Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/5aa4dc-d184-4db4-9e10-49f981ee5981/1/VfxHcySxFEkpXw7GS0BMdF9QKPQ.roa
File: VfxHcySxFEkpXw7GS0BMdF9QKPQ.roa (raw, json)
Hash identifier: /74+fl+JrCvV+9cRB9fPBirHaLwVb087Pl3FU9l4OZQ=
Subject key identifier: 55:FC:47:73:24:B1:14:49:29:5F:0E:C6:4B:40:4C:74:5F:50:28:F4
Certificate issuer: /CN=55baf26967510b3c52e46d1dc593967cdf29f9c9
Certificate serial: 0194B9AC0F8C12A9236F93C2A0D3B9E8B3F8
Authority key identifier: 55:BA:F2:69:67:51:0B:3C:52:E4:6D:1D:C5:93:96:7C:DF:29:F9:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VbryaWdRCzxS5G0dxZOWfN8p-ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/5aa4dc-d184-4db4-9e10-49f981ee5981/1/VfxHcySxFEkpXw7GS0BMdF9QKPQ.roa
Signing time: Fri 31 Jan 2025 00:04:08 +0000
ROA not before: Fri 31 Jan 2025 00:04:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 395517
IP address blocks: 178.253.38.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:b9:ac:0f:8c:12:a9:23:6f:93:c2:a0:d3:b9:e8:b3:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55baf26967510b3c52e46d1dc593967cdf29f9c9
Validity
Not Before: Jan 31 00:04:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=55fc477324b11449295f0ec64b404c745f5028f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:97:42:2d:a8:29:1c:11:3e:01:d4:2a:8a:20:
87:45:de:5d:dc:a7:19:94:bc:a4:d1:76:be:e9:13:
79:e4:20:07:b4:07:f7:86:14:61:12:8d:1f:60:fa:
05:4c:98:65:e6:2d:88:a8:04:fe:a8:60:6b:7b:d9:
2b:98:90:6f:83:49:8f:84:6f:7c:29:2f:d8:65:7c:
f5:23:af:5e:5c:41:19:0b:7e:b9:9b:7c:50:eb:b9:
b9:d3:bd:3e:ba:0b:25:25:39:12:e7:c7:6f:68:35:
41:69:80:cf:ea:5b:46:07:8a:04:0c:21:d9:9a:5a:
54:46:d5:10:10:a1:76:3c:64:7a:a0:39:2b:3d:50:
c1:66:4c:b8:20:98:5c:22:26:49:e8:85:76:45:23:
70:f2:66:84:68:39:38:a6:51:f4:98:cd:69:b9:27:
b0:2a:90:6d:a4:53:37:6b:4f:1d:24:02:96:32:49:
01:8d:8c:4b:9e:20:6a:7c:d3:dd:85:43:66:6f:49:
98:c7:9e:9f:22:04:94:e1:83:56:70:06:17:ea:98:
3a:6c:88:d9:50:4c:9d:a8:f6:08:f7:62:2b:96:f4:
7a:af:a6:9c:77:06:4f:a9:74:10:98:93:27:a4:bb:
20:ec:3b:2e:b2:97:da:4c:5d:b8:73:c7:04:4e:c3:
48:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:FC:47:73:24:B1:14:49:29:5F:0E:C6:4B:40:4C:74:5F:50:28:F4
X509v3 Authority Key Identifier:
keyid:55:BA:F2:69:67:51:0B:3C:52:E4:6D:1D:C5:93:96:7C:DF:29:F9:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VbryaWdRCzxS5G0dxZOWfN8p-ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/5aa4dc-d184-4db4-9e10-49f981ee5981/1/VfxHcySxFEkpXw7GS0BMdF9QKPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/5aa4dc-d184-4db4-9e10-49f981ee5981/1/VbryaWdRCzxS5G0dxZOWfN8p-ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.38.0/23
Signature Algorithm: sha256WithRSAEncryption
89:34:ec:e2:51:74:0c:18:54:1f:bc:b2:e3:9e:31:01:9b:3f:
91:10:e1:50:29:4d:f5:13:19:01:43:17:93:93:9b:b9:8c:81:
c2:8f:47:68:4e:8a:81:ea:a4:d2:f6:fd:b8:e2:e3:83:e3:a5:
06:27:21:c9:a2:34:cc:85:36:f8:18:13:d2:0d:d7:ae:3b:ac:
99:73:f9:de:9a:cc:75:5d:8c:7a:06:82:5d:e8:dd:d6:5c:f1:
e4:db:4d:10:f9:ae:9f:39:dc:1a:30:05:2e:30:12:e6:50:1d:
fe:24:9a:c6:d7:5d:c1:3d:d0:8f:d6:67:6c:f5:04:97:55:b6:
c2:c0:bf:3b:92:81:81:9a:42:fb:09:61:0f:7e:2e:c5:f3:8a:
4f:de:6c:69:50:8b:95:0d:01:49:03:b7:39:40:21:83:eb:fb:
e0:0e:74:c1:a1:c6:9c:ca:b1:14:b5:fc:8d:30:a6:67:12:24:
0c:86:47:69:cb:87:b6:ee:b2:d8:2e:77:9b:dc:05:79:a4:38:
af:23:47:4c:76:c3:d4:d1:3a:97:6e:58:3f:3f:bd:5f:be:1f:
55:a4:a8:72:26:e0:81:44:d2:db:e7:cc:e0:13:89:67:93:8f:
fb:77:67:33:ef:aa:37:56:32:96:9e:63:da:f4:04:92:20:bb:
1b:35:b3:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:05:35 2025 by rpki-client