Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/vyBMItxrBaAXbZETH-pm3magGIg.roa
File: vyBMItxrBaAXbZETH-pm3magGIg.roa (raw, json)
Hash identifier: mzgukQqQomwrSgZyBLBm1VRLSNxKm8quiMG+C/hw934=
Subject key identifier: BF:20:4C:22:DC:6B:05:A0:17:6D:91:13:1F:EA:66:DE:66:A0:18:88
Certificate issuer: /CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Certificate serial: 018CF38F8E6D2A4CE8EC5E3F12910893FCFB
Authority key identifier: 6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/vyBMItxrBaAXbZETH-pm3magGIg.roa
Signing time: Wed 10 Jan 2024 13:28:40 +0000
ROA not before: Wed 10 Jan 2024 13:28:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16125
IP address blocks: 176.221.24.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f3:8f:8e:6d:2a:4c:e8:ec:5e:3f:12:91:08:93:fc:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Validity
Not Before: Jan 10 13:28:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bf204c22dc6b05a0176d91131fea66de66a01888
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ed:f5:cd:fd:c9:02:59:ec:1e:67:a1:63:29:
9d:d8:f0:97:86:6b:a6:19:0e:ac:2c:80:63:7d:47:
77:5b:03:78:d4:48:3c:02:42:5b:c2:72:ac:8b:bf:
2d:bf:50:7b:5e:78:eb:e4:83:87:85:54:b4:d9:7a:
22:77:00:b4:63:f8:60:6a:61:35:31:d5:e7:72:03:
6a:5a:84:3f:77:ee:62:39:34:85:55:b2:1e:6f:72:
bc:31:88:28:31:b9:59:f7:bc:48:8f:07:35:a8:20:
cf:40:05:a5:8b:52:6e:ab:e1:38:e5:5c:2a:47:aa:
6a:1a:74:bd:53:99:94:cc:7a:7f:ea:85:c5:e2:ea:
1a:c9:4c:27:5c:a9:d9:a7:ac:9e:6d:62:c9:93:81:
de:fb:61:7a:ea:51:02:7e:06:5e:49:83:b8:93:37:
72:2e:ad:1d:89:1d:92:f7:06:34:73:f3:17:2d:b1:
a3:4f:a8:6f:be:f2:c3:0b:6e:99:64:b4:cb:d4:2f:
74:78:53:79:45:67:b1:19:74:0e:3f:ec:29:08:86:
f7:55:d6:f7:b0:78:91:82:25:67:50:11:8b:9d:2a:
fe:25:a9:2f:ff:58:89:0f:d4:7c:3f:53:4a:86:ca:
8d:3e:00:41:1e:e8:a0:e3:df:92:b6:a0:e3:bd:fa:
dd:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:20:4C:22:DC:6B:05:A0:17:6D:91:13:1F:EA:66:DE:66:A0:18:88
X509v3 Authority Key Identifier:
keyid:6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/vyBMItxrBaAXbZETH-pm3magGIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.221.24.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:18:ae:0f:1f:24:d5:cd:5c:1d:37:d4:50:ed:7f:61:2d:aa:
be:33:e4:c8:c9:2a:37:60:4c:ff:57:44:5e:94:59:4f:51:ed:
59:b2:11:38:30:1f:61:94:76:0a:c0:f9:5d:1b:a4:c4:1b:03:
bb:59:03:88:61:74:55:91:e1:b3:26:52:6f:30:78:9b:c8:a3:
d4:9c:95:c3:ef:6e:f1:ad:91:24:ab:15:9f:bf:4f:8d:ee:ea:
76:69:62:7b:bd:5d:45:a4:05:47:9b:db:66:20:e2:82:60:b8:
2a:a8:49:d6:3e:7d:4c:e8:1e:8f:34:36:7f:db:7f:b5:c3:c6:
39:c1:11:ef:a4:3a:c1:de:de:55:84:14:a2:39:a3:30:fc:05:
f8:2f:d7:44:bc:51:2e:06:49:9b:cc:c0:fa:82:5b:f4:ea:9c:
d6:27:c2:b8:d0:14:38:f2:cb:59:88:1b:bd:04:df:b4:62:e7:
b9:2a:73:77:75:c4:1c:47:a0:b8:f5:26:ff:10:27:5c:d5:87:
42:58:16:64:f0:37:f5:bf:47:02:3f:6e:be:73:e4:61:00:38:
1b:4c:46:50:0e:c1:03:af:ce:bb:b2:b7:64:72:3d:4c:15:6c:
e1:a9:04:7c:cb:67:99:e3:f9:1c:4c:5a:e1:d9:18:c2:2a:09:
e4:9e:37:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:15:57 2025 by rpki-client