Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/7a180c-c1a5-4146-8429-08380fffc169/1/IoRYMH6WxaNHPSTIZJXc0oUZT0Q.roa
File: IoRYMH6WxaNHPSTIZJXc0oUZT0Q.roa (raw, json)
Hash identifier: drv+IWKdsfTbvu64H4vBe1aIDDOdcsVgu86Z9ewqxqY=
Subject key identifier: 22:84:58:30:7E:96:C5:A3:47:3D:24:C8:64:95:DC:D2:85:19:4F:44
Certificate issuer: /CN=3ed2591c1c83db30e42fb0e4ab8130e6ca20bf8e
Certificate serial: 0187B79C8797FBD358CEA983725A5D430435
Authority key identifier: 3E:D2:59:1C:1C:83:DB:30:E4:2F:B0:E4:AB:81:30:E6:CA:20:BF:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PtJZHByD2zDkL7Dkq4Ew5sogv44.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/7a180c-c1a5-4146-8429-08380fffc169/1/IoRYMH6WxaNHPSTIZJXc0oUZT0Q.roa
Signing time: Tue 25 Apr 2023 08:51:41 +0000
ROA not before: Tue 25 Apr 2023 08:51:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 178.23.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b7:9c:87:97:fb:d3:58:ce:a9:83:72:5a:5d:43:04:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ed2591c1c83db30e42fb0e4ab8130e6ca20bf8e
Validity
Not Before: Apr 25 08:51:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=228458307e96c5a3473d24c86495dcd285194f44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:71:cc:14:99:64:af:29:e5:8f:d6:72:02:33:
d6:e4:24:b0:c7:ae:c4:9d:16:5e:1c:bd:a3:5e:8e:
ae:dc:a2:0d:37:a4:f6:56:1b:e6:c3:c4:40:11:d1:
12:67:af:79:6f:f7:e9:7e:30:2d:e8:59:22:5a:59:
1f:12:2f:d4:84:0b:5f:49:84:68:f2:9f:1d:8c:14:
6f:d2:b5:e8:aa:2b:45:b6:8f:74:96:66:88:6e:74:
cb:e9:8f:0b:b0:c4:e9:3a:f9:cc:b7:93:d2:9b:b8:
81:76:a3:f5:34:63:c0:96:4c:b7:00:9e:b4:bd:ae:
a0:8d:98:21:d7:7d:e7:80:7e:5a:e1:ec:a3:11:22:
04:60:60:ee:ca:b8:6c:e0:e4:0f:f1:da:9d:a1:a0:
c2:6c:f5:ad:41:f6:44:c2:f0:84:d9:99:99:7a:b3:
b6:e4:ae:47:37:b0:a6:fe:1d:0b:13:71:74:8f:8f:
47:d2:15:73:7c:4b:d2:37:17:30:88:1e:18:57:9f:
6d:1a:e1:68:1b:73:08:cf:0c:1c:89:05:c4:96:32:
cf:88:26:10:69:a5:9f:44:72:16:be:1a:0f:ab:71:
5f:ab:df:ed:d7:93:26:a8:4a:13:3a:64:e0:50:12:
ed:48:f9:04:47:e3:91:1d:ee:90:84:dd:04:96:10:
f4:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:84:58:30:7E:96:C5:A3:47:3D:24:C8:64:95:DC:D2:85:19:4F:44
X509v3 Authority Key Identifier:
keyid:3E:D2:59:1C:1C:83:DB:30:E4:2F:B0:E4:AB:81:30:E6:CA:20:BF:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PtJZHByD2zDkL7Dkq4Ew5sogv44.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/7a180c-c1a5-4146-8429-08380fffc169/1/IoRYMH6WxaNHPSTIZJXc0oUZT0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/7a180c-c1a5-4146-8429-08380fffc169/1/PtJZHByD2zDkL7Dkq4Ew5sogv44.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.23.186.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:36:7f:5f:a0:04:a0:4f:f0:22:89:4b:d9:a7:ad:8c:b0:ef:
