Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/7bca26-200b-4a12-bc86-886ad2ad47ae/1/VbmFJNDwQP4oWONnMBYdc8VoVyQ.roa
File: VbmFJNDwQP4oWONnMBYdc8VoVyQ.roa (raw, json)
Hash identifier: ID62VnGfpFoErl8HlLj9cbtPK9RtUrtLRkB74FrciX0=
Subject key identifier: 55:B9:85:24:D0:F0:40:FE:28:58:E3:67:30:16:1D:73:C5:68:57:24
Certificate issuer: /CN=b88f7019d27dd377706e79087256d5a7937b2ab5
Certificate serial: 021F77DB
Authority key identifier: B8:8F:70:19:D2:7D:D3:77:70:6E:79:08:72:56:D5:A7:93:7B:2A:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uI9wGdJ903dwbnkIclbVp5N7KrU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/7bca26-200b-4a12-bc86-886ad2ad47ae/1/VbmFJNDwQP4oWONnMBYdc8VoVyQ.roa
Signing time: Sat 01 Jan 2022 12:05:18 +0000
ROA not before: Sat 01 Jan 2022 12:05:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206079
IP address blocks: 185.168.180.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35616731 (0x21f77db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b88f7019d27dd377706e79087256d5a7937b2ab5
Validity
Not Before: Jan 1 12:05:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55b98524d0f040fe2858e36730161d73c5685724
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:23:51:e9:39:5b:1a:3c:f9:92:77:7e:94:fe:
fc:fc:cf:08:ed:dc:ec:8e:f0:84:a8:73:9d:83:2e:
88:bb:8b:1f:58:4f:05:41:b2:1d:3c:63:26:19:d5:
13:34:8f:cb:f1:4c:97:5b:fe:95:0d:a2:09:02:0e:
02:dd:03:e4:c3:e1:ec:37:96:9a:eb:2f:67:f0:f2:
8c:5e:83:00:01:88:af:25:4c:90:a0:e4:03:e0:ed:
6f:9d:ec:75:52:78:a7:a4:2c:56:43:80:a5:de:77:
74:3b:55:d4:cc:af:8c:f4:31:78:dd:ef:a3:27:cb:
66:61:a5:d9:ec:8a:b5:c1:c5:6a:c4:bd:cd:c7:ee:
c0:d8:8b:59:8d:6b:ba:4a:1b:8d:f7:37:e5:01:50:
bf:c9:3c:1d:f7:58:2d:e7:cf:63:fb:2f:db:b0:b3:
7b:a6:f7:3d:1e:db:7b:23:5a:6a:8e:d0:7d:4a:7e:
ed:ee:24:22:52:b8:16:c3:ae:89:2f:db:b3:6b:a5:
a9:10:17:58:4f:45:93:d3:48:51:57:9a:46:d1:ee:
1e:72:26:bf:9d:d9:17:85:57:60:72:bb:61:45:9a:
40:f6:22:a8:4f:9f:1e:88:49:03:29:91:9b:04:05:
63:07:a0:87:dd:81:2f:f4:6e:70:67:37:1f:d5:00:
0d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:B9:85:24:D0:F0:40:FE:28:58:E3:67:30:16:1D:73:C5:68:57:24
X509v3 Authority Key Identifier:
keyid:B8:8F:70:19:D2:7D:D3:77:70:6E:79:08:72:56:D5:A7:93:7B:2A:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uI9wGdJ903dwbnkIclbVp5N7KrU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/7bca26-200b-4a12-bc86-886ad2ad47ae/1/VbmFJNDwQP4oWONnMBYdc8VoVyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/7bca26-200b-4a12-bc86-886ad2ad47ae/1/uI9wGdJ903dwbnkIclbVp5N7KrU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.180.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:8b:d7:2d:56:19:74:24:9b:4d:39:4b:9a:c4:6a:f8:92:2a:
8c:13:d4:dd:c3:92:fa:b4:09:bc:dd:e7:29:ac:36:62:a4:d1:
f4:32:23:09:44:4e:74:87:45:a0:0f:ec:62:b8:6c:78:28:41:
9a:e1:57:4b:32:90:13:24:1a:e1:41:f3:ac:a9:3a:01:9b:f6:
9a:89:97:87:6f:ee:a4:14:60:42:4e:4d:b8:32:39:2b:60:38:
2c:93:46:d3:f7:c3:82:38:c2:de:52:6d:20:16:47:28:a1:75:
7b:35:b7:62:3b:ef:e2:13:a9:c8:b7:3c:80:05:ee:27:a6:69:
d5:f0:fb:bc:75:8d:fe:1d:cf:b0:6c:c6:64:f6:e0:9c:d7:b5:
20:10:51:1f:9f:e3:6f:21:1d:59:f9:42:dd:7f:e2:3e:2f:b0:
da:23:7c:15:95:39:5e:11:ad:ed:42:88:03:d9:a3:93:05:6e:
a1:2f:c3:59:ec:c8:08:e0:98:03:f1:f9:6e:68:7d:df:3e:30:
60:ff:9d:e2:c3:45:da:bd:01:d7:b6:61:75:3b:07:ed:c9:6e:
92:b1:04:1a:0d:47:ea:d5:74:4a:cd:6e:53:31:a6:ec:1a:cd:
80:58:2c:7c:b8:4e:9e:1c:28:c8:d9:46:37:09:fd:a1:91:01:
06:d4:8e:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:01 2024 by rpki-client on console-fra.rpki-client.org