Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/dmzVVNeo91uhbQRipnu9VadPGqo.roa
File: dmzVVNeo91uhbQRipnu9VadPGqo.roa (raw, json)
Hash identifier: ZqnErnSjqGxQYklIHPbIaOcMeg3nOzK7tr2lsNgOxBA=
Subject key identifier: 76:6C:D5:54:D7:A8:F7:5B:A1:6D:04:62:A6:7B:BD:55:A7:4F:1A:AA
Certificate issuer: /CN=568ae803b9ba38855401827b3eece14505a9c0f6
Certificate serial: 01856F79901660324EB714AC0B5C03F79944
Authority key identifier: 56:8A:E8:03:B9:BA:38:85:54:01:82:7B:3E:EC:E1:45:05:A9:C0:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VoroA7m6OIVUAYJ7PuzhRQWpwPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/dmzVVNeo91uhbQRipnu9VadPGqo.roa
Signing time: Sun 01 Jan 2023 22:35:15 +0000
ROA not before: Sun 01 Jan 2023 22:35:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35508
IP address blocks: 81.27.244.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:90:16:60:32:4e:b7:14:ac:0b:5c:03:f7:99:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568ae803b9ba38855401827b3eece14505a9c0f6
Validity
Not Before: Jan 1 22:35:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=766cd554d7a8f75ba16d0462a67bbd55a74f1aaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c3:de:ae:df:cb:86:6b:19:65:a8:71:73:2f:
b1:81:eb:b6:b0:32:3a:c5:a9:f0:68:db:4a:ed:a4:
e7:8e:7c:af:4a:ad:c2:9f:d3:ba:35:d5:2f:d1:39:
33:20:f2:84:37:ca:92:07:f4:3f:4b:e1:26:aa:f0:
c5:fe:8b:eb:cd:79:c4:55:45:a6:07:87:6b:b1:cc:
61:03:73:ca:8e:7c:ed:60:35:38:cc:d3:70:ab:a1:
bb:df:68:4c:e4:4e:50:50:e7:fc:f5:36:63:15:fe:
b4:9c:ef:6a:cc:1d:cb:21:1d:72:f5:af:84:11:f6:
30:0d:24:d6:4a:4d:c3:e8:5b:3e:1b:2e:b1:f5:47:
8c:5d:8f:7a:1e:9e:a5:5b:5c:04:92:dd:10:f1:38:
8f:4c:66:3a:2c:c0:9b:55:9e:20:5f:27:53:cd:ea:
d2:f8:26:69:05:46:04:f9:d2:b9:7d:0b:45:3f:61:
90:f4:ed:79:56:9a:6f:16:7f:8d:4d:da:47:34:0f:
3a:51:1a:dc:be:47:85:17:19:e8:76:f8:33:c8:e5:
39:9f:42:d1:ea:5b:7a:12:18:5a:7f:f9:93:11:fe:
b4:6e:68:96:4e:04:86:0f:a0:8c:db:c0:75:4a:0b:
dc:e1:fa:d3:a4:b9:23:65:a9:29:c4:0b:d7:88:9c:
42:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:6C:D5:54:D7:A8:F7:5B:A1:6D:04:62:A6:7B:BD:55:A7:4F:1A:AA
X509v3 Authority Key Identifier:
keyid:56:8A:E8:03:B9:BA:38:85:54:01:82:7B:3E:EC:E1:45:05:A9:C0:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VoroA7m6OIVUAYJ7PuzhRQWpwPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/dmzVVNeo91uhbQRipnu9VadPGqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/VoroA7m6OIVUAYJ7PuzhRQWpwPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.27.244.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:da:1b:98:fd:4a:4b:6e:71:39:43:5a:47:fc:76:37:92:a2:
20:89:29:0b:2d:2c:53:fd:32:6f:e3:ab:0b:2c:d7:fb:fc:65:
24:bf:fe:40:dd:cc:0d:16:e3:c1:04:1c:78:e2:7b:56:af:e5:
c5:20:b1:e2:a9:94:e9:6e:ab:0f:9d:d2:ca:2b:8f:15:b1:c9:
70:d1:39:20:0a:7b:84:34:39:ca:6e:3a:3e:80:b4:9f:c2:d7:
1d:05:25:6c:58:d4:a9:da:26:7b:0a:d0:f9:f9:c8:01:f6:4e:
5c:3b:b8:cd:ec:e4:85:57:6a:d1:ce:ff:b1:a4:49:6d:6b:9f:
8c:da:19:55:ef:5a:0b:c5:e3:a5:4f:bf:d9:6c:cc:70:8a:d8:
d1:2d:03:08:b2:52:52:c6:0a:65:15:9c:fa:4b:71:ee:76:dc:
8a:b1:b1:85:f4:66:83:55:2b:b9:5d:0b:bb:95:8e:22:f4:8f:
a9:c7:bd:69:84:b0:09:b8:d8:78:ff:04:ac:44:bc:0c:ca:a0:
b5:95:7a:38:4a:1d:3f:08:62:1a:36:67:e7:69:6c:40:45:28:
ae:51:a3:bf:fc:74:00:98:11:43:ad:bb:3e:45:59:13:6a:e2:
9e:80:7b:40:f8:7c:01:34:59:66:71:37:b2:0f:fe:b5:0d:12:
60:c6:b8:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:11:24 2025 by rpki-client