Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/2dc208-6912-4a12-8dbb-dbb69f284f23/1/VaalOHgew5kdAYCs6Roq6j8H4nM.roa
File: VaalOHgew5kdAYCs6Roq6j8H4nM.roa (raw, json)
Hash identifier: oxIf5pI6tHU/QfD9rB5MAPihnSaFXPOKh5NydErMP0Y=
Subject key identifier: 55:A6:A5:38:78:1E:C3:99:1D:01:80:AC:E9:1A:2A:EA:3F:07:E2:73
Certificate issuer: /CN=453f8ca684037c5433a4b4406211b31d76e13eab
Certificate serial: 0192AF4832677E1F491C196147DD98194676
Authority key identifier: 45:3F:8C:A6:84:03:7C:54:33:A4:B4:40:62:11:B3:1D:76:E1:3E:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT-MpoQDfFQzpLRAYhGzHXbhPqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/2dc208-6912-4a12-8dbb-dbb69f284f23/1/VaalOHgew5kdAYCs6Roq6j8H4nM.roa
Signing time: Mon 21 Oct 2024 13:33:17 +0000
ROA not before: Mon 21 Oct 2024 13:33:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214215
IP address blocks: 185.154.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:af:48:32:67:7e:1f:49:1c:19:61:47:dd:98:19:46:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f8ca684037c5433a4b4406211b31d76e13eab
Validity
Not Before: Oct 21 13:33:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=55a6a538781ec3991d0180ace91a2aea3f07e273
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:64:61:0f:83:e5:61:af:5a:ba:f7:33:3b:43:
a2:6f:05:fc:10:cc:49:5a:a3:4a:26:99:b0:80:dc:
df:aa:ea:e8:53:69:0b:37:55:24:99:f2:da:fe:5b:
d2:f4:77:c9:03:a9:7d:31:fe:7e:49:e1:98:96:f8:
60:a6:05:6b:d1:dc:ba:1d:84:5b:10:a0:ab:09:8c:
36:1d:ca:91:84:74:e9:66:1b:d4:58:89:35:49:c5:
2e:a3:05:76:e5:a5:0d:23:ad:d9:8b:2d:ed:5c:50:
ac:85:f9:fa:d8:8d:82:f3:78:75:2c:04:8e:a9:ac:
1c:7e:ac:ef:02:c2:39:7b:ee:f5:26:82:9b:ac:5c:
1b:14:cd:1e:d1:f5:ec:73:84:aa:2c:08:e8:23:e1:
3a:bb:c4:c9:85:de:e4:c1:cd:0d:f1:cb:2b:74:a5:
37:d9:a9:88:69:fb:2c:a6:80:29:1d:08:b0:5f:17:
40:16:55:49:0f:83:a6:ce:bd:6a:83:c6:60:db:f8:
3f:73:3d:0f:61:ee:48:d3:13:36:eb:01:5b:29:45:
d0:6c:5a:7b:d5:55:78:9f:83:ab:09:c1:5e:bf:2c:
d0:d8:1a:97:e8:18:05:0e:a1:c4:9c:2b:c2:6a:be:
3b:36:27:8f:a3:6c:45:8f:a4:d0:f4:ad:5a:56:4e:
80:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:A6:A5:38:78:1E:C3:99:1D:01:80:AC:E9:1A:2A:EA:3F:07:E2:73
X509v3 Authority Key Identifier:
keyid:45:3F:8C:A6:84:03:7C:54:33:A4:B4:40:62:11:B3:1D:76:E1:3E:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT-MpoQDfFQzpLRAYhGzHXbhPqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/2dc208-6912-4a12-8dbb-dbb69f284f23/1/VaalOHgew5kdAYCs6Roq6j8H4nM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/2dc208-6912-4a12-8dbb-dbb69f284f23/1/RT-MpoQDfFQzpLRAYhGzHXbhPqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.117.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:a7:61:28:8c:e3:24:40:b3:9f:d1:2d:d0:b1:c2:3c:ac:d0:
4c:0a:69:2d:d1:6b:ad:c8:90:03:15:89:a8:02:46:ff:52:af:
90:83:a7:7a:08:16:6c:a5:35:36:e1:b8:5a:6b:b0:c2:99:04:
7b:92:33:dd:21:5a:c6:4b:7b:7a:ae:22:c4:2e:7d:15:2a:6b:
b8:64:e8:30:cd:25:c3:3f:8d:f6:1e:20:ef:b4:6d:12:31:61:
dc:46:dd:07:6b:46:d4:75:d7:df:f5:d8:ae:a9:ff:be:45:40:
37:37:92:07:b5:5b:48:63:1b:4b:5e:c7:4b:b0:a3:cf:4f:48:
37:8a:f8:26:c0:eb:f0:11:73:ed:da:95:b1:5f:63:fc:62:41:
74:a4:4d:7e:20:23:a0:78:89:9d:27:41:06:99:c3:90:2a:fc:
10:93:b9:e4:be:23:a5:dc:71:3b:66:e1:8b:f0:b1:8e:1d:d8:
61:86:26:e8:b0:40:90:8b:82:28:24:d0:bb:39:65:49:29:13:
5d:66:87:aa:c7:db:eb:03:30:b3:bb:90:bb:d0:1b:15:6c:da:
b6:88:14:65:c8:da:1e:5a:30:c0:ad:08:1f:d9:8e:fc:8d:83:
e8:79:60:ed:a8:28:e9:de:e1:f6:00:a9:a7:aa:46:14:9d:15:
db:d1:34:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:42 2024 by rpki-client on console.sobornost.net