Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/f7c4f1-341a-445e-8e33-50cb88276ae6/1/vgcgi95P2kkHNVncIPZS5LOvYrc.roa
File: vgcgi95P2kkHNVncIPZS5LOvYrc.roa (raw, json)
Hash identifier: vDDVeGHKKTVfK4NmT1/muK0I061aozJqwrw55bp5VNQ=
Subject key identifier: BE:07:20:8B:DE:4F:DA:49:07:35:59:DC:20:F6:52:E4:B3:AF:62:B7
Certificate issuer: /CN=23daf57a212bb7f320a2246f97959575d0e68ce3
Certificate serial: 01856CB8519D13C81AEC06FF9C93BA5DEE81
Authority key identifier: 23:DA:F5:7A:21:2B:B7:F3:20:A2:24:6F:97:95:95:75:D0:E6:8C:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9r1eiErt_MgoiRvl5WVddDmjOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/f7c4f1-341a-445e-8e33-50cb88276ae6/1/vgcgi95P2kkHNVncIPZS5LOvYrc.roa
Signing time: Sun 01 Jan 2023 09:44:56 +0000
ROA not before: Sun 01 Jan 2023 09:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 176.116.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:51:9d:13:c8:1a:ec:06:ff:9c:93:ba:5d:ee:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23daf57a212bb7f320a2246f97959575d0e68ce3
Validity
Not Before: Jan 1 09:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be07208bde4fda49073559dc20f652e4b3af62b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ff:c1:f4:87:b2:11:2d:49:2a:f2:bf:d9:01:
26:0c:1a:52:e9:ed:73:12:82:88:d3:32:6f:6e:d0:
c2:88:0d:00:36:9e:13:0e:f9:ba:30:7f:20:15:29:
4a:cc:3f:83:0e:d2:db:73:a0:88:fd:ac:9f:07:98:
ce:40:97:0d:14:34:c4:97:d8:01:5b:a3:d4:70:a5:
21:67:4f:cc:fc:a3:a3:25:2a:e2:1f:3a:ab:48:e9:
be:83:e2:65:47:9d:be:02:58:a0:98:ff:c0:16:0e:
01:c9:de:ba:4a:51:8d:90:42:4c:ff:e0:f7:a6:73:
bd:e5:b2:e1:87:c1:3c:6d:49:d4:a9:fc:53:8b:1e:
93:b3:45:f7:72:5f:a5:fc:1b:46:aa:89:89:61:21:
c9:75:3a:6e:3d:1f:bf:8f:85:5f:48:ee:9b:ff:15:
ab:1e:38:b6:1f:c1:c8:8c:b6:25:f1:08:93:bc:d4:
44:ad:fc:11:3c:c3:d3:af:6d:63:69:ae:f3:e8:64:
f1:c5:5b:17:db:11:e2:f3:16:08:a6:75:8d:ea:f2:
d5:9a:d8:b2:61:bf:e9:cc:54:fa:74:05:95:09:6c:
dd:44:0b:3a:02:d6:98:d9:fa:d3:93:f7:a6:c5:f3:
89:2f:92:70:f7:88:ec:78:39:5b:4d:d4:0a:f5:ec:
90:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:07:20:8B:DE:4F:DA:49:07:35:59:DC:20:F6:52:E4:B3:AF:62:B7
X509v3 Authority Key Identifier:
keyid:23:DA:F5:7A:21:2B:B7:F3:20:A2:24:6F:97:95:95:75:D0:E6:8C:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9r1eiErt_MgoiRvl5WVddDmjOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/f7c4f1-341a-445e-8e33-50cb88276ae6/1/vgcgi95P2kkHNVncIPZS5LOvYrc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/f7c4f1-341a-445e-8e33-50cb88276ae6/1/I9r1eiErt_MgoiRvl5WVddDmjOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.31.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:90:ee:31:8c:22:fa:ef:ad:0d:78:72:8d:fb:69:38:cc:63:
64:b7:bf:e9:c8:2c:88:33:0a:4b:2d:64:77:dd:95:53:27:5f:
49:5e:74:1e:dd:f2:6a:4b:9e:d5:f9:75:02:83:ba:69:8f:4f:
34:6b:e4:6e:e6:5f:bf:45:fb:18:15:8a:47:5c:4b:c2:a1:dc:
12:e2:9e:f9:bd:a3:34:17:42:30:10:61:1b:56:16:9d:3d:55:
63:45:3f:c6:86:b1:95:5f:17:d5:e1:ba:b0:9a:0d:5e:c2:1c:
92:36:7f:21:92:8d:32:76:5d:0b:61:04:76:f0:cc:af:76:bc:
66:27:41:f2:7f:b4:bc:61:45:e4:1b:06:a8:ab:33:9f:26:5c:
de:d5:c8:90:08:ea:20:9f:32:8e:4b:99:fc:98:03:72:c0:da:
8f:af:86:be:29:fb:7d:e0:95:5f:50:a9:2a:c6:c1:9f:f5:99:
78:0b:8e:91:d5:a5:11:13:5c:4c:3c:4a:4d:3d:3d:56:a5:a3:
88:1a:18:70:d6:f8:5b:41:da:5a:b9:7c:a9:4f:c2:88:45:96:
c4:d3:a1:05:ed:5e:c1:b4:4a:3a:7d:bf:ec:0a:e6:8a:89:0b:
5c:c8:55:04:72:24:37:9b:43:96:53:84:7f:e8:6b:3e:6d:b3:
b9:3b:92:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:19 2025 by rpki-client