Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/Vvy963jy1r3fVPwD5fBbDflI0sg.roa
File: Vvy963jy1r3fVPwD5fBbDflI0sg.roa (raw, json)
Hash identifier: F/V2e6ZIIXoiPiEK3bmZY2xsnG+Hyz57Vfv3mbBxci8=
Subject key identifier: 56:FC:BD:EB:78:F2:D6:BD:DF:54:FC:03:E5:F0:5B:0D:F9:48:D2:C8
Certificate issuer: /CN=8e747481f2c98fbb70dca8d65c23de4fca37583d
Certificate serial: 042EEC07
Authority key identifier: 8E:74:74:81:F2:C9:8F:BB:70:DC:A8:D6:5C:23:DE:4F:CA:37:58:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jnR0gfLJj7tw3KjWXCPeT8o3WD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/Vvy963jy1r3fVPwD5fBbDflI0sg.roa
Signing time: Mon 04 Jul 2022 19:44:25 +0000
ROA not before: Mon 04 Jul 2022 19:44:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209372
IP address blocks: 84.252.64.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70183943 (0x42eec07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e747481f2c98fbb70dca8d65c23de4fca37583d
Validity
Not Before: Jul 4 19:44:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56fcbdeb78f2d6bddf54fc03e5f05b0df948d2c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:95:b1:0a:30:ba:c2:78:25:5c:d1:4e:0f:15:
e3:ce:71:60:e1:28:21:85:20:5e:ff:1e:8b:60:d3:
33:23:56:43:de:33:46:46:3b:d0:7f:b3:d6:37:7f:
d1:2e:d0:5d:5f:44:38:b6:16:f6:cc:4b:18:fe:a8:
18:b5:55:67:e5:d0:5e:e7:fe:03:b3:dc:a0:6f:bc:
62:98:3f:e2:34:e7:e5:45:84:f6:2c:d8:aa:bf:7a:
78:6a:1f:3c:5c:ad:b8:d3:2a:b0:8a:cd:9e:4b:21:
10:79:3a:c3:07:9b:c0:bd:47:7c:82:cb:c7:69:d9:
7e:54:b6:93:12:16:53:fd:fb:6d:4c:2d:24:90:f8:
e3:2f:db:7e:d1:4d:8a:d7:ba:db:b1:92:37:c0:a8:
83:73:89:a3:4d:56:b9:59:b8:80:ca:d2:af:a5:32:
13:de:61:6a:96:d3:06:0a:b1:5c:6e:71:3f:0a:55:
af:cb:ab:d1:a1:57:e3:ee:ca:a6:c3:f0:b1:1e:49:
e2:8c:bc:2f:37:94:c1:db:05:d6:99:7d:0a:ba:12:
4f:ef:55:a6:06:5e:2e:24:37:15:df:96:ac:03:76:
08:a4:d0:da:f5:02:1e:e2:d4:e3:0d:c0:79:d4:bc:
cc:f2:df:2d:75:1a:f4:27:5f:b3:83:76:3b:ff:e7:
25:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:FC:BD:EB:78:F2:D6:BD:DF:54:FC:03:E5:F0:5B:0D:F9:48:D2:C8
X509v3 Authority Key Identifier:
keyid:8E:74:74:81:F2:C9:8F:BB:70:DC:A8:D6:5C:23:DE:4F:CA:37:58:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jnR0gfLJj7tw3KjWXCPeT8o3WD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/Vvy963jy1r3fVPwD5fBbDflI0sg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/jnR0gfLJj7tw3KjWXCPeT8o3WD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.252.64.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:71:2c:a1:9b:b4:3c:89:33:3b:cd:27:b7:4b:d1:ea:dc:50:
ea:c9:82:2b:2a:9c:fc:ec:5d:33:57:d9:17:da:43:63:a0:75:
f4:ef:15:ed:44:2b:cb:49:18:64:af:9e:fa:71:cc:80:e9:c2:
cd:55:31:75:ee:97:e2:41:78:22:40:0f:82:79:d2:4b:4a:bc:
b9:88:6f:b6:15:61:42:36:14:a1:c6:93:ef:ec:2d:6f:a2:88:
fc:9c:e7:7e:31:95:b3:a3:4c:4a:48:0e:db:7f:c7:cb:a7:5d:
af:79:1c:88:8b:63:32:25:b0:df:48:56:1b:8d:59:12:bf:00:
a6:86:22:27:34:3f:0a:e2:83:ba:8f:11:b8:8b:9c:09:c3:b8:
7e:c0:37:0a:5a:39:98:98:de:db:9b:b9:c4:40:7e:85:08:6e:
3a:48:cb:8c:e3:c4:87:20:6a:f6:f3:bf:fd:d6:f8:1c:a7:6e:
34:0d:cc:b5:31:0c:31:5e:e2:aa:11:34:9a:85:5f:94:d3:24:
f8:99:38:05:bb:d4:90:c5:53:34:a3:8b:76:e6:3b:19:c1:cb:
d6:f0:4c:a7:f1:f8:13:25:2a:36:de:10:a8:96:4d:18:47:26:
52:ac:82:80:53:b0:0f:0b:55:49:09:7c:c6:21:ec:62:c7:70:
96:a8:16:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:35:01 2025 by rpki-client