Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/vGS-WMBiE84_6jPag4onP_QKHxk.roa
File: vGS-WMBiE84_6jPag4onP_QKHxk.roa (raw, json)
Hash identifier: jPIvE3E2ucbbeyhdmOWw/44gW3Enbe+DUjimFriSlks=
Subject key identifier: BC:64:BE:58:C0:62:13:CE:3F:EA:33:DA:83:8A:27:3F:F4:0A:1F:19
Certificate issuer: /CN=464528d9080c665db0551d8ad8b0f71f7bb76996
Certificate serial: 018CC2DAC9C948939025F78CDF5EC312F730
Authority key identifier: 46:45:28:D9:08:0C:66:5D:B0:55:1D:8A:D8:B0:F7:1F:7B:B7:69:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RkUo2QgMZl2wVR2K2LD3H3u3aZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/vGS-WMBiE84_6jPag4onP_QKHxk.roa
Signing time: Mon 01 Jan 2024 02:29:27 +0000
ROA not before: Mon 01 Jan 2024 02:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59985
IP address blocks: 185.63.68.0/23 maxlen: 23
2a04:f380::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:c9:c9:48:93:90:25:f7:8c:df:5e:c3:12:f7:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=464528d9080c665db0551d8ad8b0f71f7bb76996
Validity
Not Before: Jan 1 02:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc64be58c06213ce3fea33da838a273ff40a1f19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:aa:2d:a5:de:c1:7a:bb:06:dc:3c:00:58:38:
fa:3e:41:00:12:39:d8:e2:15:ad:8a:2c:bf:43:80:
b1:b5:ae:e7:90:27:97:9d:b8:72:de:e5:f4:56:71:
6f:e7:ba:c3:24:f1:bb:4d:8b:65:17:6d:51:3b:c7:
0c:61:bb:35:2b:eb:24:03:7b:f1:dc:e7:93:ec:04:
be:ab:4b:18:75:fb:e3:2c:f7:41:cd:f5:4e:45:df:
0d:c2:fb:e2:1f:fb:bd:b1:75:d3:94:72:9b:fe:7a:
db:40:5e:08:0d:cd:0a:8f:34:eb:31:cb:6d:9c:a9:
9f:ff:a2:88:8c:66:52:0a:77:5c:b5:b1:a5:e6:42:
65:02:97:d7:92:da:2a:da:5a:b7:c2:77:7a:8e:8f:
a7:88:51:ff:45:61:c2:31:26:c2:85:c4:f7:fd:14:
8d:8f:1c:d9:5c:fb:b0:fc:54:95:28:a6:b3:6a:18:
11:63:25:96:38:30:fe:42:d8:b3:6c:76:a5:f4:aa:
c2:3a:d1:35:71:b9:b6:36:5e:a9:fa:4e:00:a1:7b:
ab:49:ad:0d:e6:1e:e6:96:d0:d4:df:34:3a:dd:da:
25:11:d0:c0:00:8d:da:65:83:d4:3e:ae:ed:66:13:
b3:2f:ec:39:8f:a4:e7:39:35:4b:7b:7b:02:d2:3e:
1e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:64:BE:58:C0:62:13:CE:3F:EA:33:DA:83:8A:27:3F:F4:0A:1F:19
X509v3 Authority Key Identifier:
keyid:46:45:28:D9:08:0C:66:5D:B0:55:1D:8A:D8:B0:F7:1F:7B:B7:69:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RkUo2QgMZl2wVR2K2LD3H3u3aZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/vGS-WMBiE84_6jPag4onP_QKHxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.68.0/23
IPv6:
2a04:f380::/32
Signature Algorithm: sha256WithRSAEncryption
00:50:b7:0c:8b:79:41:bd:14:9e:72:e1:f9:fa:95:f3:62:fc:
f4:a8:f6:bf:78:59:a1:5f:ae:b2:12:d6:69:dc:e5:ef:3a:94:
e1:10:c6:6c:ed:05:5a:c6:f6:1b:98:44:96:85:66:cb:00:5c:
50:b0:c5:a1:af:58:e9:07:1a:3e:35:81:f6:4d:a5:b6:36:fa:
95:7e:f6:d2:32:68:2b:1c:ed:48:bc:0f:cb:82:c4:38:85:6c:
99:ba:60:18:4b:bb:8b:3f:0a:bc:cf:de:44:4d:15:e7:af:07:
f5:94:be:76:22:51:6b:36:73:fd:05:3e:59:4e:52:81:ef:d3:
92:b3:62:b7:c9:1b:64:52:01:3c:51:c3:55:d9:a8:67:54:b0:
fc:31:a3:f4:ea:8e:99:2c:52:f2:c0:86:6f:68:0e:6b:73:a0:
7c:1a:c2:ea:4c:6f:34:de:16:fd:9b:79:b6:18:b9:2c:5e:7b:
b3:20:cb:39:cd:49:99:27:1b:08:61:d0:76:3c:be:a8:bc:87:
cf:c7:32:3d:82:2e:0d:dd:9f:f7:d4:38:5a:a2:ce:ef:94:5f:
e1:75:b6:46:70:a7:7f:fc:9c:45:94:f4:a6:88:09:38:95:24:
cf:e8:b6:26:fe:02:a2:d5:f2:90:0e:87:1a:61:5b:84:68:01:
3e:c8:d3:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:51:01 2025 by rpki-client