Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/684f9c-8bb7-4ac5-9b18-a32e6c7c97b1/1/V-FBsit1Rxg_kPCBeWz4_WL81Ew.roa
File: V-FBsit1Rxg_kPCBeWz4_WL81Ew.roa (raw, json)
Hash identifier: +y+odCiKZECEfRraNd0TeXRRPW65x7obUscJ5vn+0E0=
Subject key identifier: 57:E1:41:B2:2B:75:47:18:3F:90:F0:81:79:6C:F8:FD:62:FC:D4:4C
Certificate issuer: /CN=25058f4d7fb3963ac2bea252830f697d1743ee9b
Certificate serial: 0185708CC812A7A6034B0D3F97A18F320041
Authority key identifier: 25:05:8F:4D:7F:B3:96:3A:C2:BE:A2:52:83:0F:69:7D:17:43:EE:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JQWPTX-zljrCvqJSgw9pfRdD7ps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/684f9c-8bb7-4ac5-9b18-a32e6c7c97b1/1/V-FBsit1Rxg_kPCBeWz4_WL81Ew.roa
Signing time: Mon 02 Jan 2023 03:35:52 +0000
ROA not before: Mon 02 Jan 2023 03:35:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25516
IP address blocks: 195.43.52.0/22 maxlen: 22
2001:67c:14e0::/45 maxlen: 45
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:c8:12:a7:a6:03:4b:0d:3f:97:a1:8f:32:00:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25058f4d7fb3963ac2bea252830f697d1743ee9b
Validity
Not Before: Jan 2 03:35:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=57e141b22b7547183f90f081796cf8fd62fcd44c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:fc:a4:76:9c:72:d6:34:04:e9:b6:9d:71:39:
93:19:09:68:82:a5:68:84:e3:0e:ab:1a:71:f4:09:
e2:77:25:a0:aa:3b:06:ab:82:6e:4b:d3:43:ff:65:
b5:17:d0:6b:2c:ba:5c:1c:84:28:10:d4:ec:5b:ec:
95:28:b2:1c:ca:d5:f9:58:25:3c:98:17:4d:7f:f2:
1c:4b:ca:cc:1c:6b:5a:26:d1:ec:a9:d1:3e:ee:3d:
b0:31:0a:11:62:15:71:d2:29:15:e9:75:da:3d:e3:
c0:cb:35:30:f7:8d:cc:88:83:8a:4b:e0:7f:d6:ec:
3d:f3:75:c6:d2:ed:73:09:54:22:3c:f2:a1:50:06:
00:93:0b:e4:a8:5b:f4:ea:3f:81:7f:49:07:40:f5:
14:95:31:ec:75:a8:b4:0e:64:5a:fa:25:2d:39:7f:
1f:31:52:66:b4:11:dd:62:18:11:5c:c3:d0:74:83:
ff:ec:e6:46:c5:53:95:49:ad:db:46:5f:c5:99:f6:
f5:fa:38:c7:1c:b9:b3:10:1c:63:ee:8f:ac:72:5a:
11:63:c2:2f:ab:32:ba:f9:b3:15:42:8f:ac:c6:af:
61:4c:c7:21:5d:4b:28:7a:8e:d8:c2:ee:e7:91:93:
66:63:59:14:a9:30:a0:92:36:6f:a2:75:1d:9e:c3:
b1:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:E1:41:B2:2B:75:47:18:3F:90:F0:81:79:6C:F8:FD:62:FC:D4:4C
X509v3 Authority Key Identifier:
keyid:25:05:8F:4D:7F:B3:96:3A:C2:BE:A2:52:83:0F:69:7D:17:43:EE:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JQWPTX-zljrCvqJSgw9pfRdD7ps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/684f9c-8bb7-4ac5-9b18-a32e6c7c97b1/1/V-FBsit1Rxg_kPCBeWz4_WL81Ew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/684f9c-8bb7-4ac5-9b18-a32e6c7c97b1/1/JQWPTX-zljrCvqJSgw9pfRdD7ps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.43.52.0/22
IPv6:
2001:67c:14e0::/45
Signature Algorithm: sha256WithRSAEncryption
5f:42:d6:35:37:ee:75:f7:4d:c7:22:41:f9:4d:5e:3a:76:40:
cc:7c:d4:33:8b:8a:62:96:28:4f:e8:66:a3:95:49:75:ce:82:
d0:98:20:8d:d1:0c:40:68:72:b3:5a:b7:d3:67:c7:12:51:d0:
19:49:94:76:34:fc:15:bc:2f:8b:3b:e4:93:fa:47:ae:d9:4a:
de:e9:0d:cb:c9:64:fc:3c:c1:7d:4b:f6:12:b8:a4:0a:23:93:
9c:a9:92:aa:a5:02:08:cd:20:70:c7:c8:13:2f:f9:d7:5d:65:
86:9d:b8:f9:7d:1c:89:b3:91:be:f3:c8:e0:0c:2c:72:be:dc:
65:b1:7b:1f:78:b6:12:9d:9f:8d:1b:a3:f2:00:26:58:0f:7d:
68:f0:3d:a6:53:ba:73:bd:23:1e:f1:f6:7a:f5:f9:7d:42:c4:
3f:0f:ee:2b:41:40:c5:63:ba:60:d1:30:b3:c6:e1:6b:a1:9f:
b9:b4:e9:45:3e:13:58:c5:79:8b:19:15:72:09:87:a1:5b:48:
0a:5c:f0:6d:d8:dd:48:29:3f:8b:4b:8d:2a:15:9a:45:56:36:
f9:63:a5:f6:d8:e9:69:5d:e0:ee:16:e5:1a:f7:48:a0:a2:39:
8e:84:fa:e7:f9:b9:42:4a:4a:22:7e:c2:71:d7:48:d0:8a:04:
85:18:56:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:26 2025 by rpki-client