Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/e4ae61-f89a-4395-9bed-f4ddf189a476/1/vzrxf_jLmazxCmxaKB7sws_vkXM.roa
File: vzrxf_jLmazxCmxaKB7sws_vkXM.roa (raw, json)
Hash identifier: d8zQTmndslJepJooz+eF41b9P6wYfbXoh7S+NTs/dCw=
Subject key identifier: BF:3A:F1:7F:F8:CB:99:AC:F1:0A:6C:5A:28:1E:EC:C2:CF:EF:91:73
Certificate issuer: /CN=7c4cd6df4eb5bf896981c31fdad69f7223cb40e7
Certificate serial: 02DCD8F1
Authority key identifier: 7C:4C:D6:DF:4E:B5:BF:89:69:81:C3:1F:DA:D6:9F:72:23:CB:40:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fEzW3061v4lpgcMf2tafciPLQOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/e4ae61-f89a-4395-9bed-f4ddf189a476/1/vzrxf_jLmazxCmxaKB7sws_vkXM.roa
Signing time: Sat 01 Jan 2022 15:01:26 +0000
ROA not before: Sat 01 Jan 2022 15:01:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57330
IP address blocks: 2001:67c:2964::/48 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48027889 (0x2dcd8f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c4cd6df4eb5bf896981c31fdad69f7223cb40e7
Validity
Not Before: Jan 1 15:01:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf3af17ff8cb99acf10a6c5a281eecc2cfef9173
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:9e:12:0e:1b:f0:d7:7a:d0:e5:ae:b9:78:24:
57:8d:57:9b:b7:fe:b2:1d:1b:5e:41:f8:f6:b6:b4:
36:54:24:89:be:59:b4:55:dd:11:38:a8:4e:32:84:
78:b5:8c:26:bc:91:8b:14:40:6a:e3:a7:2c:f1:bb:
56:f1:02:de:48:f7:e8:ee:60:55:1c:73:1f:ae:5f:
5d:13:39:41:24:59:ea:b2:58:83:50:6e:01:cf:5d:
18:17:2c:58:ee:6d:db:9d:81:0c:51:9b:de:6b:37:
9f:10:1f:16:75:3e:3c:fe:86:7f:d0:ef:04:96:98:
10:63:5a:5f:c6:98:72:c0:e1:ae:8b:e4:bf:d0:be:
db:da:26:a2:40:74:f7:77:28:5e:54:66:f2:ad:43:
40:33:45:d3:28:11:a4:c3:c5:a6:55:20:b9:9c:fb:
8d:4f:1b:5c:1c:b7:fd:16:55:15:e4:1f:4d:b6:3e:
bd:55:f7:6b:12:22:ee:c8:78:3f:eb:6a:28:72:31:
21:05:78:46:62:9f:a5:0b:6b:10:c1:02:90:da:ab:
ca:c9:62:74:19:71:44:ad:44:57:d0:df:96:09:21:
9b:6f:69:69:47:18:80:0d:d2:48:f1:a3:b0:54:a9:
47:c0:e9:b5:ea:19:11:f2:20:49:cc:d8:64:2e:97:
91:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:3A:F1:7F:F8:CB:99:AC:F1:0A:6C:5A:28:1E:EC:C2:CF:EF:91:73
X509v3 Authority Key Identifier:
keyid:7C:4C:D6:DF:4E:B5:BF:89:69:81:C3:1F:DA:D6:9F:72:23:CB:40:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fEzW3061v4lpgcMf2tafciPLQOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/e4ae61-f89a-4395-9bed-f4ddf189a476/1/vzrxf_jLmazxCmxaKB7sws_vkXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/e4ae61-f89a-4395-9bed-f4ddf189a476/1/fEzW3061v4lpgcMf2tafciPLQOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2964::/48
Signature Algorithm: sha256WithRSAEncryption
0e:74:aa:68:8b:13:32:42:ad:af:02:b1:80:b1:a5:0c:83:a4:
d4:7c:17:b9:c0:ac:9c:c1:3f:58:69:36:54:be:f2:ae:9f:58:
d1:95:3c:0f:e7:51:bb:0c:cd:b0:9c:57:52:75:c7:37:54:e7:
54:9b:80:2a:b7:04:74:d0:5f:20:bf:e1:3b:1b:d4:44:33:62:
d1:c7:f0:70:cc:f3:7f:f3:f2:45:ef:33:72:09:5d:45:ae:df:
ae:26:24:99:d4:31:a2:20:d4:cf:9d:fc:77:27:f1:bc:76:32:
73:48:dd:91:41:44:04:80:af:a9:58:cd:c5:8b:b0:03:6b:18:
61:62:21:41:2b:5a:a7:59:5c:e8:4e:18:93:61:c6:8a:3e:38:
fd:1c:f5:31:54:8d:7a:9b:ab:28:b5:5b:27:9e:14:6b:57:4a:
9f:a9:5b:18:25:7a:08:52:b6:22:e0:63:13:eb:f3:eb:76:d1:
6b:d0:9e:27:1a:8d:67:52:5b:4a:ef:40:27:fb:0c:fa:81:fc:
4a:38:42:bb:bb:ef:53:fc:b0:46:db:9b:74:80:20:4a:bf:99:
00:64:10:66:d9:5c:d6:25:81:15:63:da:1c:82:4e:cd:fb:5b:
4e:ce:ad:25:f8:c1:03:3e:93:da:11:f5:8b:91:e1:f8:2a:30:
1b:76:e0:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:28 2024 by rpki-client on console-fra.rpki-client.org