Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/4da5fc-3174-4f17-a9d5-f583107c898f/1/Vnx7OL9TDRcTHfBnh7ETT3b09S8.roa
File: Vnx7OL9TDRcTHfBnh7ETT3b09S8.roa (raw, json)
Hash identifier: HoYgnWaD5cNHWXoNLMrEyEvqjFfLX+pLLgAAPE5my54=
Subject key identifier: 56:7C:7B:38:BF:53:0D:17:13:1D:F0:67:87:B1:13:4F:76:F4:F5:2F
Certificate issuer: /CN=b06c430b61be7a380191cd5dfd105c3af21482fc
Certificate serial: 14AF4D
Authority key identifier: B0:6C:43:0B:61:BE:7A:38:01:91:CD:5D:FD:10:5C:3A:F2:14:82:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sGxDC2G-ejgBkc1d_RBcOvIUgvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/4da5fc-3174-4f17-a9d5-f583107c898f/1/Vnx7OL9TDRcTHfBnh7ETT3b09S8.roa
Signing time: Sat 01 Jan 2022 01:56:01 +0000
ROA not before: Sat 01 Jan 2022 01:56:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59432
IP address blocks: 45.156.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1355597 (0x14af4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b06c430b61be7a380191cd5dfd105c3af21482fc
Validity
Not Before: Jan 1 01:56:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=567c7b38bf530d17131df06787b1134f76f4f52f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e3:69:dd:ac:66:6e:1e:09:65:5a:dd:73:7e:
d0:8e:27:2a:7a:81:a0:bb:23:7f:b5:f8:76:ce:07:
ea:46:a7:4e:68:74:f6:39:0c:f2:84:ee:e4:4f:dc:
86:66:97:d5:05:8a:54:c9:93:96:d2:16:65:8a:98:
da:ce:dd:39:ed:72:fc:58:b2:9b:1e:44:18:6d:d9:
07:6d:3b:82:8f:90:8a:3f:18:f2:44:17:10:ef:3f:
0d:53:ef:17:fe:7d:c1:4e:8e:ee:9a:e9:99:74:6d:
c1:17:85:43:4d:7c:fc:44:8c:76:47:10:1a:e5:5b:
be:bc:c8:a5:9c:7d:71:bb:1c:ec:00:2a:da:d0:45:
0b:60:4f:43:45:bf:82:69:fd:ba:84:5b:aa:ce:2c:
c8:81:ab:9d:41:2f:58:2a:48:71:d7:d5:b1:81:20:
48:32:ee:00:94:1e:cb:8d:b3:7a:36:b8:0a:02:0a:
d7:4e:d5:88:e5:1d:70:e8:fc:9b:9d:ac:6c:c2:b7:
70:87:9f:db:93:95:2c:e7:49:30:65:7e:4d:8d:eb:
f2:56:eb:cf:73:b1:20:99:b1:7a:d0:5e:ca:79:a0:
c8:14:95:34:c1:8f:34:08:4b:7e:4a:18:4c:0c:3d:
c0:5d:7d:db:cc:57:a8:db:45:c1:c3:d7:67:2f:5a:
96:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:7C:7B:38:BF:53:0D:17:13:1D:F0:67:87:B1:13:4F:76:F4:F5:2F
X509v3 Authority Key Identifier:
keyid:B0:6C:43:0B:61:BE:7A:38:01:91:CD:5D:FD:10:5C:3A:F2:14:82:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sGxDC2G-ejgBkc1d_RBcOvIUgvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/4da5fc-3174-4f17-a9d5-f583107c898f/1/Vnx7OL9TDRcTHfBnh7ETT3b09S8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/4da5fc-3174-4f17-a9d5-f583107c898f/1/sGxDC2G-ejgBkc1d_RBcOvIUgvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.116.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:4a:6b:32:f5:db:87:ab:19:82:a4:fe:9e:67:af:4d:bf:c0:
50:57:24:d0:78:73:b9:15:ac:21:26:c2:cd:69:c5:55:5d:3d:
9d:65:e1:4e:3d:bf:bd:ff:14:d5:8f:72:f3:58:b4:54:27:b2:
7f:4a:09:85:e7:47:47:53:2b:cc:7a:c2:e6:2e:d6:ca:88:c0:
56:19:53:10:cd:c5:cd:e1:f6:25:56:46:80:67:b2:0a:94:77:
36:ad:a5:d7:96:db:44:93:ce:f0:31:97:dd:8d:04:7b:1f:ef:
51:77:60:54:de:44:a0:14:b3:d6:1a:86:f1:6f:4f:6f:e1:f3:
6a:5b:d3:df:57:da:00:69:a4:14:7f:77:f4:8d:4c:9c:6b:f2:
cc:b5:54:7b:43:94:40:86:60:2e:b9:38:38:39:fb:58:5c:15:
30:bd:22:1f:cb:27:c5:cf:c9:e5:cc:81:7f:8a:eb:a0:69:32:
f5:38:d6:86:7c:94:59:90:c7:d3:4a:57:78:df:82:40:c4:27:
68:4b:9f:04:43:54:8a:3a:2a:fe:e0:90:64:82:67:14:d4:69:
47:69:4d:b1:66:a3:af:a8:57:6f:4b:32:3b:e0:92:76:d6:d4:
3e:a4:50:bb:e8:c0:1b:a2:64:90:1f:13:9a:2e:5c:5f:10:16:
a6:4e:05:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:05 2025 by rpki-client