0b:75:2b:da:56:31:1d:91:97:e0:e9:af:b2:eb:af:93:05:47:
fa:80:4f:bd:c6:44:a7:20:fc:ad:ba:f1:78:01:66:bf:9b:bb:
ee:9a:b8:71:9c:f0:50:50:4c:4d:35:c6:d3:54:e3:12:c7:00:
d7:61:e5:d4:13:0d:ae:40:b3:3a:39:9d:7b:88:76:d8:e6:56:
4b:50:f5:6c:04:f7:23:1f:3b:8a:e2:30:96:3e:15:db:fd:af:
78:c1:0d:94:56:61:97:57:43:40:3b:81:f0:c5:37:ca:f2:b4:
cf:12:15:50:a2:ba:80:f2:98:1f:b7:a2:1d:eb:ad:a0:8d:9c:
35:4f:ea:bd:dd:e7:cc:4d:43:d8:ac:20:7a:d3:c4:ed:e0:61:
07:28:22:77:31:63:2d:d6:cd:07:39:39:5a:26:94:72:eb:c2:
1e:1c:d7:49:86:be:bb:87:fa:3a:5d:47:a0:15:86:b4:cd:24:
65:35:6a:a6:a8:42:73:2f:a5:99:cc:ec:42:0b:96:83:a7:09:
00:73:af:84:a4:f7:66:00:d3:eb:dc:10:33:2a:8c:a1:2e:37:
b8:f7:ef:2d:2a:25:a9:f2:55:35:fa:41:11:0c:99:2b:15:99:
41:08:dd:f1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYe3nIeX+9NYzqmDclpdQwQ1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlZDI1OTFjMWM4M2RiMzBlNDJmYjBlNGFiODEzMGU2Y2Ey
MGJmOGUwHhcNMjMwNDI1MDg1MTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMjg0NTgzMDdlOTZjNWEzNDczZDI0Yzg2NDk1ZGNkMjg1MTk0ZjQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqXHMFJlkrynlj9ZyAjPW5CSwx67E
nRZeHL2jXo6u3KINN6T2Vhvmw8RAEdESZ695b/fpfjAt6FkiWlkfEi/UhAtfSYRo
8p8djBRv0rXoqitFto90lmaIbnTL6Y8LsMTpOvnMt5PSm7iBdqP1NGPAlky3AJ60
va6gjZgh133ngH5a4eyjESIEYGDuyrhs4OQP8dqdoaDCbPWtQfZEwvCE2ZmZerO2
5K5HN7Cm/h0LE3F0j49H0hVzfEvSNxcwiB4YV59tGuFoG3MIzwwciQXEljLPiCYQ
aaWfRHIWvhoPq3Ffq9/t15MmqEoTOmTgUBLtSPkER+ORHe6QhN0ElhD0iQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCKEWDB+lsWjRz0kyGSV3NKFGU9EMB8GA1UdIwQY
MBaAFD7SWRwcg9sw5C+w5KuBMObKIL+OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHRKWkhCeUQyekRrTDdEa3E0RXc1c29ndjQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC83YTE4MGMtYzFhNS00MTQ2LTg0Mjkt
MDgzODBmZmZjMTY5LzEvSW9SWU1INld4YU5IUFNUSVpKWGMwb1VaVDBRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC83YTE4MGMtYzFhNS00MTQ2LTg0MjktMDgzODBmZmZjMTY5
LzEvUHRKWkhCeUQyekRrTDdEa3E0RXc1c29ndjQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAshe6MA0G
CSqGSIb3DQEBCwUAA4IBAQCgNn9foASgT/AiiUvZp62MsO8LdSvaVjEdkZfg6a+y
66+TBUf6gE+9xkSnIPytuvF4AWa/m7vumrhxnPBQUExNNcbTVOMSxwDXYeXUEw2u
QLM6OZ17iHbY5lZLUPVsBPcjHzuK4jCWPhXb/a94wQ2UVmGXV0NAO4HwxTfK8rTP
EhVQorqA8pgft6Id662gjZw1T+q93efMTUPYrCB608Tt4GEHKCJ3MWMt1s0HOTla
JpRy68IeHNdJhr67h/o6XUegFYa0zSRlNWqmqEJzL6WZzOxCC5aDpwkAc6+EpPdm
ANPr3BAzKoyhLje49+8tKiWp8lU1+kERDJkrFZlBCN3x
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:29 2024 by rpki-client on console-fra.rpki-client.org