Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/8d40c2-c28e-45dd-ac10-07fe7760a979/1/VVfmYagkryesIckOE84dOphnD3o.roa
File: VVfmYagkryesIckOE84dOphnD3o.roa (raw, json)
Hash identifier: nCmFVjoR/pvWlCZ/bXcGZCCuVvqKOfVxSbnPFfrEdeg=
Subject key identifier: 55:57:E6:61:A8:24:AF:27:AC:21:C9:0E:13:CE:1D:3A:98:67:0F:7A
Certificate issuer: /CN=868e89c7ab4e1512a9b46d5389b5de9c6a1d7e99
Certificate serial: 3808149B
Authority key identifier: 86:8E:89:C7:AB:4E:15:12:A9:B4:6D:53:89:B5:DE:9C:6A:1D:7E:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ho6Jx6tOFRKptG1TibXenGodfpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/8d40c2-c28e-45dd-ac10-07fe7760a979/1/VVfmYagkryesIckOE84dOphnD3o.roa
Signing time: Sat 01 Jan 2022 11:54:27 +0000
ROA not before: Sat 01 Jan 2022 11:54:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3246
IP address blocks: 87.241.64.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 940053659 (0x3808149b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=868e89c7ab4e1512a9b46d5389b5de9c6a1d7e99
Validity
Not Before: Jan 1 11:54:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5557e661a824af27ac21c90e13ce1d3a98670f7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:41:d8:d7:2d:a4:97:ac:40:71:44:06:08:49:
82:4e:80:53:75:d0:ad:89:3d:30:56:5d:4c:d4:7e:
62:31:d1:6f:6f:62:20:85:a9:c5:64:57:40:c2:14:
9d:88:6c:cb:47:fd:60:6b:1c:5b:c1:5e:db:79:fe:
ad:5e:57:b5:5a:84:f8:cf:e3:b8:0b:33:ac:ec:54:
64:59:25:87:4a:1c:e8:06:dc:41:28:fc:68:e5:f0:
c7:b7:98:07:88:c0:89:c8:c2:5b:9d:38:54:d2:a3:
71:33:45:68:bd:9f:47:53:3f:50:50:1e:06:dc:5a:
16:bc:b3:d0:4e:37:f5:5d:96:14:b6:2b:9e:59:a2:
c8:1d:23:d8:cc:0c:b5:6c:3f:02:a4:f7:59:41:20:
aa:9e:b5:17:59:21:c9:3f:60:13:34:14:93:dc:3f:
6a:96:a7:b5:74:90:67:b8:f8:f5:14:a0:c8:57:28:
18:61:08:3e:46:57:11:6f:7b:8d:b8:7b:1e:9e:34:
5a:95:a9:9d:fe:f1:b0:cd:4b:b3:dd:a1:0e:18:db:
5d:5f:1d:37:53:fa:a4:91:f1:7d:cb:67:bb:69:bd:
56:10:d9:f4:87:04:e1:de:7a:c7:ce:e5:2a:d1:50:
21:89:bc:0d:5a:46:49:f6:6b:bb:ce:fa:0f:ed:c0:
64:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:57:E6:61:A8:24:AF:27:AC:21:C9:0E:13:CE:1D:3A:98:67:0F:7A
X509v3 Authority Key Identifier:
keyid:86:8E:89:C7:AB:4E:15:12:A9:B4:6D:53:89:B5:DE:9C:6A:1D:7E:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ho6Jx6tOFRKptG1TibXenGodfpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/8d40c2-c28e-45dd-ac10-07fe7760a979/1/VVfmYagkryesIckOE84dOphnD3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/8d40c2-c28e-45dd-ac10-07fe7760a979/1/ho6Jx6tOFRKptG1TibXenGodfpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.241.64.0/20
Signature Algorithm: sha256WithRSAEncryption
11:13:34:fe:c9:84:d9:e5:26:e1:40:72:47:d1:5c:ad:cd:4d:
f3:34:49:93:39:38:f6:95:9f:30:99:9f:a3:1c:50:87:10:ed:
c4:f7:55:49:48:73:ad:bb:31:a2:6a:80:1c:d5:2d:7e:85:5f:
3f:c0:b8:41:b8:e1:55:80:75:f4:dd:08:4c:50:0f:97:6c:91:
e4:f3:4c:56:b3:10:3a:2d:80:80:29:10:47:18:95:d3:bf:d0:
20:69:6a:33:6c:c6:e9:3b:f4:be:83:42:69:c0:f8:d4:cc:6d:
d3:db:d3:3b:45:41:db:b2:95:3a:cf:e5:7d:22:9f:38:dc:8a:
66:84:fa:45:18:c7:11:20:c7:92:5d:f8:77:19:71:c1:68:80:
71:f5:92:29:92:75:75:4f:93:8e:aa:91:1b:fe:f0:b3:2d:67:
c6:6c:ab:3b:22:19:60:02:06:ac:24:9d:f4:93:a4:24:5f:eb:
79:c7:a2:41:02:d8:83:ff:62:8c:84:12:6d:93:29:8a:11:bc:
e7:9b:89:89:94:e9:79:8d:b0:99:c9:bd:8f:ea:ff:fa:29:1d:
b2:24:8f:96:f9:34:a0:4b:7d:90:f5:8b:70:b5:4c:88:61:66:
11:7d:ff:0c:56:31:4f:eb:cb:41:83:3a:83:8f:67:2e:0d:08:
e4:21:57:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:54:25 2025 by rpki-client