Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/ef2e80-acc4-4f0b-8064-c38005ce6202/1/VTKlyxGsP8KH4cALXJ60tkwggqI.roa
File: VTKlyxGsP8KH4cALXJ60tkwggqI.roa (raw, json)
Hash identifier: 9V1cQ9V7f/TZHUKvtDouxakLw+loRuQbqIvz6dgDmA0=
Subject key identifier: 55:32:A5:CB:11:AC:3F:C2:87:E1:C0:0B:5C:9E:B4:B6:4C:20:82:A2
Certificate issuer: /CN=82d26fcb73607e83a50daead49086b4c1081536d
Certificate serial: 0182F949ED5462EB0E03C48CE09C6C44F8D2
Authority key identifier: 82:D2:6F:CB:73:60:7E:83:A5:0D:AE:AD:49:08:6B:4C:10:81:53:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gtJvy3NgfoOlDa6tSQhrTBCBU20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/ef2e80-acc4-4f0b-8064-c38005ce6202/1/VTKlyxGsP8KH4cALXJ60tkwggqI.roa
Signing time: Thu 01 Sep 2022 13:42:27 +0000
ROA not before: Thu 01 Sep 2022 13:42:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43372
IP address blocks: 185.236.110.0/23 maxlen: 23
185.236.108.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f9:49:ed:54:62:eb:0e:03:c4:8c:e0:9c:6c:44:f8:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82d26fcb73607e83a50daead49086b4c1081536d
Validity
Not Before: Sep 1 13:42:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5532a5cb11ac3fc287e1c00b5c9eb4b64c2082a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:60:fb:81:5a:80:0b:ff:84:80:3f:9e:fb:ae:
c5:8e:4d:cf:50:28:39:13:c0:b4:94:46:c6:67:d4:
24:48:d0:13:cf:f3:a9:b4:f4:47:33:59:52:0d:28:
12:b1:60:ee:a4:c9:d1:54:0f:95:25:6d:51:4c:08:
e0:80:53:69:57:ec:66:16:35:89:74:94:3b:21:ae:
c9:0d:f3:5b:a8:b8:db:52:63:c1:ad:e0:55:f1:35:
d0:b7:85:91:47:3c:33:73:b2:3b:36:fc:44:a9:1c:
c8:8e:36:0c:f4:aa:6f:3f:98:f5:98:47:d6:62:5b:
62:a1:d9:f1:8a:7f:3c:8d:90:0d:af:0b:81:6c:48:
66:b6:31:6c:9d:1b:b6:62:35:61:db:4f:6d:2e:45:
16:64:c8:37:a0:aa:0b:33:f8:3c:01:ba:81:70:fd:
5d:dd:56:11:63:70:30:00:d5:bd:25:ba:7f:5d:da:
7d:c7:77:af:38:3d:5b:71:73:a8:83:60:4c:05:99:
87:3f:d4:f8:f6:c8:a4:37:fe:6e:6c:3b:16:e2:35:
17:7f:cb:b5:06:f6:38:61:47:20:fb:23:85:15:68:
fa:3d:84:bf:a5:bc:04:3a:d3:f0:4b:5d:a3:eb:1f:
27:25:b7:62:5e:92:79:f2:bd:a0:60:7d:f7:31:1d:
90:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:32:A5:CB:11:AC:3F:C2:87:E1:C0:0B:5C:9E:B4:B6:4C:20:82:A2
X509v3 Authority Key Identifier:
keyid:82:D2:6F:CB:73:60:7E:83:A5:0D:AE:AD:49:08:6B:4C:10:81:53:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gtJvy3NgfoOlDa6tSQhrTBCBU20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/ef2e80-acc4-4f0b-8064-c38005ce6202/1/VTKlyxGsP8KH4cALXJ60tkwggqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/ef2e80-acc4-4f0b-8064-c38005ce6202/1/gtJvy3NgfoOlDa6tSQhrTBCBU20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.108.0/22
Signature Algorithm: sha256WithRSAEncryption
a8:20:55:9a:a3:0c:44:70:ab:a3:9c:0f:d2:21:1b:48:04:a5:
ed:bf:0a:10:a9:64:b8:05:9c:71:e9:ff:2f:61:d9:c0:9c:42:
ef:f2:e2:55:23:bf:08:77:67:77:4d:00:db:8e:c2:88:84:4f:
f5:36:9b:b1:cc:d2:b1:5b:b4:3e:77:2f:0d:8b:2b:65:cc:ce:
28:f0:31:c1:5d:00:36:f1:a4:79:79:56:9b:05:2e:90:9c:27:
21:99:77:3c:67:6e:2a:42:9c:c4:be:bf:0e:9f:b3:2e:d1:36:
5b:9e:ad:7b:b5:2d:f0:c6:b4:db:3d:d0:67:d1:51:03:34:81:
d6:f4:1c:dd:75:f2:9c:97:cf:d7:03:ab:e9:7c:63:ef:27:ad:
4d:e7:e4:f6:e5:4b:90:67:56:e7:25:4f:5d:0a:03:5f:64:fd:
dc:9a:62:b2:21:f3:e3:03:26:1e:50:b5:16:6b:47:72:b1:ef:
5b:34:38:40:15:e5:d2:8e:8e:79:e3:ea:83:10:db:fd:6f:6d:
0b:13:c1:ed:da:ea:42:33:59:0c:50:8f:9e:92:c0:c9:75:dd:
de:40:54:f3:ed:b8:46:8b:f0:53:ec:fc:3e:03:1c:9d:53:66:
1c:a9:6a:3e:98:1c:88:b1:60:99:74:18:66:dc:52:64:0e:80:
8d:73:97:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:27:05 2025 by rpki-client