Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/d807d5-ce18-4be5-bd2a-844913f8bba3/1/VumZqUWZ1xrdZUVZlnNlAegm8mM.roa
File: VumZqUWZ1xrdZUVZlnNlAegm8mM.roa (raw, json)
Hash identifier: qQimffWW77Q4qqpXeElZ6/db2os3wr1M5CabWe/8+vU=
Subject key identifier: 56:E9:99:A9:45:99:D7:1A:DD:65:45:59:96:73:65:01:E8:26:F2:63
Certificate issuer: /CN=1df2710c06d0df0bef46d9b1cb58aff520f8c584
Certificate serial: 01BBC146
Authority key identifier: 1D:F2:71:0C:06:D0:DF:0B:EF:46:D9:B1:CB:58:AF:F5:20:F8:C5:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HfJxDAbQ3wvvRtmxy1iv9SD4xYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/d807d5-ce18-4be5-bd2a-844913f8bba3/1/VumZqUWZ1xrdZUVZlnNlAegm8mM.roa
Signing time: Sat 01 Jan 2022 04:52:31 +0000
ROA not before: Sat 01 Jan 2022 04:52:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211265
IP address blocks: 185.197.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29081926 (0x1bbc146)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1df2710c06d0df0bef46d9b1cb58aff520f8c584
Validity
Not Before: Jan 1 04:52:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56e999a94599d71add65455996736501e826f263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:01:33:b6:9d:15:fa:3b:de:70:21:9f:b5:57:
39:09:17:1f:73:b2:70:ff:70:4d:fc:5a:c5:c2:c1:
5f:9e:56:37:26:ca:52:7e:08:33:e0:0c:0f:39:f6:
94:d2:ee:e5:5a:1c:b9:c7:3a:c9:22:aa:1f:18:3e:
7b:f1:46:cd:02:85:a9:68:2f:53:95:bd:40:37:44:
3e:9b:ef:cc:6e:0d:1d:0f:cd:4c:4b:26:53:73:8e:
3f:0d:fe:85:a2:59:09:7e:e6:53:da:6d:64:e7:37:
92:69:dc:bb:33:34:98:6b:f2:89:2d:83:d1:b4:eb:
92:f8:9d:99:32:a5:13:bf:68:a0:58:ef:de:72:c4:
0c:f9:24:4c:fa:73:ee:c2:44:30:d2:dc:92:1b:06:
24:95:16:f2:85:ba:e4:fc:3f:e2:25:d3:6a:b2:2f:
2c:92:04:76:53:e6:bc:6a:3a:f2:33:b6:fd:4c:23:
60:37:78:87:ad:9e:7a:5b:7b:7f:ff:52:63:bc:75:
0a:7f:4a:ef:62:ef:d5:fd:61:04:61:02:de:7f:c0:
b6:1d:40:1a:57:ff:91:1d:8a:b6:90:ac:5d:27:cd:
94:3d:c8:59:a6:c9:0e:75:ba:0e:d4:2b:95:aa:32:
77:bd:77:26:1c:cd:7b:db:ff:75:45:81:93:c8:ff:
ad:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:E9:99:A9:45:99:D7:1A:DD:65:45:59:96:73:65:01:E8:26:F2:63
X509v3 Authority Key Identifier:
keyid:1D:F2:71:0C:06:D0:DF:0B:EF:46:D9:B1:CB:58:AF:F5:20:F8:C5:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HfJxDAbQ3wvvRtmxy1iv9SD4xYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/d807d5-ce18-4be5-bd2a-844913f8bba3/1/VumZqUWZ1xrdZUVZlnNlAegm8mM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/d807d5-ce18-4be5-bd2a-844913f8bba3/1/HfJxDAbQ3wvvRtmxy1iv9SD4xYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.197.150.0/24
Signature Algorithm: sha256WithRSAEncryption
96:c7:cd:27:a3:2b:dd:11:c4:9b:61:19:71:87:48:6d:1a:3d:
44:d1:e9:8e:2f:e5:57:f5:56:6b:80:bf:cc:4b:66:3e:bc:62:
fe:00:1e:2c:8b:da:62:95:4d:17:f1:b0:0b:7b:e8:95:0e:2e:
5b:0d:e6:3b:1b:ec:8a:08:43:6c:16:0c:82:6a:27:42:46:4f:
92:05:bf:69:72:0d:3b:c2:a3:18:ea:9a:5f:45:84:19:13:11:
1b:68:80:1c:90:e6:b9:88:9c:6f:7b:a7:d3:ce:c3:e1:b0:1d:
c5:2e:a5:66:6d:9d:3a:bd:8c:ab:85:e8:1b:d9:46:2b:7a:58:
81:c5:89:a5:df:49:b1:db:2a:6a:cc:0a:0c:db:e3:ef:2d:53:
35:41:ec:3c:c9:04:e9:5e:d5:76:99:fb:0d:ce:e8:26:50:a6:
93:8c:57:aa:b1:97:4b:28:ec:70:f6:63:77:87:82:33:72:84:
1f:86:f1:51:4a:b1:1d:00:be:3a:39:08:81:00:5c:08:04:3e:
c4:8c:ec:30:b8:01:12:6d:74:27:f7:a2:67:df:6c:5b:5d:9b:
a5:c2:97:63:77:c1:e2:1b:83:32:f4:e5:96:20:f4:29:87:ef:
f9:b4:4d:52:0b:03:16:ed:5d:b0:94:17:c5:bf:e1:ca:fb:b8:
3c:c8:37:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:17 2023 by rpki-client on console-ams.rpki-client.org