Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/25b32d-3d43-41bf-9387-c9682264a81f/1/fvn9GCmYl5bbHY1XajYFIegfE9I.roa
File: fvn9GCmYl5bbHY1XajYFIegfE9I.roa (raw, json)
Hash identifier: wK0zh6y6buznhYejJgBqqVqUwW/GJkS1Uooo21q1d3A=
Subject key identifier: 7E:F9:FD:18:29:98:97:96:DB:1D:8D:57:6A:36:05:21:E8:1F:13:D2
Certificate issuer: /CN=588c9b8a1a4da31fa533b58ba2b45e62170edfa2
Certificate serial: 0185723A48E15E10235A8BB70CBDE7C07BE6
Authority key identifier: 58:8C:9B:8A:1A:4D:A3:1F:A5:33:B5:8B:A2:B4:5E:62:17:0E:DF:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIybihpNox-lM7WLorReYhcO36I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/25b32d-3d43-41bf-9387-c9682264a81f/1/fvn9GCmYl5bbHY1XajYFIegfE9I.roa
Signing time: Mon 02 Jan 2023 11:25:00 +0000
ROA not before: Mon 02 Jan 2023 11:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48031
IP address blocks: 185.225.190.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:48:e1:5e:10:23:5a:8b:b7:0c:bd:e7:c0:7b:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=588c9b8a1a4da31fa533b58ba2b45e62170edfa2
Validity
Not Before: Jan 2 11:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ef9fd1829989796db1d8d576a360521e81f13d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:e4:a7:50:b6:de:1a:e5:19:4b:64:b7:32:4c:
83:db:f4:73:58:cd:7f:d9:62:b3:df:b9:25:ce:4d:
f9:0d:ff:b9:45:c8:82:47:bc:fe:2c:2c:5e:57:99:
0c:e8:7e:38:63:00:85:c5:3f:b5:03:00:32:ab:3c:
02:3b:17:40:36:82:53:7a:0e:8f:14:11:17:86:1c:
3a:c4:12:8a:93:5f:e5:06:18:51:a6:dc:d6:cb:ac:
76:8e:b8:74:44:5d:ed:5f:ae:bf:3c:79:a6:4e:77:
59:74:e1:b8:46:6d:7a:53:e1:8c:6d:6c:f8:fa:3b:
80:82:3d:51:48:78:05:28:42:22:ab:80:06:03:92:
7e:10:b4:e4:6b:88:c3:00:21:53:64:14:bd:59:2b:
1d:23:95:32:14:62:7e:76:ea:7e:13:81:fc:83:6c:
e4:37:05:05:b5:5e:a8:11:f3:ba:9c:c3:2b:78:ea:
12:b7:70:e5:7c:eb:fd:aa:7e:0b:c8:ad:e7:cd:66:
49:3b:a2:8b:6f:af:0a:cb:60:f0:ed:d5:93:2e:55:
98:ec:25:a3:25:94:51:32:63:1d:a9:96:c3:78:12:
23:3a:15:1c:c9:ce:7d:9f:fa:43:6f:34:84:22:50:
92:70:ac:a5:c5:eb:65:c8:13:bb:1b:de:3c:16:f9:
cb:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:F9:FD:18:29:98:97:96:DB:1D:8D:57:6A:36:05:21:E8:1F:13:D2
X509v3 Authority Key Identifier:
keyid:58:8C:9B:8A:1A:4D:A3:1F:A5:33:B5:8B:A2:B4:5E:62:17:0E:DF:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIybihpNox-lM7WLorReYhcO36I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/25b32d-3d43-41bf-9387-c9682264a81f/1/fvn9GCmYl5bbHY1XajYFIegfE9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/25b32d-3d43-41bf-9387-c9682264a81f/1/WIybihpNox-lM7WLorReYhcO36I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.190.0/24
Signature Algorithm: sha256WithRSAEncryption
11:3b:d1:87:46:2b:9c:06:7e:23:e8:65:8e:3d:0e:66:02:86:
cf:50:f8:32:2a:75:86:76:1c:61:1a:c3:db:06:08:53:d7:e1:
f4:0b:59:5d:2b:e8:7e:20:9e:4b:b7:64:27:6c:96:39:56:60:
d8:1f:c9:b1:cb:a8:d3:c9:86:53:ee:48:5e:6b:f4:1e:cf:d5:
4b:e3:ad:7b:f1:2a:7e:e4:c0:cf:3e:a8:3a:0c:57:48:d2:87:
06:07:6d:bb:ff:62:ee:84:30:db:08:b1:c4:be:0e:09:24:09:
11:57:d1:44:c3:9f:3a:a6:99:8c:a9:31:f7:8f:84:ce:76:8f:
ed:b1:6f:a4:f5:28:f4:6d:c0:7b:ca:7a:9a:79:2e:d6:96:6c:
d5:2f:b2:c4:50:d1:a1:89:7f:66:c3:fd:6d:2e:b9:71:24:10:
b7:e6:4b:1c:01:1a:57:26:81:7d:4b:86:62:6d:98:a9:4a:dd:
b5:40:29:82:e6:dd:06:86:6c:e4:08:29:46:40:7b:f1:5f:56:
bf:54:38:a6:af:22:b3:cf:37:3e:05:d9:db:9a:fe:41:89:10:
b3:f4:50:cf:7b:e2:c2:2d:f2:76:3e:4e:6c:a0:4f:ae:d6:37:
fe:af:85:fe:fe:5a:80:26:44:39:14:37:9f:f0:0f:1a:fd:00:
24:38:91:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:27 2024 by rpki-client on console-ams.rpki-client.org