Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/VtgrEASz3gPuFm1-iex1M14K4uc.roa
File: VtgrEASz3gPuFm1-iex1M14K4uc.roa (raw, json)
Hash identifier: 9Lt3V+QkJgRGjfmYl58W5rk/3jz5sNqnI/sfe/QF8t0=
Subject key identifier: 56:D8:2B:10:04:B3:DE:03:EE:16:6D:7E:89:EC:75:33:5E:0A:E2:E7
Certificate issuer: /CN=a44c267fa754cd6509e9f807273123bee96c525d
Certificate serial: 01856F8C4B15073DBADC2C556DF811A71F18
Authority key identifier: A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/VtgrEASz3gPuFm1-iex1M14K4uc.roa
Signing time: Sun 01 Jan 2023 22:55:43 +0000
ROA not before: Sun 01 Jan 2023 22:55:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48927
IP address blocks: 85.209.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8c:4b:15:07:3d:ba:dc:2c:55:6d:f8:11:a7:1f:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a44c267fa754cd6509e9f807273123bee96c525d
Validity
Not Before: Jan 1 22:55:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=56d82b1004b3de03ee166d7e89ec75335e0ae2e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:4d:b3:0a:e5:86:bb:e3:aa:e9:37:96:35:05:
59:da:a3:53:9b:e8:15:7a:03:4d:e9:25:74:54:0f:
cf:32:e5:50:cd:9c:74:40:d9:6f:40:d6:c0:c4:44:
76:03:86:ec:84:af:2c:ba:8a:10:ea:a8:ef:34:cb:
1c:48:d8:d3:37:f1:c2:8f:b3:b0:71:d7:74:02:85:
fb:43:40:fa:0c:11:a6:68:d3:31:d0:b8:60:6b:d2:
62:6d:96:a2:75:b7:97:83:9c:2d:9d:c5:99:a8:db:
c9:56:5c:69:51:7d:2b:dc:c4:a6:39:b5:46:0d:2f:
2c:32:e4:f8:8a:51:99:84:0a:f2:68:22:51:8b:e3:
1c:a1:76:06:b2:57:55:da:e8:d9:d6:79:19:67:b8:
bc:a4:13:cc:b6:c7:b9:22:95:2b:79:fc:61:ff:26:
7b:47:07:4f:3a:9a:a2:bf:0f:80:11:e5:14:ae:7a:
5a:48:4c:cb:98:5f:50:67:08:48:50:42:84:07:db:
de:7a:cc:f2:85:f2:35:4b:fa:07:6d:10:09:30:aa:
f2:c4:10:70:cf:48:94:75:6c:47:e6:00:27:43:6a:
5d:90:d4:5f:7d:0c:3b:50:fc:ca:76:10:be:7c:1b:
e4:3a:a3:2b:58:e8:62:5d:2b:3f:d0:59:1c:5f:c3:
23:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D8:2B:10:04:B3:DE:03:EE:16:6D:7E:89:EC:75:33:5E:0A:E2:E7
X509v3 Authority Key Identifier:
keyid:A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/VtgrEASz3gPuFm1-iex1M14K4uc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/pEwmf6dUzWUJ6fgHJzEjvulsUl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.223.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:bb:24:4c:be:d7:df:43:b2:5f:08:ea:e6:af:1c:41:a1:89:
1d:e1:81:b5:8c:47:47:04:25:e4:1b:49:d2:8a:f6:42:65:50:
aa:78:d9:96:b0:01:1a:30:33:8f:7c:8d:94:a0:9e:d5:41:0c:
f6:86:a1:67:2a:be:ec:af:d6:35:87:c8:50:a3:a4:a4:47:b4:
0a:63:56:40:19:9c:2b:80:98:03:d8:6c:bf:87:86:ed:d3:6b:
1a:3d:1e:25:1e:6c:69:e5:6a:6f:43:2a:54:cf:8b:63:48:10:
93:cf:57:85:d6:83:8b:4b:85:a4:cb:21:39:c8:ef:1f:fd:7b:
32:71:0d:17:15:01:21:93:cb:62:bd:a8:7f:8c:11:7b:1d:62:
e8:50:80:cb:9b:46:7c:82:b4:5b:1f:08:10:2c:d6:46:03:3c:
8a:af:d0:d7:69:42:88:76:18:8f:26:22:d0:72:01:9c:c1:21:
87:6b:38:7d:e0:81:70:40:3f:e2:49:7a:1e:1f:e3:02:bb:d5:
d4:20:d5:15:79:2f:4d:c3:ce:f6:f7:37:11:ec:65:ee:fc:b9:
dd:b7:93:7f:ff:83:57:f7:80:3f:59:fd:ac:a8:af:8e:0d:55:
35:91:4a:cd:de:44:68:fe:ed:f8:97:98:00:de:9a:d5:6b:3e:
36:ed:b9:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:08 2024 by rpki-client on console-ams.rpki-client.org