fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:07:1a:74:38:d2:a3:63:a5:57:44:b6:7c:b2:
c3:64:03:2c:63:59:4e:3c:e0:df:79:29:f6:fc:b2:
48:f7:c1:f5:6d:bf:f8:8b:e2:3a:ab:c0:d4:34:d7:
7c:bc:98:63:e1:8d:86:d8:94:d8:5a:42:e0:5b:68:
bf:6b:f0:76:c6:48:c1:2b:00:91:bf:b3:cf:75:40:
ab:42:74:b2:76:f6:50:bf:0b:74:c0:27:57:d0:e5:
b6:33:f6:4f:d8:8f:ce:2d:60:0d:85:e8:ba:c8:79:
cf:53:76:0b:01:8a:b1:5e:c2:f8:44:de:03:d6:99:
40:79:4e:cb:10:76:72:5b:c1:3d:0c:2b:d1:a3:e1:
63:98:a3:0c:71:0c:7a:dc:01:12:48:41:85:24:c5:
d5:d5:76:ca:7b:8d:fc:50:30:0c:8f:f5:64:dc:ed:
6b:54:7b:71:b4:7f:cd:f9:0f:7b:4e:75:1a:18:44:
c0:6f:74:1e:0a:38:b0:f6:ad:71:24:d7:33:71:ee:
e1:a5:6f:2f:9b:02:bd:c9:1d:f9:31:69:c6:0c:74:
94:7e:96:70:41:3c:32:01:15:82:f6:f6:9b:bd:41:
b8:0f:bf:e9:44:31:61:80:00:dd:93:f5:dc:36:cf:
6d:b7:dc:22:b5:36:bb:f8:95:12:ea:b4:03:c3:27:
45:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:D2:AF:C1:3B:84:F1:F0:19:22:33:6E:22:B4:C3:47:F5:88:30:FE
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/VdKvwTuE8fAZIjNuIrTDR_WIMP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.154.184.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:ed:11:a2:ad:b1:2b:64:c6:05:a5:2d:72:0e:8e:ad:62:e2:
2e:e0:a2:53:f1:af:63:8c:d8:d8:25:10:00:88:6c:5d:50:09:
4f:c2:56:fc:1a:72:38:d2:15:76:dd:9d:e8:2f:f9:da:d6:ab:
bd:9c:9b:e1:70:eb:ce:79:3a:1b:71:68:72:f3:c8:b8:1d:45:
26:30:1f:46:2e:69:c2:55:4c:f5:aa:b5:ec:c2:b9:08:bd:83:
43:32:84:f2:c5:5a:f9:e8:72:00:3e:53:69:69:17:49:68:66:
04:ae:06:03:12:2d:03:3f:ce:56:6e:8c:7d:46:0f:ee:28:73:
18:57:f9:33:c9:ba:14:f6:27:34:1a:ed:83:53:a8:9e:21:0c:
17:cd:6a:8e:b0:b2:61:ff:3e:79:f7:54:48:b9:3d:56:73:46:
b1:ad:08:18:6a:e9:30:0c:d4:2c:79:76:dd:da:23:13:d5:c0:
1b:8a:72:8e:46:2d:68:19:0c:53:60:e0:bc:23:c9:d8:6d:58:
d0:d8:99:37:0a:7a:e5:73:f4:40:fd:78:d0:f9:72:10:74:1b:
e3:4d:1b:cc:73:32:8b:f0:f0:e1:61:25:53:c8:da:88:e5:63:
b9:32:f1:d2:d8:dc:f3:ff:02:e8:26:62:cb:af:49:4d:6d:88:
77:a6:5b:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 18:28:39 2025 by rpki-client