Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/MH_u-F7UH_0cv1mTmCTv_DgXHNc.roa
File: MH_u-F7UH_0cv1mTmCTv_DgXHNc.roa (raw, json)
Hash identifier: 67RhN5gS5mpZviLJo9rsVe0AYRYj6oGt/PXbnuT7Tvk=
Subject key identifier: 30:7F:EE:F8:5E:D4:1F:FD:1C:BF:59:93:98:24:EF:FC:38:17:1C:D7
Certificate issuer: /CN=a663abd479cbff76082304bf60d03adc3187d936
Certificate serial: 0F3BE424
Authority key identifier: A6:63:AB:D4:79:CB:FF:76:08:23:04:BF:60:D0:3A:DC:31:87:D9:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pmOr1HnL_3YIIwS_YNA63DGH2TY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/MH_u-F7UH_0cv1mTmCTv_DgXHNc.roa
Signing time: Sat 01 Jan 2022 11:03:46 +0000
ROA not before: Sat 01 Jan 2022 11:03:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13213
IP address blocks: 185.198.91.0/24 maxlen: 24
185.198.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 255583268 (0xf3be424)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a663abd479cbff76082304bf60d03adc3187d936
Validity
Not Before: Jan 1 11:03:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=307feef85ed41ffd1cbf59939824effc38171cd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:56:12:de:32:d5:6d:b8:bc:44:b4:1a:14:97:
31:2e:30:c0:f3:47:67:b7:d2:35:74:62:46:cb:fd:
05:93:78:a3:1a:5b:bc:20:76:8d:a9:17:51:88:d2:
c6:25:17:b4:28:5e:b8:b3:08:52:86:8c:51:77:bb:
76:18:6b:7a:0d:70:b5:2a:1f:1c:96:36:4b:41:6a:
5b:83:ec:15:98:54:8a:1a:36:6f:e2:b4:bd:30:ba:
79:ab:e1:7b:08:a7:4f:c3:3d:54:f5:91:f1:ef:77:
0d:0f:69:8c:91:ae:2d:a1:27:75:cc:c3:fc:58:b5:
56:cf:ad:a9:bc:67:96:b3:7a:90:a9:d9:9a:f9:2e:
94:13:ba:83:bc:54:f4:49:5d:4e:ab:e1:14:99:ba:
69:d7:be:b3:5a:a7:d6:e5:1e:d0:ea:51:46:03:2c:
72:b0:d1:51:e6:05:0f:57:91:04:f8:ec:4c:e3:7d:
4e:66:67:44:ac:82:a2:2e:42:d2:90:70:b5:83:92:
07:c0:eb:ba:6a:78:1b:08:80:6d:0b:23:e5:f5:4d:
53:b6:2e:3d:06:ba:e6:b0:55:75:4e:d8:0e:72:de:
18:2c:e9:9c:97:b5:00:78:73:73:b3:1d:2f:45:dd:
24:8d:f5:94:f5:f7:a1:c6:c1:33:2c:02:b7:51:2c:
9d:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:7F:EE:F8:5E:D4:1F:FD:1C:BF:59:93:98:24:EF:FC:38:17:1C:D7
X509v3 Authority Key Identifier:
keyid:A6:63:AB:D4:79:CB:FF:76:08:23:04:BF:60:D0:3A:DC:31:87:D9:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pmOr1HnL_3YIIwS_YNA63DGH2TY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/MH_u-F7UH_0cv1mTmCTv_DgXHNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/pmOr1HnL_3YIIwS_YNA63DGH2TY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.89.0/24
185.198.91.0/24
Signature Algorithm: sha256WithRSAEncryption
79:99:de:f4:e6:e7:9b:96:61:0f:2d:bd:0b:74:78:fb:22:31:
d7:d5:de:71:20:d5:08:0b:af:b4:56:0f:55:c1:0f:a8:4a:37:
b0:eb:38:18:cf:96:f3:cf:0d:42:dd:b4:ca:3f:ec:f9:91:d1:
90:42:e4:5c:af:4f:81:d4:ee:d5:b6:84:7c:9a:67:7a:ca:8b:
9b:3b:48:14:1c:37:73:cd:5b:76:51:9c:e7:0d:4a:e9:89:0b:
80:dd:96:32:f4:01:09:34:96:af:19:0b:ba:42:d1:b5:fe:53:
62:0d:7b:e5:09:f2:bf:d5:7d:9e:53:ec:d1:37:5b:22:6b:2c:
d9:f1:66:55:0d:54:fa:41:3d:59:73:94:e1:42:d3:93:1b:a9:
b2:f4:f6:a3:24:e7:f4:1d:7c:47:9f:ca:1b:d0:68:26:44:34:
f7:ee:91:6e:41:06:1c:41:ce:e4:70:ac:2a:6c:64:d5:58:c9:
ed:d3:bc:61:e4:13:97:c3:0a:fc:da:ba:c5:2f:1d:04:cf:a4:
51:f1:09:64:21:9d:dd:a4:4e:3b:7c:ca:7a:88:3f:db:ad:b6:
ce:df:38:fb:ce:da:c4:df:d7:67:bb:c8:6d:fc:11:dd:9e:81:
da:31:e4:d6:bf:21:02:ea:f5:41:1b:69:fa:d4:d2:49:27:65:
83:1d:f8:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:48 2024 by rpki-client on console-fra.rpki-client.org