Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/25b32d-3d43-41bf-9387-c9682264a81f/1/8aj9vSgjCqB0zJdmGc9xTz7ctn8.roa
File: 8aj9vSgjCqB0zJdmGc9xTz7ctn8.roa (raw, json)
Hash identifier: x9B5k6mYwj4h4ldYkTcdokeCLYXrppK9zIFMci9G6JA=
Subject key identifier: F1:A8:FD:BD:28:23:0A:A0:74:CC:97:66:19:CF:71:4F:3E:DC:B6:7F
Certificate issuer: /CN=588c9b8a1a4da31fa533b58ba2b45e62170edfa2
Certificate serial: 018CC6499AE54F4E4E4D18A265259E225359
Authority key identifier: 58:8C:9B:8A:1A:4D:A3:1F:A5:33:B5:8B:A2:B4:5E:62:17:0E:DF:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIybihpNox-lM7WLorReYhcO36I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/25b32d-3d43-41bf-9387-c9682264a81f/1/8aj9vSgjCqB0zJdmGc9xTz7ctn8.roa
Signing time: Mon 01 Jan 2024 18:29:21 +0000
ROA not before: Mon 01 Jan 2024 18:29:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48031
IP address blocks: 185.225.190.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:9a:e5:4f:4e:4e:4d:18:a2:65:25:9e:22:53:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=588c9b8a1a4da31fa533b58ba2b45e62170edfa2
Validity
Not Before: Jan 1 18:29:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f1a8fdbd28230aa074cc976619cf714f3edcb67f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:e3:51:56:75:5f:a6:d2:a0:84:81:37:7c:58:
71:00:77:f3:83:6d:b3:af:8c:09:5d:d5:c5:d8:ec:
51:75:ac:73:1c:02:e2:6e:1f:c6:8b:3a:df:25:ed:
e9:fd:5e:f1:4d:cb:37:48:9f:19:97:96:36:5d:08:
32:d8:49:f6:d4:3e:61:76:91:51:21:86:71:a4:44:
fd:31:9e:55:a9:77:6a:ed:b1:16:63:8e:5f:cb:0e:
2b:58:93:27:11:f4:35:04:f9:2e:91:14:c8:6a:75:
a1:94:47:67:4b:3e:a2:de:a0:ee:d7:e6:8e:68:08:
bc:20:0d:5a:50:77:4d:35:0c:9f:e4:a3:ed:68:bb:
54:77:b3:a4:7a:b8:00:84:36:b3:57:0e:f1:b6:71:
31:41:02:a2:45:71:0f:7a:ad:f2:c0:f8:2b:80:26:
d7:26:53:0f:7c:ad:2b:c4:07:3b:45:78:eb:5b:6d:
2e:73:5a:85:34:de:af:69:30:6a:55:ad:12:bb:7a:
59:e8:38:1a:ba:6e:f9:36:69:4e:05:18:88:90:f8:
67:3f:c1:23:4d:98:73:18:e0:21:ae:dc:2f:67:4a:
b8:5b:8a:19:9f:b0:f7:ad:67:11:25:84:67:87:80:
c0:08:8d:66:b0:54:cd:e4:79:f8:6c:09:01:53:8b:
47:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:A8:FD:BD:28:23:0A:A0:74:CC:97:66:19:CF:71:4F:3E:DC:B6:7F
X509v3 Authority Key Identifier:
keyid:58:8C:9B:8A:1A:4D:A3:1F:A5:33:B5:8B:A2:B4:5E:62:17:0E:DF:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIybihpNox-lM7WLorReYhcO36I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/25b32d-3d43-41bf-9387-c9682264a81f/1/8aj9vSgjCqB0zJdmGc9xTz7ctn8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/25b32d-3d43-41bf-9387-c9682264a81f/1/WIybihpNox-lM7WLorReYhcO36I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.190.0/24
Signature Algorithm: sha256WithRSAEncryption
30:dc:2e:61:a0:1f:21:21:64:ac:a9:85:49:7c:9c:72:85:b3:
8f:62:df:9e:37:5e:d8:65:4e:eb:f4:8e:0d:b4:46:f1:0f:c5:
fd:35:6f:b0:60:6b:fa:b8:52:87:16:9a:11:c3:d5:62:83:7f:
16:0f:79:8b:8a:76:f4:be:25:cc:fb:da:1e:6f:c3:64:1c:31:
36:a9:be:51:26:36:35:3b:1c:f6:b3:ac:8c:57:f1:c9:d6:1a:
ff:06:b0:bc:9c:44:f5:46:94:7c:14:fb:c6:78:e6:93:30:18:
c3:fb:ce:7e:9b:de:6c:59:36:6e:d5:50:ed:c5:e6:9a:3f:10:
c0:f4:ed:d3:f5:7d:84:d9:1e:59:fb:17:70:f0:30:01:8e:6d:
6e:3c:be:6a:4e:23:8c:18:3f:5b:f6:46:fe:d1:34:9f:a5:30:
a2:14:7b:64:b6:21:e9:36:1b:f1:b2:62:4f:89:0b:6e:42:b9:
c9:84:a8:1f:36:ac:e8:24:c9:3d:29:d9:97:f7:87:a3:29:92:
12:05:c9:c0:3a:26:2d:6d:eb:86:b9:4e:bd:c1:32:cb:d2:b8:
b3:73:89:a4:6a:ad:01:f6:a4:76:bb:d1:51:26:a9:80:77:99:
b7:91:be:38:5a:95:d9:a6:e0:e4:bf:f5:d7:9b:07:30:52:34:
00:60:55:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:27 2024 by rpki-client on console-ams.rpki-client.org