Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/d320cb-5519-4c82-af25-3377009e773a/1/VN_pzyTSbeQwhN8T9cO5GHevKf8.roa
File: VN_pzyTSbeQwhN8T9cO5GHevKf8.roa (raw, json)
Hash identifier: cASY7YAEeRddAMmC3cpuonZlB/+mnVi7agnE9kD1PpU=
Subject key identifier: 54:DF:E9:CF:24:D2:6D:E4:30:84:DF:13:F5:C3:B9:18:77:AF:29:FF
Certificate issuer: /CN=9ff062b6f4dfc55351774efeb1290b9c2dd8a8c6
Certificate serial: 01872833B1B68CBBB9BC0C6A5B7061F1E5A0
Authority key identifier: 9F:F0:62:B6:F4:DF:C5:53:51:77:4E:FE:B1:29:0B:9C:2D:D8:A8:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n_BitvTfxVNRd07-sSkLnC3YqMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/d320cb-5519-4c82-af25-3377009e773a/1/VN_pzyTSbeQwhN8T9cO5GHevKf8.roa
Signing time: Tue 28 Mar 2023 12:31:29 +0000
ROA not before: Tue 28 Mar 2023 12:31:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205262
IP address blocks: 194.156.72.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:28:33:b1:b6:8c:bb:b9:bc:0c:6a:5b:70:61:f1:e5:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ff062b6f4dfc55351774efeb1290b9c2dd8a8c6
Validity
Not Before: Mar 28 12:31:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=54dfe9cf24d26de43084df13f5c3b91877af29ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:a2:09:56:5f:98:ee:e4:d0:af:e1:7d:7e:28:
3d:ca:f5:2f:95:91:b4:43:13:07:b4:bc:d4:2f:30:
34:5d:0d:5f:f9:68:cb:68:72:9b:d3:42:38:61:75:
2e:87:8e:5f:7a:9b:d5:fd:a9:e5:c0:0d:38:48:47:
17:b0:f5:60:61:65:36:b0:d3:44:e1:ad:4f:20:96:
0d:4c:63:99:2e:d2:5a:15:81:ff:79:f9:91:68:5f:
85:18:e7:aa:62:f5:ac:1e:bc:b8:e9:fa:c0:ae:df:
1d:0d:66:a4:6a:17:07:37:3a:e7:8b:3e:3a:9f:01:
3a:ea:e4:2e:56:85:bc:86:b0:c3:ea:e6:0d:6d:a6:
f1:ad:17:5a:e7:27:78:c3:03:88:a0:ce:b3:77:2d:
08:15:34:ca:34:b3:e2:67:7f:2d:f0:8e:9f:ff:bb:
a0:e6:cf:e9:36:be:4e:62:ab:8e:e9:ee:dd:09:0f:
57:f7:97:b1:35:3a:ef:ed:e2:8a:0b:5d:73:4f:2e:
b8:32:b6:d4:09:c0:a7:26:68:39:0f:10:25:13:95:
8d:b5:1d:52:98:b2:f3:65:7e:39:24:d0:6d:dd:42:
32:be:d8:db:b0:27:0c:11:3f:a8:cc:22:92:1c:9f:
ce:65:d9:d4:96:c0:ab:bf:ba:7a:8a:2b:53:22:9d:
93:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:DF:E9:CF:24:D2:6D:E4:30:84:DF:13:F5:C3:B9:18:77:AF:29:FF
X509v3 Authority Key Identifier:
keyid:9F:F0:62:B6:F4:DF:C5:53:51:77:4E:FE:B1:29:0B:9C:2D:D8:A8:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n_BitvTfxVNRd07-sSkLnC3YqMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/d320cb-5519-4c82-af25-3377009e773a/1/VN_pzyTSbeQwhN8T9cO5GHevKf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/d320cb-5519-4c82-af25-3377009e773a/1/n_BitvTfxVNRd07-sSkLnC3YqMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.156.72.0/22
Signature Algorithm: sha256WithRSAEncryption
76:41:47:c8:6f:91:48:3a:63:56:c7:97:6e:da:26:52:19:79:
ba:e6:63:2e:c7:0a:c2:c8:fe:41:9d:46:29:94:94:fc:8d:83:
55:f2:5e:1b:7f:ef:d4:ff:0e:4e:b9:b7:a9:29:d8:63:8b:b7:
a1:f9:29:c7:99:c6:7a:ea:4f:80:a0:b0:65:db:ad:d7:75:b9:
75:ca:0c:12:d1:36:f7:d5:98:92:c7:b7:7a:9f:8d:01:ec:59:
fb:9d:32:e5:60:8a:6f:7d:29:ec:c6:cc:e7:cf:6e:8e:a1:84:
16:9f:82:d6:c7:b7:fe:42:a2:7f:92:1b:40:16:88:16:e0:75:
da:9f:83:f7:b2:83:53:d9:0c:3c:64:ab:2c:ac:28:59:9b:00:
66:23:76:71:29:67:3c:c5:16:b9:8d:66:e1:dc:82:f0:6c:cb:
f4:20:9d:e6:3c:6d:f5:03:bb:84:85:df:2c:9c:54:86:6f:b6:
15:d4:c6:e6:ce:05:60:8f:8c:ef:eb:d9:96:36:4e:2f:3c:22:
9b:9c:4b:29:37:bf:ff:ff:7e:d0:a8:23:9f:19:cb:61:bf:8a:
07:cd:1f:2f:ac:56:aa:2b:d0:b4:e0:2f:ab:0e:aa:6e:5d:85:
45:78:66:24:f3:08:43:24:a6:88:cd:bd:54:15:1c:86:58:08:
95:9e:86:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:59 2024 by rpki-client on console-ams.rpki-client.org