Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/VmEA4teJVGwk8ovbmbgnNuk-BVI.roa
File: VmEA4teJVGwk8ovbmbgnNuk-BVI.roa (raw, json)
Hash identifier: tK+khJgEbgFawnITbgPBovg+jAt2Jj83SIcSwh2fclg=
Subject key identifier: 56:61:00:E2:D7:89:54:6C:24:F2:8B:DB:99:B8:27:36:E9:3E:05:52
Certificate issuer: /CN=a7fd3f89335dcf828666b28fad8ae993bd448878
Certificate serial: 018A47E08BD85AD9E57D2733C5FE8A0C90D1
Authority key identifier: A7:FD:3F:89:33:5D:CF:82:86:66:B2:8F:AD:8A:E9:93:BD:44:88:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p_0_iTNdz4KGZrKPrYrpk71EiHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/VmEA4teJVGwk8ovbmbgnNuk-BVI.roa
Signing time: Wed 30 Aug 2023 19:16:52 +0000
ROA not before: Wed 30 Aug 2023 19:16:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42675
IP address blocks: 194.32.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:47:e0:8b:d8:5a:d9:e5:7d:27:33:c5:fe:8a:0c:90:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7fd3f89335dcf828666b28fad8ae993bd448878
Validity
Not Before: Aug 30 19:16:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=566100e2d789546c24f28bdb99b82736e93e0552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:31:b5:e8:5b:ae:c1:52:19:5e:41:4c:33:9e:
72:25:18:9d:6c:3c:2d:3f:c6:5f:93:1d:02:b9:5e:
e7:a9:76:da:76:80:29:de:bf:37:cb:87:13:56:4a:
8b:e3:2c:01:03:44:e7:9d:f9:0b:25:bb:73:b5:93:
c3:cf:0e:2e:9f:38:95:de:31:91:f8:e6:6a:6c:57:
0a:b9:b9:a5:67:8a:f8:86:f5:aa:08:46:f9:62:7a:
13:a2:c4:0a:05:d6:24:96:d1:11:e3:a8:d7:89:e0:
3f:50:58:90:eb:40:0e:a9:d6:3a:2b:3b:52:52:70:
4a:52:b2:c6:fd:fa:8e:31:56:a0:90:4b:d2:3f:6e:
a9:72:d5:70:91:01:23:73:03:7d:2c:13:a6:da:c1:
d2:26:82:56:55:ea:74:b5:b8:ad:c0:ae:80:cd:d0:
c7:c0:13:19:5e:22:d1:1e:9b:32:37:ab:2b:e0:62:
51:de:76:b7:91:01:d5:de:fc:12:2d:ca:e0:fd:64:
7d:6e:7e:e1:90:45:4d:f4:71:eb:ab:f7:32:54:3e:
54:fb:7a:c3:54:7f:c3:11:7b:41:df:55:41:e7:3f:
cd:67:55:d2:6e:11:81:97:68:a3:1f:9f:97:c7:6b:
9f:ff:70:a3:90:4d:d8:3d:c6:bb:00:f0:3d:4b:2f:
03:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:61:00:E2:D7:89:54:6C:24:F2:8B:DB:99:B8:27:36:E9:3E:05:52
X509v3 Authority Key Identifier:
keyid:A7:FD:3F:89:33:5D:CF:82:86:66:B2:8F:AD:8A:E9:93:BD:44:88:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p_0_iTNdz4KGZrKPrYrpk71EiHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/VmEA4teJVGwk8ovbmbgnNuk-BVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/p_0_iTNdz4KGZrKPrYrpk71EiHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.32.147.0/24
Signature Algorithm: sha256WithRSAEncryption
31:93:55:ba:e5:90:77:9f:73:60:b6:6b:5a:c4:83:02:cf:b2:
e4:8b:89:97:2a:1d:e0:ba:7b:c5:fa:00:c1:b3:33:51:80:27:
be:46:2e:c9:2c:c7:a0:c8:9f:5e:71:f5:61:24:e1:5f:9d:ce:
7f:50:36:b3:82:58:26:44:f4:fc:be:fb:d1:5b:2d:f5:d7:ef:
b8:ef:51:6d:3e:45:10:88:3d:df:bb:1f:bc:28:1e:fa:1a:f7:
a4:6b:e5:d8:7c:1a:b5:11:c5:8b:36:a4:fc:06:d0:b2:7c:08:
95:09:5e:2d:4a:29:30:10:c0:70:46:35:62:a2:74:80:bc:0c:
81:5b:da:f0:e8:63:77:58:9f:4a:11:c9:e8:15:e9:1b:48:98:
e0:4b:df:bd:0c:97:71:4b:0a:b8:6f:71:42:64:93:0b:d7:1e:
dd:01:47:4b:75:a1:97:24:a5:9f:01:50:22:da:46:17:96:b1:
d4:96:39:9e:46:7f:c7:0c:f0:56:a1:8b:70:f7:7d:a4:f8:38:
98:10:95:96:b3:d9:d2:1d:6e:58:d9:f0:f6:d4:5e:75:7d:7c:
d6:16:4c:5a:57:bd:04:c8:99:d2:80:f2:94:92:3e:48:68:d7:
34:10:b0:4d:7f:58:f9:69:93:3a:5e:56:7b:75:bc:a4:4c:34:
ea:9a:68:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:26:59 2025 by rpki-client