Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/3082bf-7292-4d18-873b-c00a2ebeea11/1/VAS83pGFLdhSI13nDMWqgaqSriY.roa
File: VAS83pGFLdhSI13nDMWqgaqSriY.roa (raw, json)
Hash identifier: IL+9azcsBnQxT1rpzJi+nnFF659Ynk8NIhsSE8HlvSQ=
Subject key identifier: 54:04:BC:DE:91:85:2D:D8:52:23:5D:E7:0C:C5:AA:81:AA:92:AE:26
Certificate issuer: /CN=4d9ce8087b7d84eac80211fa85f511a28c358b05
Certificate serial: FB95A5
Authority key identifier: 4D:9C:E8:08:7B:7D:84:EA:C8:02:11:FA:85:F5:11:A2:8C:35:8B:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TZzoCHt9hOrIAhH6hfURoow1iwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/3082bf-7292-4d18-873b-c00a2ebeea11/1/VAS83pGFLdhSI13nDMWqgaqSriY.roa
Signing time: Sat 01 Jan 2022 08:06:12 +0000
ROA not before: Sat 01 Jan 2022 08:06:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57271
IP address blocks: 185.202.109.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16487845 (0xfb95a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d9ce8087b7d84eac80211fa85f511a28c358b05
Validity
Not Before: Jan 1 08:06:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5404bcde91852dd852235de70cc5aa81aa92ae26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:82:c4:37:91:98:e1:58:9d:d0:b2:c9:c8:a2:
e1:d9:2e:48:78:7a:4f:3c:9d:15:20:80:1d:e5:d6:
56:e2:67:da:ad:09:7e:6f:44:d9:cc:38:34:14:cc:
d3:09:e1:9b:76:4b:be:2f:42:1a:d4:35:94:ce:17:
c3:2a:5c:41:39:b1:f7:b4:43:90:46:f2:2d:f7:35:
63:5f:c1:94:ec:89:1c:fe:3a:d4:97:28:2a:86:16:
da:cf:7e:07:aa:f9:97:c5:4a:88:a9:47:cc:36:54:
81:66:27:a8:b5:cb:2d:b6:32:80:e2:d8:b9:b9:33:
ee:15:38:15:ee:27:fc:51:6f:ba:14:fe:98:e2:4b:
2e:85:cc:16:5c:74:31:6e:18:e0:8f:d3:4a:c7:a4:
6e:85:e9:5d:2c:6d:ea:34:7f:13:08:48:42:8e:e0:
a3:b3:44:15:32:26:5f:b8:3e:3d:8c:ba:43:c9:06:
5a:c6:07:13:b6:ef:b0:6e:81:f1:33:f8:17:af:e6:
cd:c8:43:ee:cc:61:db:f8:78:75:41:f5:ab:e6:04:
08:7c:9a:6b:a9:15:c8:c3:39:be:05:67:c8:67:a2:
74:9f:df:10:66:66:e4:09:1f:94:9c:50:fb:55:ef:
78:f4:45:01:10:56:47:8b:e6:e9:b8:9c:b9:6f:67:
d0:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:04:BC:DE:91:85:2D:D8:52:23:5D:E7:0C:C5:AA:81:AA:92:AE:26
X509v3 Authority Key Identifier:
keyid:4D:9C:E8:08:7B:7D:84:EA:C8:02:11:FA:85:F5:11:A2:8C:35:8B:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TZzoCHt9hOrIAhH6hfURoow1iwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/3082bf-7292-4d18-873b-c00a2ebeea11/1/VAS83pGFLdhSI13nDMWqgaqSriY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/3082bf-7292-4d18-873b-c00a2ebeea11/1/TZzoCHt9hOrIAhH6hfURoow1iwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.109.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:81:c1:2a:ef:19:69:60:f8:7b:ed:2d:79:f9:7e:9b:dd:73:
f2:ec:3e:01:3c:52:0f:b5:73:34:4f:1e:89:5d:ab:9d:92:b5:
b3:02:12:e1:92:f1:10:36:bc:63:6d:c7:51:13:8c:b9:40:a8:
b4:c4:06:f6:a8:ba:e3:b1:ec:5b:c9:85:be:04:41:90:1a:6e:
16:49:10:80:b3:04:d9:f1:86:e0:99:7d:5d:72:13:0e:0b:3c:
1c:04:b5:ee:22:85:18:d3:ab:1c:45:2b:0d:5f:e6:cd:11:61:
e5:6e:0c:b8:b9:c6:99:a8:16:c7:2f:7a:0e:f1:2c:56:8d:4e:
cf:1b:9f:ed:f7:a7:e1:f2:5e:9a:ec:b8:92:6e:70:1e:f8:69:
36:ff:2e:0f:41:05:52:a1:d9:6b:41:e1:b4:b7:26:1d:64:fb:
3a:0d:23:bf:d3:b4:dc:5d:45:2c:ce:36:ca:5a:3f:d7:79:7b:
d0:f5:26:6d:86:56:a8:c7:4b:7e:f4:b8:53:c8:20:13:f5:15:
3c:63:14:af:6d:19:eb:4f:09:34:55:64:11:3a:22:26:c6:79:
c9:bc:00:a3:f1:de:bd:a5:9d:76:15:f9:e0:f2:0a:be:55:88:
1a:2f:4b:60:84:2a:b7:4a:fa:9a:55:45:c6:24:15:16:42:b8:
58:62:02:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:44 2024 by rpki-client on console-ams.rpki-client.org