Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/1cd76c-0201-4703-8ed6-beb6da03755e/1/vdeCaypIFGdIRAqMdGTsPj8WbOU.roa
File: vdeCaypIFGdIRAqMdGTsPj8WbOU.roa (raw, json)
Hash identifier: vq84qfOVSp0uzDqim8nGELqrKMLD6OkkmbcoO9J1Zis=
Subject key identifier: BD:D7:82:6B:2A:48:14:67:48:44:0A:8C:74:64:EC:3E:3F:16:6C:E5
Certificate issuer: /CN=ba0d738dd28ff2549456ce66e744898372fc503d
Certificate serial: 01942067E4F04C07EADD61EA209B38A1AF92
Authority key identifier: BA:0D:73:8D:D2:8F:F2:54:94:56:CE:66:E7:44:89:83:72:FC:50:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ug1zjdKP8lSUVs5m50SJg3L8UD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/1cd76c-0201-4703-8ed6-beb6da03755e/1/vdeCaypIFGdIRAqMdGTsPj8WbOU.roa
Signing time: Wed 01 Jan 2025 05:47:47 +0000
ROA not before: Wed 01 Jan 2025 05:47:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 64407
IP address blocks: 185.66.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:e4:f0:4c:07:ea:dd:61:ea:20:9b:38:a1:af:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba0d738dd28ff2549456ce66e744898372fc503d
Validity
Not Before: Jan 1 05:47:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bdd7826b2a48146748440a8c7464ec3e3f166ce5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:e8:14:5e:be:2c:3c:16:fb:61:50:38:64:c1:
46:21:2d:e3:88:b5:93:01:ef:00:b5:b1:18:98:4c:
29:d4:f6:c4:73:d4:49:1c:27:f7:96:b3:78:73:11:
62:7c:06:8c:16:20:d4:e5:79:b3:84:de:cb:8e:58:
8d:11:b9:63:91:8c:87:09:87:a0:2f:89:72:69:c1:
b8:b7:05:b9:8e:6d:56:bf:ff:da:4c:00:77:15:ab:
24:84:43:99:8d:4d:81:1e:a2:33:7a:54:91:87:e3:
b0:46:ad:b7:a1:eb:3a:4e:8e:ff:3f:da:4d:99:b1:
64:b9:f9:c9:19:b7:c0:bd:ed:8c:66:9e:ab:5d:3d:
ed:98:0c:ee:35:26:ce:10:f1:3a:7e:a8:69:45:a6:
89:96:79:5a:65:33:d3:b0:22:c6:cc:a6:a0:91:14:
2a:8d:2e:e7:7a:05:8a:e8:a3:61:39:1f:35:ad:b0:
bb:93:69:10:41:4d:c6:11:1d:57:96:70:d2:8f:bc:
56:53:7e:ff:36:8a:67:be:84:76:19:4e:b3:9d:d0:
a6:8a:b9:fb:e7:14:1d:fc:9c:88:ee:e6:e9:72:6a:
bb:8a:24:0e:a8:93:76:7f:cd:c0:1b:d4:11:33:72:
a5:21:2b:7f:0c:38:e6:9e:77:82:2f:ae:d9:85:27:
8b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:D7:82:6B:2A:48:14:67:48:44:0A:8C:74:64:EC:3E:3F:16:6C:E5
X509v3 Authority Key Identifier:
keyid:BA:0D:73:8D:D2:8F:F2:54:94:56:CE:66:E7:44:89:83:72:FC:50:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ug1zjdKP8lSUVs5m50SJg3L8UD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/1cd76c-0201-4703-8ed6-beb6da03755e/1/vdeCaypIFGdIRAqMdGTsPj8WbOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/1cd76c-0201-4703-8ed6-beb6da03755e/1/ug1zjdKP8lSUVs5m50SJg3L8UD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.66.123.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:22:a9:6c:49:52:a7:de:dc:de:45:3a:d0:39:3c:7a:59:56:
1e:49:32:5c:84:35:6a:c7:ce:9b:79:77:88:40:5a:db:0d:45:
5b:6e:9f:5b:9b:a9:ec:0f:cf:44:9f:f8:1d:47:b0:ba:21:9a:
7b:ad:bc:f7:aa:03:52:bd:60:dc:3c:97:29:73:66:6c:b7:29:
bc:e6:32:ca:f1:6a:87:01:50:30:29:04:79:c6:64:c1:53:ba:
9c:ba:96:75:e2:96:8d:57:c7:8b:db:99:6f:b1:b2:dd:71:1b:
7c:01:d8:33:72:e7:36:dd:27:da:52:5d:50:2f:bc:24:0c:f4:
d8:e3:bd:2c:53:f0:2b:af:e9:86:64:2b:1c:90:65:6a:4e:8e:
e4:85:76:c1:50:a6:30:f9:56:1c:de:bf:f0:6d:dd:20:00:0e:
c6:2c:8d:b8:ca:7c:fd:41:5f:2b:0a:08:ab:ba:ca:3d:bc:f8:
e4:51:1c:95:91:60:cf:9f:d0:ae:b5:5b:41:97:45:e3:df:60:
7d:6d:c2:43:c5:4c:53:29:7a:ea:3b:4c:9f:ab:23:04:c0:f6:
c6:3c:15:01:1e:0d:8a:07:6a:13:1a:4c:d7:4b:a0:15:7d:a7:
99:4f:54:3f:15:9d:e4:7f:29:4a:23:9a:8d:ec:b8:af:be:b3:
36:82:a2:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 03:55:13 2025 by rpki-client