Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/7dee10-9313-4825-a1dd-8cb741aa8710/1/_mxt3YSALWJBjgcGDNpU2WAuWXc.roa
File: _mxt3YSALWJBjgcGDNpU2WAuWXc.roa (raw, json)
Hash identifier: yW8Gi/Iikeut5CRre85li61K2cjNguAAcnjvRiL4Ghs=
Subject key identifier: FE:6C:6D:DD:84:80:2D:62:41:8E:07:06:0C:DA:54:D9:60:2E:59:77
Certificate issuer: /CN=233db899154a9825d1b31dd05a5838d270aaf4f4
Certificate serial: 01884C8F11CE5D8F60C4A8727507DAEC9EB4
Authority key identifier: 23:3D:B8:99:15:4A:98:25:D1:B3:1D:D0:5A:58:38:D2:70:AA:F4:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iz24mRVKmCXRsx3QWlg40nCq9PQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/7dee10-9313-4825-a1dd-8cb741aa8710/1/_mxt3YSALWJBjgcGDNpU2WAuWXc.roa
Signing time: Wed 24 May 2023 07:00:24 +0000
ROA not before: Wed 24 May 2023 07:00:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.25.104.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4c:8f:11:ce:5d:8f:60:c4:a8:72:75:07:da:ec:9e:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=233db899154a9825d1b31dd05a5838d270aaf4f4
Validity
Not Before: May 24 07:00:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe6c6ddd84802d62418e07060cda54d9602e5977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3a:4b:f6:7c:38:53:05:c2:58:8e:59:d8:f8:
24:fa:90:4a:3c:a3:49:a3:aa:99:2c:5e:7e:a8:ec:
c2:44:a4:8e:2f:ca:bf:50:72:63:f1:16:63:15:04:
2e:aa:ce:4c:3e:b7:6f:9c:39:af:28:46:8f:13:eb:
dc:a5:8d:da:a3:93:cc:48:64:18:1a:a2:74:9f:8a:
2c:27:9a:88:25:28:7d:44:85:46:5c:6d:8e:e8:52:
bb:0a:bb:e8:59:ab:6e:9d:ec:29:b3:49:b0:a3:2d:
0c:a5:43:44:ae:50:7a:f5:f5:d8:46:5a:cf:36:10:
b9:aa:da:a2:4d:60:e6:58:41:d4:9c:52:0a:01:f7:
9f:ef:6c:8e:74:48:8d:1f:3b:f5:2b:fa:78:e1:b4:
0d:ea:96:30:92:80:62:83:3e:39:4a:57:a1:8b:d4:
84:57:c3:92:44:46:f9:0d:4c:ca:a5:95:31:a2:3d:
94:b4:58:d2:cb:20:01:dc:1d:d7:e7:04:f8:ce:69:
d8:d2:b0:c8:95:a7:35:dd:38:c6:ed:4f:a8:63:b0:
ea:d6:f7:b3:49:8c:28:82:31:72:e4:ee:ef:00:94:
94:69:49:97:46:c7:e1:e8:1f:b9:e6:b7:a4:bd:3e:
e5:29:f0:ed:ce:57:b5:ff:5e:4a:7b:29:c7:b1:1b:
01:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:6C:6D:DD:84:80:2D:62:41:8E:07:06:0C:DA:54:D9:60:2E:59:77
X509v3 Authority Key Identifier:
keyid:23:3D:B8:99:15:4A:98:25:D1:B3:1D:D0:5A:58:38:D2:70:AA:F4:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iz24mRVKmCXRsx3QWlg40nCq9PQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/7dee10-9313-4825-a1dd-8cb741aa8710/1/_mxt3YSALWJBjgcGDNpU2WAuWXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/7dee10-9313-4825-a1dd-8cb741aa8710/1/Iz24mRVKmCXRsx3QWlg40nCq9PQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.25.104.0/24
