Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/VQybY_p_rbiZuPMDoVyYx4hO6sg.roa
File: VQybY_p_rbiZuPMDoVyYx4hO6sg.roa (raw, json)
Hash identifier: hZWFkKmjw3ibDFLImi67thAO5xc77XU2ImMY15e21ag=
Subject key identifier: 55:0C:9B:63:FA:7F:AD:B8:99:B8:F3:03:A1:5C:98:C7:88:4E:EA:C8
Certificate issuer: /CN=80f376df5f9ef487c82b31a875c6a496d79ca0d7
Certificate serial: 157718AA
Authority key identifier: 80:F3:76:DF:5F:9E:F4:87:C8:2B:31:A8:75:C6:A4:96:D7:9C:A0:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gPN231-e9IfIKzGodcakltecoNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/VQybY_p_rbiZuPMDoVyYx4hO6sg.roa
Signing time: Sat 01 Jan 2022 14:03:40 +0000
ROA not before: Sat 01 Jan 2022 14:03:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57972
IP address blocks: 37.72.184.0/23 maxlen: 23
5.157.2.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 360126634 (0x157718aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80f376df5f9ef487c82b31a875c6a496d79ca0d7
Validity
Not Before: Jan 1 14:03:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=550c9b63fa7fadb899b8f303a15c98c7884eeac8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fd:94:66:81:f1:14:da:a0:97:68:f4:0f:2f:
59:e8:c4:f3:21:af:d6:02:8c:3e:e1:7f:33:71:60:
77:fe:d3:56:a5:61:5d:b2:5f:0c:08:0a:2b:d5:fd:
d5:00:70:e5:b6:f2:33:42:50:60:3e:71:7d:df:12:
9a:0a:71:45:a9:b2:00:62:0a:bf:bf:1a:15:46:d2:
17:22:1e:6d:e4:01:07:03:85:8e:88:5e:69:e3:c5:
c0:2c:b5:b2:6f:65:98:84:14:4b:e4:54:f0:2f:81:
3c:14:4f:86:15:62:1b:85:4d:ae:c7:ca:45:ea:b1:
3d:05:b5:8c:e2:5a:ee:8e:36:ad:b0:45:1b:26:33:
0a:33:a3:0c:4b:ad:b2:42:8d:75:99:3d:d1:8b:03:
69:d1:ff:b5:55:2e:df:ff:5a:8d:bc:5c:ac:d3:67:
dd:2a:03:fd:39:c8:89:df:08:59:ff:b0:84:a0:49:
27:89:f9:d2:f2:9e:c6:2b:45:b7:5c:76:c7:77:ad:
b1:6d:0d:a6:43:0c:cb:28:d6:89:4a:94:17:84:75:
78:4d:e8:66:02:4d:b5:b3:37:58:7d:ae:c2:ee:ed:
08:4d:14:58:a7:68:0a:40:71:97:12:c5:4a:8e:d3:
0b:7d:84:36:c7:95:f4:f9:43:1d:a6:d7:18:60:6e:
3d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:0C:9B:63:FA:7F:AD:B8:99:B8:F3:03:A1:5C:98:C7:88:4E:EA:C8
X509v3 Authority Key Identifier:
keyid:80:F3:76:DF:5F:9E:F4:87:C8:2B:31:A8:75:C6:A4:96:D7:9C:A0:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gPN231-e9IfIKzGodcakltecoNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/VQybY_p_rbiZuPMDoVyYx4hO6sg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/gPN231-e9IfIKzGodcakltecoNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.2.0/23
37.72.184.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:d1:cd:41:e4:0a:4b:2c:ef:13:5f:d7:3c:d3:1d:b4:10:20:
bc:a9:a4:45:80:ea:b4:a8:5f:27:f2:17:e2:3d:20:46:68:33:
51:cb:b7:71:32:77:09:3e:95:0c:e7:73:d4:49:32:ed:70:3d:
6f:05:97:40:3b:c2:4f:57:e3:c4:15:08:ad:8a:66:9e:92:7a:
51:0a:0e:b5:cd:23:16:fe:32:24:de:9d:be:22:9b:06:06:11:
3b:a8:13:8e:42:79:a6:d2:aa:dd:a4:0b:56:d9:2c:ba:ed:01:
0f:e1:2e:44:ad:da:88:f1:09:8e:73:1d:e3:e0:35:2a:ab:5c:
e2:70:f9:23:a8:89:ff:c9:b3:65:c3:41:1f:8f:dc:00:80:d3:
7a:18:3c:e5:bf:ca:6b:51:f9:5c:6e:95:86:71:77:78:8f:f8:
26:0c:23:38:a0:8a:0f:20:e3:ac:c6:63:ba:2b:fd:44:02:b3:
09:1f:12:66:d1:da:ec:94:6a:c3:25:3c:fd:d5:61:d1:7d:87:
29:ae:75:02:52:bd:4e:88:83:92:cc:2a:f7:a6:87:04:c0:8a:
2a:4f:9d:51:a6:28:ce:03:b3:72:46:ac:82:77:2a:ef:3e:ca:
07:7b:e2:07:24:8b:80:85:ce:8d:d0:22:13:1a:67:07:d7:6d:
98:11:8a:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 18:14:27 2025 by rpki-client