Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/VFigwcviSxX5zQJC2AQ2HIrQ8Rc.roa
File: VFigwcviSxX5zQJC2AQ2HIrQ8Rc.roa (raw, json)
Hash identifier: N1YTNTqCNXhh4yTUmM6H9hKoPAOGPlBAD67GsD5suIY=
Subject key identifier: 54:58:A0:C1:CB:E2:4B:15:F9:CD:02:42:D8:04:36:1C:8A:D0:F1:17
Certificate issuer: /CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Certificate serial: 01863AEEB68ED1BCBE0E9BA4E7EAFD63222F
Authority key identifier: 49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/VFigwcviSxX5zQJC2AQ2HIrQ8Rc.roa
Signing time: Fri 10 Feb 2023 10:46:08 +0000
ROA not before: Fri 10 Feb 2023 10:46:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 152.89.28.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:3a:ee:b6:8e:d1:bc:be:0e:9b:a4:e7:ea:fd:63:22:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Validity
Not Before: Feb 10 10:46:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5458a0c1cbe24b15f9cd0242d804361c8ad0f117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ac:17:0a:f8:f0:0a:d7:6f:b1:5d:b2:12:95:
b3:04:cb:37:4f:ff:7d:d5:8e:5a:66:cd:25:52:56:
da:c6:e9:40:d9:83:c8:40:57:3c:58:f7:a9:b3:60:
42:12:68:a6:3b:c9:83:ca:44:ef:b9:b8:53:be:71:
c6:4e:d4:18:61:0d:a5:74:58:a2:6c:76:82:ae:00:
b5:85:e5:8e:f9:58:02:b8:d7:02:ca:9c:0e:b9:0b:
a5:84:f8:f1:5e:e2:38:33:79:2c:00:5a:f1:fb:01:
fc:f1:cc:5d:f9:29:69:58:3b:cb:f7:48:5f:4f:b3:
6f:9c:4d:36:3d:d3:d0:fb:08:92:5c:44:25:2e:4d:
35:9f:da:a8:ae:2d:18:d9:5a:21:48:c3:c7:99:39:
7f:fc:9d:9d:6d:fd:17:a4:8a:ab:36:3b:32:21:18:
32:1a:5b:c2:0e:a1:27:65:26:55:24:f6:f3:40:7f:
2e:42:f1:59:4a:41:dc:6b:83:63:1b:a5:f0:71:85:
97:b8:3b:7b:32:c9:ec:85:2d:77:17:6d:dc:fc:10:
95:03:6c:3d:39:9e:9b:4c:6b:8d:5f:06:0f:f5:be:
58:f4:37:28:8b:40:26:1e:11:78:88:c4:28:7d:45:
ab:72:f2:04:df:ed:d2:ed:bb:b8:19:8d:c9:4b:7c:
bf:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:58:A0:C1:CB:E2:4B:15:F9:CD:02:42:D8:04:36:1C:8A:D0:F1:17
X509v3 Authority Key Identifier:
keyid:49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/VFigwcviSxX5zQJC2AQ2HIrQ8Rc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.28.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:2d:2e:c7:b2:fc:5b:61:da:9f:1f:30:8e:01:3b:f1:11:20:
00:49:47:d1:e7:ba:4f:d6:68:b7:ec:43:7b:87:0d:2e:e8:b7:
d2:b5:f3:a4:bc:69:9e:73:91:97:1c:3c:52:d1:4d:05:7f:9a:
22:2f:58:e8:1b:00:03:e8:71:b9:e3:29:5e:cb:d2:47:7b:19:
d7:32:ca:77:9c:c3:a9:c6:7d:22:22:34:84:51:05:eb:38:68:
79:bc:36:22:a9:63:39:bd:6d:72:16:28:12:b5:5b:97:06:b4:
39:1e:c6:c0:a5:d5:e0:85:03:6b:e9:cb:56:94:ef:1d:97:fe:
d6:2a:ed:62:b1:02:da:a5:05:28:cd:e4:34:ae:fe:ec:9a:10:
a6:36:fa:1b:f9:93:85:81:7e:e7:0e:34:9f:10:1b:4f:99:49:
21:f1:77:5b:9b:e0:e6:4b:fb:3a:61:ae:76:5a:b2:b7:d6:fe:
55:b9:89:15:93:5f:b9:40:14:f9:59:54:e2:e6:20:04:5f:33:
30:3f:78:8a:3b:88:b5:70:fe:73:92:29:6b:e9:ae:26:01:38:
23:54:d3:a5:59:11:3f:ce:3c:3d:42:06:36:04:ce:54:63:71:
13:9e:31:c7:c4:b1:ce:40:ec:5c:8b:be:d1:af:6b:05:52:a3:
5c:70:66:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:03 2025 by rpki-client