Signature Algorithm: sha256WithRSAEncryption
19:12:46:3c:44:0b:5b:1e:ea:52:c7:1f:b9:24:a0:69:09:1c:
43:78:01:a7:d9:4d:c9:be:c6:f7:4f:65:6e:24:0f:64:5d:73:
f1:c3:0b:b1:90:26:cc:cd:d0:4b:24:db:9c:8e:73:86:85:65:
a4:dc:6f:83:35:b8:8f:ae:f2:1f:0d:9f:68:24:97:20:16:26:
90:15:ae:68:2c:8f:e4:bf:0d:17:98:92:2b:2b:35:ed:36:47:
e6:c5:fb:d0:80:2a:f7:7b:dc:a9:89:aa:78:c5:b6:79:fa:00:
2c:d0:49:20:a5:97:b7:59:92:bf:55:ec:bb:d8:a1:50:d1:54:
d5:9d:b1:70:3c:f0:51:0b:6d:71:89:83:33:f0:b2:50:26:ff:
e1:12:f6:ce:7c:a4:14:fa:cc:14:65:91:9d:a2:bd:61:04:5d:
3d:c4:2f:48:a8:49:0f:62:17:77:15:09:2f:5a:0b:47:12:b6:
d8:b3:2b:b0:69:8a:c5:a7:66:1e:cc:f7:b0:67:d7:ce:ca:c9:
cd:44:d7:a1:68:42:02:7f:4e:d8:de:c0:bf:ce:48:85:19:83:
6d:7e:64:c8:f9:71:43:11:2c:9a:77:9e:75:37:ce:ed:31:2d:
e5:1e:05:7e:d4:c1:bd:c8:72:2a:c8:4b:39:e7:46:c9:f5:a7:
74:39:0b:99
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYhMjxHOXY9gxKhydQfa7J60MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzM2RiODk5MTU0YTk4MjVkMWIzMWRkMDVhNTgzOGQyNzBh
YWY0ZjQwHhcNMjMwNTI0MDcwMDI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZTZjNmRkZDg0ODAyZDYyNDE4ZTA3MDYwY2RhNTRkOTYwMmU1OTc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTpL9nw4UwXCWI5Z2Pgk+pBKPKNJ
o6qZLF5+qOzCRKSOL8q/UHJj8RZjFQQuqs5MPrdvnDmvKEaPE+vcpY3ao5PMSGQY
GqJ0n4osJ5qIJSh9RIVGXG2O6FK7CrvoWatunewps0mwoy0MpUNErlB69fXYRlrP
NhC5qtqiTWDmWEHUnFIKAfef72yOdEiNHzv1K/p44bQN6pYwkoBigz45Slehi9SE
V8OSREb5DUzKpZUxoj2UtFjSyyAB3B3X5wT4zmnY0rDIlac13TjG7U+oY7Dq1vez
SYwogjFy5O7vAJSUaUmXRsfh6B+55rekvT7lKfDtzle1/15KeynHsRsB1QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP5sbd2EgC1iQY4HBgzaVNlgLll3MB8GA1UdIwQY
MBaAFCM9uJkVSpgl0bMd0FpYONJwqvT0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXoyNG1SVkttQ1hSc3gzUVdsZzQwbkNxOVBRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS83ZGVlMTAtOTMxMy00ODI1LWExZGQt
OGNiNzQxYWE4NzEwLzEvX214dDNZU0FMV0pCamdjR0ROcFUyV0F1V1hjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS83ZGVlMTAtOTMxMy00ODI1LWExZGQtOGNiNzQxYWE4NzEw
LzEvSXoyNG1SVkttQ1hSc3gzUVdsZzQwbkNxOVBRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuRloMA0G
CSqGSIb3DQEBCwUAA4IBAQAZEkY8RAtbHupSxx+5JKBpCRxDeAGn2U3Jvsb3T2Vu
JA9kXXPxwwuxkCbMzdBLJNucjnOGhWWk3G+DNbiPrvIfDZ9oJJcgFiaQFa5oLI/k
vw0XmJIrKzXtNkfmxfvQgCr3e9ypiap4xbZ5+gAs0EkgpZe3WZK/Vey72KFQ0VTV
nbFwPPBRC21xiYMz8LJQJv/hEvbOfKQU+swUZZGdor1hBF09xC9IqEkPYhd3FQkv
WgtHErbYsyuwaYrFp2YezPewZ9fOysnNRNehaEICf07Y3sC/zkiFGYNtfmTI+XFD
ESyad551N87tMS3lHgV+1MG9yHIqyEs550bJ9ad0OQuZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:37 2024 by rpki-client on console-ams.rpki-client.org