Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d6f953-e5f1-4d32-8d1d-1e26bd87a6f4/1/VfMAy16Da2HWhL7gFvh02t3b8II.roa
File: VfMAy16Da2HWhL7gFvh02t3b8II.roa (raw, json)
Hash identifier: /30mOMaXzhk/ilc9zvJ552EiKrZIKAfOi1GCB8euuGI=
Subject key identifier: 55:F3:00:CB:5E:83:6B:61:D6:84:BE:E0:16:F8:74:DA:DD:DB:F0:82
Certificate issuer: /CN=b9d55f36c511db636cb82f34750cc8ae239450e5
Certificate serial: 155C69A8
Authority key identifier: B9:D5:5F:36:C5:11:DB:63:6C:B8:2F:34:75:0C:C8:AE:23:94:50:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/udVfNsUR22NsuC80dQzIriOUUOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d6f953-e5f1-4d32-8d1d-1e26bd87a6f4/1/VfMAy16Da2HWhL7gFvh02t3b8II.roa
Signing time: Sat 01 Jan 2022 06:59:07 +0000
ROA not before: Sat 01 Jan 2022 06:59:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34766
IP address blocks: 185.96.44.0/22 maxlen: 22
2a00:4140::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 358377896 (0x155c69a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9d55f36c511db636cb82f34750cc8ae239450e5
Validity
Not Before: Jan 1 06:59:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55f300cb5e836b61d684bee016f874dadddbf082
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e3:45:a1:8e:46:79:42:70:d0:fe:e9:ed:8e:
a1:a8:d6:14:1a:9c:aa:da:12:d9:04:d5:70:1b:0e:
89:ce:bd:0d:95:c9:d5:97:f3:b1:97:68:da:49:2f:
7f:42:50:72:c3:cb:0a:4e:89:c5:96:c4:c4:d3:a3:
06:f4:b0:44:5a:a9:4e:11:fe:c5:e0:96:74:08:b0:
47:bd:44:ec:22:d8:30:86:21:00:be:1d:27:1f:2f:
a0:a1:56:4d:7a:1c:73:fd:17:38:03:40:91:2b:7f:
4a:fd:e6:27:af:eb:ff:52:80:db:2b:3d:f3:91:07:
e1:fe:c8:5b:a5:ee:a0:14:18:5e:2f:17:5e:7d:f9:
bf:82:3b:37:b5:f6:3e:0e:fa:ce:45:a7:b3:73:0a:
ae:a7:b8:ef:cc:61:20:00:dc:25:af:0e:e3:23:47:
6b:88:e5:71:c5:c5:47:a7:14:ba:60:1c:7a:77:cb:
fc:1f:5c:55:09:5f:b0:51:e1:44:4e:c0:30:55:be:
a0:f7:da:3b:04:8b:8c:48:1b:5b:63:a7:8b:36:a9:
4b:2f:30:18:40:39:27:da:f4:b0:38:8b:d8:6e:3c:
74:19:a8:95:9e:a8:48:a3:93:fc:43:95:39:29:7b:
99:d3:e8:7e:2f:d1:79:4c:5d:dd:fa:bf:4d:be:d7:
9d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:F3:00:CB:5E:83:6B:61:D6:84:BE:E0:16:F8:74:DA:DD:DB:F0:82
X509v3 Authority Key Identifier:
keyid:B9:D5:5F:36:C5:11:DB:63:6C:B8:2F:34:75:0C:C8:AE:23:94:50:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/udVfNsUR22NsuC80dQzIriOUUOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d6f953-e5f1-4d32-8d1d-1e26bd87a6f4/1/VfMAy16Da2HWhL7gFvh02t3b8II.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d6f953-e5f1-4d32-8d1d-1e26bd87a6f4/1/udVfNsUR22NsuC80dQzIriOUUOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.96.44.0/22
IPv6:
2a00:4140::/32
Signature Algorithm: sha256WithRSAEncryption
c9:e4:e0:65:81:73:e0:dd:53:01:93:99:46:a9:de:78:3d:38:
c0:a0:e0:d1:39:2d:ec:b3:16:29:4b:d7:65:cb:a6:ab:51:b2:
7e:f4:04:4b:b8:e0:98:5a:b5:0b:07:61:a8:5e:f9:b7:80:ab:
e2:86:c3:50:bd:9d:57:da:89:43:17:12:f7:a4:b6:38:94:8e:
c7:28:6e:0f:ee:c9:dc:6a:8c:b5:33:90:bf:a4:09:fd:89:9e:
ee:bc:14:4c:47:71:e1:8f:9d:72:c6:7d:2c:59:cd:ff:78:11:
46:11:86:a1:a4:c4:bd:dc:b4:9a:fb:50:64:1e:b5:2c:af:2a:
e8:ea:53:8d:5e:c9:e8:81:2a:10:94:29:c2:1a:cc:41:d3:02:
67:fc:72:63:20:54:42:da:d4:42:f5:c3:16:d9:83:10:2e:34:
9b:21:8f:73:4a:29:02:ce:78:83:a8:d7:35:bf:f6:6d:9c:6e:
59:1b:b2:17:2f:ce:b1:4f:95:55:cd:95:55:2a:be:65:8f:de:
c9:35:0d:b7:a2:8c:0d:57:5b:00:ce:25:a6:cd:de:72:ea:eb:
18:42:b1:33:2c:59:38:50:f5:2b:97:16:c0:7a:42:c2:6b:24:
81:c1:38:97:52:7e:49:58:55:2a:54:a0:8b:f4:0a:35:46:5d:
56:3f:ee:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:32 2023 by rpki-client on console.sobornost.net