Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/a05178-15b4-4faf-8cec-38fd5691d420/1/VSxhLGRh9j1l9wTJxaxCYU9w1n0.roa
File: VSxhLGRh9j1l9wTJxaxCYU9w1n0.roa (raw, json)
Hash identifier: bj8txqNJwn7RZ077VmM1+fuSep1lTwWXOuwaaBmqaw4=
Subject key identifier: 55:2C:61:2C:64:61:F6:3D:65:F7:04:C9:C5:AC:42:61:4F:70:D6:7D
Certificate issuer: /CN=985fd22d7aa22004d075c1d3edf0e63faf40b7f2
Certificate serial: 0106E43D
Authority key identifier: 98:5F:D2:2D:7A:A2:20:04:D0:75:C1:D3:ED:F0:E6:3F:AF:40:B7:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mF_SLXqiIATQdcHT7fDmP69At_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/a05178-15b4-4faf-8cec-38fd5691d420/1/VSxhLGRh9j1l9wTJxaxCYU9w1n0.roa
Signing time: Sat 01 Jan 2022 04:04:29 +0000
ROA not before: Sat 01 Jan 2022 04:04:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57271
IP address blocks: 185.234.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17228861 (0x106e43d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=985fd22d7aa22004d075c1d3edf0e63faf40b7f2
Validity
Not Before: Jan 1 04:04:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=552c612c6461f63d65f704c9c5ac42614f70d67d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:12:8b:7c:f0:23:aa:33:db:81:93:84:d1:3e:
41:74:2f:8e:10:8e:37:f2:12:31:d3:2d:70:49:f3:
98:2c:0d:96:7d:31:f5:44:3b:3a:b8:30:3e:1d:3b:
12:4f:ab:d0:cf:d5:60:39:82:62:9a:0a:67:af:40:
1d:b1:e9:e0:dd:1c:78:52:7f:4f:5e:51:56:18:7f:
2f:db:0f:c8:fd:dd:5e:92:0b:ae:8e:03:f2:d2:b8:
cb:c3:00:73:d2:a3:0b:39:e1:30:fe:2e:0f:fc:f1:
06:68:a5:ed:cc:5a:6b:ca:57:47:8b:95:c3:fe:55:
f5:1f:c7:96:0a:28:a2:16:0c:02:62:13:ce:38:2d:
2d:99:40:14:ca:35:3a:85:17:53:4a:74:2b:da:da:
99:5a:66:2f:18:6c:03:60:bf:4f:37:e7:52:40:9a:
09:63:56:3a:cc:c7:3e:8c:a1:67:56:97:d1:25:3e:
38:ed:f1:77:f0:5e:04:3d:f5:bc:6a:a6:8f:fa:22:
ae:71:89:9a:e4:d7:ce:4d:82:17:5e:93:b9:ca:9f:
a1:a7:d0:d0:bd:36:09:e9:c7:6c:00:94:0e:37:54:
44:6a:9c:b3:83:0e:68:1a:1a:48:1c:c3:75:a2:9f:
49:80:06:d9:6c:c3:fe:c4:d9:ae:fb:d7:33:66:4c:
a9:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:2C:61:2C:64:61:F6:3D:65:F7:04:C9:C5:AC:42:61:4F:70:D6:7D
X509v3 Authority Key Identifier:
keyid:98:5F:D2:2D:7A:A2:20:04:D0:75:C1:D3:ED:F0:E6:3F:AF:40:B7:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mF_SLXqiIATQdcHT7fDmP69At_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/a05178-15b4-4faf-8cec-38fd5691d420/1/VSxhLGRh9j1l9wTJxaxCYU9w1n0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/a05178-15b4-4faf-8cec-38fd5691d420/1/mF_SLXqiIATQdcHT7fDmP69At_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.11.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:54:69:3a:95:15:1b:5f:4d:04:c4:da:b4:1a:54:b3:35:bc:
fa:53:ae:12:89:75:be:e7:6f:35:1b:7c:68:29:84:01:68:d6:
d1:13:0a:d2:9f:53:b2:69:b6:6a:69:09:e4:c5:b1:7f:4e:5a:
7b:dd:9b:dd:4f:f7:75:7b:9e:2d:7b:a8:1f:67:a8:c9:50:59:
a8:7c:9b:2a:f9:d8:98:c5:1c:79:2f:c2:eb:2b:cb:a1:52:be:
22:e2:fa:de:4d:9c:99:17:91:4c:88:56:a2:b9:21:03:5c:07:
eb:50:62:12:0a:fd:ef:2c:b5:27:fe:c8:db:1a:d8:8b:60:4f:
d2:31:05:44:b6:07:9b:c3:f7:8f:a9:81:53:e2:48:25:dd:a5:
43:f9:43:a4:7b:e6:77:3b:53:02:e0:d8:b8:06:bd:7c:04:64:
3a:64:49:92:e1:18:83:a5:4a:ee:02:5b:c5:e7:6a:62:e3:be:
ad:08:35:00:c6:66:41:08:d8:e2:03:44:7d:bb:10:29:a9:da:
4d:b0:a0:a6:9c:9f:91:1b:47:e2:47:db:27:f3:13:ed:86:34:
67:4b:77:92:c0:36:2e:38:4e:6e:63:36:7e:65:13:b8:85:bb:
16:c7:e0:33:74:27:75:fa:dd:aa:c6:bc:91:3c:d6:b1:67:64:
f4:b7:70:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:47 2025 by rpki-client