Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/b4fab5-aa01-4a70-88d0-fbd9bf622f44/1/vbGHJcaPJ4CFMNGvs8lhFBGXWbw.roa
File: vbGHJcaPJ4CFMNGvs8lhFBGXWbw.roa (raw, json)
Hash identifier: crKsYgOaFyMboFMxupwsTKK6fxB63W1jzCX24Yrz7sQ=
Subject key identifier: BD:B1:87:25:C6:8F:27:80:85:30:D1:AF:B3:C9:61:14:11:97:59:BC
Certificate issuer: /CN=eb317e1be7bb6f82cb9c34a096dc088f5f8f92ca
Certificate serial: 03A3F404
Authority key identifier: EB:31:7E:1B:E7:BB:6F:82:CB:9C:34:A0:96:DC:08:8F:5F:8F:92:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6zF-G-e7b4LLnDSgltwIj1-Pkso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/b4fab5-aa01-4a70-88d0-fbd9bf622f44/1/vbGHJcaPJ4CFMNGvs8lhFBGXWbw.roa
Signing time: Fri 04 Mar 2022 08:14:40 +0000
ROA not before: Fri 04 Mar 2022 08:14:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206961
IP address blocks: 185.165.124.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61076484 (0x3a3f404)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb317e1be7bb6f82cb9c34a096dc088f5f8f92ca
Validity
Not Before: Mar 4 08:14:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bdb18725c68f27808530d1afb3c96114119759bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8b:82:50:a8:ff:33:10:78:5d:09:8a:20:c3:
62:b5:91:76:9f:3f:cb:b6:e3:f2:86:e0:8d:87:3a:
f1:ad:95:4f:5c:64:e1:dc:ba:47:87:26:9c:aa:0d:
9a:a4:94:7b:71:04:98:58:f6:92:c6:87:cc:dd:cf:
d6:3a:e7:35:cc:05:27:2e:3e:1e:19:63:51:7c:f4:
81:fd:39:6c:c0:a6:5a:12:20:2e:0b:2e:91:31:49:
1d:1f:55:26:00:f6:35:2b:e4:20:13:cd:7d:e6:63:
37:19:19:5d:15:da:55:67:e7:f2:f2:97:4e:40:8a:
e6:b4:ae:d8:96:98:fe:52:f4:b5:18:38:bd:49:15:
ab:e2:36:fe:c4:08:5c:90:2b:9e:34:48:58:e8:ed:
66:15:60:31:c1:1b:85:32:db:2d:25:20:b8:b5:68:
26:c7:0b:7e:5d:41:ca:94:bc:22:0e:4c:53:49:f0:
23:a1:57:f9:78:94:7e:33:be:66:ec:42:16:84:12:
05:29:d4:eb:84:a3:21:cb:b7:8d:bb:d5:7e:09:72:
21:de:5a:8a:15:11:db:76:40:6e:18:60:dc:5f:42:
a6:8b:0a:ac:b3:a0:74:9c:81:dd:82:b4:26:5e:61:
72:94:53:aa:7d:33:67:8d:ce:1f:17:fb:52:c2:5a:
b9:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:B1:87:25:C6:8F:27:80:85:30:D1:AF:B3:C9:61:14:11:97:59:BC
X509v3 Authority Key Identifier:
keyid:EB:31:7E:1B:E7:BB:6F:82:CB:9C:34:A0:96:DC:08:8F:5F:8F:92:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6zF-G-e7b4LLnDSgltwIj1-Pkso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/b4fab5-aa01-4a70-88d0-fbd9bf622f44/1/vbGHJcaPJ4CFMNGvs8lhFBGXWbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/b4fab5-aa01-4a70-88d0-fbd9bf622f44/1/6zF-G-e7b4LLnDSgltwIj1-Pkso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.124.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:0e:58:fc:32:6d:a3:ed:b4:5f:97:59:df:47:b7:9b:23:08:
cd:8d:40:2e:7a:27:2c:d7:64:b0:a6:fe:f6:48:92:05:8f:0e:
dd:e0:1a:51:fa:3e:4d:25:cc:aa:1e:a0:10:e7:e5:80:62:f9:
5c:65:3d:56:ed:37:fe:f7:4a:ed:6e:ac:88:f7:08:b0:99:76:
8f:14:32:ca:f7:b6:e1:d7:27:d6:9b:1a:af:74:01:a8:d8:0e:
44:ac:d4:77:61:51:33:5e:cc:3c:4f:53:33:75:83:ed:d0:30:
34:dd:2a:49:87:81:a0:14:aa:c4:76:ea:6f:67:31:cc:13:65:
de:7a:13:6f:8d:3d:59:5e:4a:17:ce:45:b1:2f:1f:42:e1:53:
ad:78:d7:e2:63:4a:92:5e:cd:b4:15:1d:ba:d6:ca:7a:37:e7:
78:63:51:b1:b9:82:85:c5:08:0a:6a:b4:59:b4:09:d6:eb:f1:
0d:fc:cb:50:93:52:62:e4:39:9f:c5:0f:7f:d6:36:f3:ae:76:
c0:5e:8c:37:7f:6f:da:bc:ae:14:69:5f:9f:50:c2:83:26:17:
65:de:91:fe:a3:c6:87:6d:40:33:d0:a8:de:9c:54:bf:78:cc:
4a:2a:ca:04:b2:6b:27:9a:84:ab:b2:db:8c:dc:2f:3f:f4:24:
36:f9:de:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:21 2025 by rpki-client