Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/3af1e6-7f6d-4ac8-a022-fab9bab2f894/1/vIVP9g-Bax8gH_JVJBBIxzkjWV0.roa
File: vIVP9g-Bax8gH_JVJBBIxzkjWV0.roa (raw, json)
Hash identifier: 7BZwiv9GoWtMFRWvxHhjLRD+h4goDT4huiH61JW5M5M=
Subject key identifier: BC:85:4F:F6:0F:81:6B:1F:20:1F:F2:55:24:10:48:C7:39:23:59:5D
Certificate issuer: /CN=166dcaf076c3ec103117deaa67990c968bcd644d
Certificate serial: 0136C445
Authority key identifier: 16:6D:CA:F0:76:C3:EC:10:31:17:DE:AA:67:99:0C:96:8B:CD:64:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fm3K8HbD7BAxF96qZ5kMlovNZE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/3af1e6-7f6d-4ac8-a022-fab9bab2f894/1/vIVP9g-Bax8gH_JVJBBIxzkjWV0.roa
Signing time: Mon 14 Feb 2022 09:25:01 +0000
ROA not before: Mon 14 Feb 2022 09:25:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 213.109.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20366405 (0x136c445)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=166dcaf076c3ec103117deaa67990c968bcd644d
Validity
Not Before: Feb 14 09:25:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc854ff60f816b1f201ff255241048c73923595d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4d:74:45:99:fe:ba:75:a1:1a:10:61:ce:5d:
f5:25:7c:68:ad:77:62:8e:88:6c:ca:99:b6:68:66:
7b:c7:b0:b8:f1:c8:8b:1b:74:ae:9c:ec:60:93:38:
55:00:3e:1f:0e:8f:1b:9d:39:bd:ea:03:cc:de:6e:
1b:31:4c:17:a5:da:41:33:1c:ed:b0:06:70:08:d7:
99:1b:33:8c:36:59:ff:67:8d:76:2b:23:9a:ca:63:
2e:55:f6:07:67:dc:89:35:32:14:d9:61:48:ea:06:
c5:ec:80:d6:06:3e:e1:f4:6e:9e:dd:09:27:0a:4d:
1f:09:f6:e1:60:e1:af:40:7a:54:f4:f0:dd:7a:55:
bb:0c:98:5b:71:c4:d4:6f:13:a0:72:53:55:4a:f4:
37:a6:5d:8b:25:7a:dc:62:5a:95:ee:fa:1f:a5:bf:
89:94:f7:a3:a4:63:14:b1:c8:9d:05:69:8a:2c:e0:
1d:7d:b9:ae:04:59:33:f4:ff:51:51:71:10:2c:f8:
a8:14:c8:ce:61:7f:cd:81:87:1b:22:bd:39:4b:1c:
dd:36:3d:b1:42:2d:7d:fd:4b:3d:b0:35:bf:a2:2b:
67:d4:12:27:05:f8:8c:62:6c:5a:cc:50:a9:8e:85:
86:a6:57:a0:a9:9c:b7:f8:74:69:f3:75:07:f1:51:
1b:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:85:4F:F6:0F:81:6B:1F:20:1F:F2:55:24:10:48:C7:39:23:59:5D
X509v3 Authority Key Identifier:
keyid:16:6D:CA:F0:76:C3:EC:10:31:17:DE:AA:67:99:0C:96:8B:CD:64:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fm3K8HbD7BAxF96qZ5kMlovNZE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/3af1e6-7f6d-4ac8-a022-fab9bab2f894/1/vIVP9g-Bax8gH_JVJBBIxzkjWV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/3af1e6-7f6d-4ac8-a022-fab9bab2f894/1/Fm3K8HbD7BAxF96qZ5kMlovNZE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.154.0/24
Signature Algorithm: sha256WithRSAEncryption
45:a0:ef:9f:5b:7b:7b:65:67:19:36:d5:d7:49:6d:d2:0b:3a:
a2:7d:d7:f1:46:e4:93:e4:dc:2d:74:a5:91:d7:22:50:dd:e1:
81:28:e7:e1:71:8e:07:39:79:e7:ef:a7:6f:19:a5:04:92:2f:
79:0c:15:ec:be:f9:5a:b1:a9:59:30:57:45:ec:f2:4e:7f:1f:
c8:37:2f:17:25:36:66:f1:65:ed:c8:43:11:05:14:c4:6e:17:
bd:9a:80:38:9b:4b:55:58:d2:0f:11:32:c4:08:c0:b9:81:5a:
65:e4:ce:3e:8f:a3:dd:5c:19:87:a3:3c:ac:54:0d:e3:28:bd:
b6:02:33:ae:aa:16:7b:6c:eb:7a:73:b7:fa:c1:eb:59:87:52:
75:9b:a9:b8:96:38:b7:72:fb:7e:9b:e8:ac:30:79:84:c4:08:
59:e7:06:a7:09:47:b7:e0:19:d6:a9:25:cf:41:b0:1f:76:b6:
bc:e5:76:35:90:66:1b:59:b3:f4:e4:c2:69:67:e8:a4:ac:60:
6f:d8:8d:a8:30:ad:8a:46:8b:50:1d:e6:6b:08:88:be:a3:5c:
74:41:1d:84:84:09:c0:33:06:51:70:d1:d4:75:44:2f:f4:75:
1d:fa:6b:bb:d5:b0:af:75:4b:56:fd:24:f6:44:d6:c6:73:87:
f0:19:f5:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:09:22 2025 by rpki-client