Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/VRYfwJddtKzQsHE8MbAEFYO6ZHo.roa
File: VRYfwJddtKzQsHE8MbAEFYO6ZHo.roa (raw, json)
Hash identifier: EYXXmNlMh3UrU0hKdU6hQ+CFn2MC63mGZvBuDrRNCLw=
Subject key identifier: 55:16:1F:C0:97:5D:B4:AC:D0:B0:71:3C:31:B0:04:15:83:BA:64:7A
Certificate issuer: /CN=96e6f77cbda101987d9dfc84be90b6fba66adc9f
Certificate serial: 0195AE0F3FD447FF24C309E2BF714E39F2EB
Authority key identifier: 96:E6:F7:7C:BD:A1:01:98:7D:9D:FC:84:BE:90:B6:FB:A6:6A:DC:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lub3fL2hAZh9nfyEvpC2-6Zq3J8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/VRYfwJddtKzQsHE8MbAEFYO6ZHo.roa
Signing time: Wed 19 Mar 2025 10:59:49 +0000
ROA not before: Wed 19 Mar 2025 10:59:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213620
IP address blocks: 83.167.188.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ae:0f:3f:d4:47:ff:24:c3:09:e2:bf:71:4e:39:f2:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96e6f77cbda101987d9dfc84be90b6fba66adc9f
Validity
Not Before: Mar 19 10:59:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=55161fc0975db4acd0b0713c31b0041583ba647a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:4d:59:33:0c:ea:95:d2:02:cf:11:c9:4e:0b:
93:24:17:0e:f9:d7:60:4c:ad:ab:4d:d1:2f:1c:84:
a5:d0:9a:6f:75:20:6f:31:3c:42:7b:41:3f:1e:75:
8d:ad:b2:ba:3e:cf:12:9d:95:0d:5d:27:80:d4:d9:
d2:6f:46:e3:a8:37:ee:2a:be:0c:55:4d:bc:56:5f:
ff:c8:b7:ff:86:12:5c:f3:f7:00:cd:6d:23:71:01:
db:09:0c:e3:19:45:5f:3e:aa:ff:cc:55:2e:b8:05:
a6:19:2f:06:af:65:3d:ca:ac:35:09:66:3a:69:63:
bb:bf:9e:c2:3c:a7:e6:70:d5:8f:84:07:ec:d3:ff:
2f:24:8a:26:46:88:9a:5d:e3:dc:c7:78:39:ac:48:
78:7c:67:f9:81:27:b9:a3:b4:5a:e0:f9:24:e0:24:
d9:40:68:90:2f:1f:bf:16:23:6b:e7:f4:0f:e9:ee:
e1:32:d1:ff:9c:b8:e0:43:91:b6:90:e4:f0:23:a7:
da:1c:f7:6a:7a:6c:30:52:c8:17:e7:28:e3:6b:79:
98:cb:f5:a2:c9:94:9a:6d:99:e9:cf:15:7a:1b:6f:
83:c0:38:11:71:93:c5:78:31:95:46:8f:f4:44:95:
8c:b2:64:51:4e:fa:b6:72:71:57:38:1a:9e:d7:6e:
99:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:16:1F:C0:97:5D:B4:AC:D0:B0:71:3C:31:B0:04:15:83:BA:64:7A
X509v3 Authority Key Identifier:
keyid:96:E6:F7:7C:BD:A1:01:98:7D:9D:FC:84:BE:90:B6:FB:A6:6A:DC:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lub3fL2hAZh9nfyEvpC2-6Zq3J8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/VRYfwJddtKzQsHE8MbAEFYO6ZHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/lub3fL2hAZh9nfyEvpC2-6Zq3J8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.167.188.0/23
Signature Algorithm: sha256WithRSAEncryption
64:c8:46:02:95:d2:ca:6f:8a:fd:8a:27:8d:54:6d:9e:ac:3e:
50:5a:5c:5c:81:dd:90:4d:4c:a7:08:12:d3:c6:8b:11:85:68:
bf:e3:24:78:c6:a6:e9:23:0d:90:a5:e4:80:48:ed:dd:ca:ea:
19:4d:96:19:bb:4c:bc:ae:90:14:16:64:fa:88:4e:32:b2:08:
16:5f:9a:08:8f:04:89:d1:a0:98:89:c9:ba:fc:14:25:da:2b:
a6:9e:4d:37:f2:4c:3c:53:98:cc:50:5a:b0:32:23:08:55:f9:
2a:a3:e3:be:b9:fd:ff:44:86:2f:68:4b:0f:d0:8f:a0:7b:83:
83:87:02:cf:e3:99:20:17:8c:35:7e:59:a4:13:e8:96:be:ab:
2d:d4:d4:22:9d:38:d2:34:77:dd:3c:f4:59:df:1a:2e:b5:cc:
a2:e3:0b:b5:f1:67:02:24:03:85:6a:93:87:da:52:7c:0a:ff:
cb:67:67:6f:7b:d2:9d:6a:fe:d5:2d:55:34:e0:ec:cc:26:58:
5b:4c:a3:c6:52:4f:bd:32:03:23:8e:0b:7a:ba:bf:4e:84:d2:
bb:b5:54:d9:81:63:89:82:3e:13:07:ac:54:2c:b8:40:3d:8f:
d7:00:0a:79:3a:99:d9:98:e1:3e:45:b7:e5:f4:b5:07:ca:5b:
aa:8c:a0:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:29 2025 by rpki-client on console.sobornost.net