Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/ade452-26e3-4cb2-8c20-22a32596fc1b/1/VVKDOacrNUJf8nvn-gfXFWa7yJA.roa
File: VVKDOacrNUJf8nvn-gfXFWa7yJA.roa (raw, json)
Hash identifier: uKQpwgaqjofo2ddwNllusOW9rjCdBe5fc3CincgNbzs=
Subject key identifier: 55:52:83:39:A7:2B:35:42:5F:F2:7B:E7:FA:07:D7:15:66:BB:C8:90
Certificate issuer: /CN=34bb384aa9d0aac029f2b2f4015c2e318eb8aca4
Certificate serial: 01892FC2002B3EA536F1A822517F41218717
Authority key identifier: 34:BB:38:4A:A9:D0:AA:C0:29:F2:B2:F4:01:5C:2E:31:8E:B8:AC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NLs4SqnQqsAp8rL0AVwuMY64rKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/ade452-26e3-4cb2-8c20-22a32596fc1b/1/VVKDOacrNUJf8nvn-gfXFWa7yJA.roa
Signing time: Fri 07 Jul 2023 09:49:50 +0000
ROA not before: Fri 07 Jul 2023 09:49:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 146.19.80.0/24 maxlen: 24
2a12:6500::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2f:c2:00:2b:3e:a5:36:f1:a8:22:51:7f:41:21:87:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34bb384aa9d0aac029f2b2f4015c2e318eb8aca4
Validity
Not Before: Jul 7 09:49:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55528339a72b35425ff27be7fa07d71566bbc890
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:f6:14:a5:10:2e:37:e6:d3:85:97:78:ca:cd:
4a:f7:3e:7f:c9:ef:24:87:1e:d0:91:d9:8f:18:67:
bd:a8:94:c0:8c:7a:ed:2f:76:1e:0e:3c:11:a8:ee:
4c:3c:6d:e3:c7:76:22:c2:da:a5:68:04:8e:4d:9e:
b9:e7:fe:c0:bd:96:45:d0:ee:c2:5d:87:e6:28:fd:
bf:a6:05:f3:71:ea:25:36:e3:2e:25:76:4d:74:97:
1f:21:37:5b:4f:08:57:f0:b2:1d:fd:9a:75:ef:ff:
84:8a:d8:f6:d2:9e:35:b9:28:0c:cc:94:90:e0:23:
f8:af:d0:ae:db:52:79:3d:73:f7:53:3b:27:7c:ab:
87:5e:3f:00:d1:bc:34:0a:2a:17:67:aa:e1:3e:0d:
7c:ae:eb:a4:e4:e3:25:60:7a:73:f3:a2:c4:e6:b9:
b4:9e:bc:1b:9c:00:c9:81:db:d1:5b:7b:f1:79:f1:
9d:1b:a7:6c:65:9a:8c:90:a7:1e:31:87:18:3b:14:
b9:b0:0f:e9:f4:64:94:69:41:e8:1e:63:91:fc:00:
06:e2:42:2b:8a:eb:90:ab:c5:63:a6:56:45:51:c9:
58:f6:c7:ec:eb:84:68:d4:dc:99:48:db:41:b5:b9:
a1:53:95:74:6a:d1:4c:bf:5c:f1:cc:e4:22:59:56:
8b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:52:83:39:A7:2B:35:42:5F:F2:7B:E7:FA:07:D7:15:66:BB:C8:90
X509v3 Authority Key Identifier:
keyid:34:BB:38:4A:A9:D0:AA:C0:29:F2:B2:F4:01:5C:2E:31:8E:B8:AC:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NLs4SqnQqsAp8rL0AVwuMY64rKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/ade452-26e3-4cb2-8c20-22a32596fc1b/1/VVKDOacrNUJf8nvn-gfXFWa7yJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/ade452-26e3-4cb2-8c20-22a32596fc1b/1/NLs4SqnQqsAp8rL0AVwuMY64rKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.80.0/24
IPv6:
2a12:6500::/32
Signature Algorithm: sha256WithRSAEncryption
9d:74:fd:38:42:38:ea:3c:0d:6c:a1:6a:b1:73:0a:c7:d3:c0:
8f:49:f1:83:cb:6b:39:3c:17:57:06:27:77:1c:a8:55:0a:cc:
1c:db:21:bb:1d:57:56:4b:dc:41:58:bd:4f:79:a1:58:bb:fb:
01:6a:dd:cb:91:e6:a6:06:4b:1b:2b:12:e0:03:9d:0f:e2:14:
66:42:56:c4:0e:87:e0:3c:05:0a:0f:13:32:bd:76:32:0d:00:
ca:e3:84:da:43:e7:cd:d6:76:fa:36:20:e9:de:fb:f1:67:12:
60:4a:08:bd:bf:53:87:0d:f4:24:73:f2:8b:1c:ed:78:ed:f6:
08:8c:8d:d5:d7:34:13:d2:40:1d:5c:4b:25:7f:a8:8b:05:32:
1d:5a:5b:de:c0:f0:ac:55:d9:2a:5d:de:94:4e:94:70:78:75:
63:1e:f1:fb:b1:04:0b:0e:39:77:93:0c:b7:f7:85:49:67:cc:
db:5f:50:35:d9:50:cd:aa:ad:ac:51:cb:39:a9:e3:82:84:83:
db:21:e7:5c:df:e3:f0:3d:0c:1a:f4:cd:05:41:ec:a7:b2:86:
fe:2e:86:c9:40:25:b0:5c:ef:bb:c9:0e:2e:a2:65:63:9c:a4:
6c:10:da:71:38:43:f2:c4:bc:dd:2d:c1:38:69:a7:83:52:40:
ee:da:a6:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:15:05 2025 by rpki-client