Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/1d42cd-00b0-4333-874b-3718656a40e8/1/LFg9X-4HtSR9o7Euvhq6tHLLAAg.roa
File: LFg9X-4HtSR9o7Euvhq6tHLLAAg.roa (raw, json)
Hash identifier: rY1gAf2prOkNPEkcXEcvicQwB+XdUChNnJSavxQmQG4=
Subject key identifier: 2C:58:3D:5F:EE:07:B5:24:7D:A3:B1:2E:BE:1A:BA:B4:72:CB:00:08
Certificate issuer: /CN=dc73083bed4487717ee7d90c6751379c5b6915c2
Certificate serial: 041AC97D
Authority key identifier: DC:73:08:3B:ED:44:87:71:7E:E7:D9:0C:67:51:37:9C:5B:69:15:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3HMIO-1Eh3F-59kMZ1E3nFtpFcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/1d42cd-00b0-4333-874b-3718656a40e8/1/LFg9X-4HtSR9o7Euvhq6tHLLAAg.roa
Signing time: Sat 01 Jan 2022 08:53:28 +0000
ROA not before: Sat 01 Jan 2022 08:53:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204007
IP address blocks: 185.190.89.0/24 maxlen: 24
2a10:64c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68864381 (0x41ac97d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc73083bed4487717ee7d90c6751379c5b6915c2
Validity
Not Before: Jan 1 08:53:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c583d5fee07b5247da3b12ebe1abab472cb0008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ab:b5:71:79:b7:1e:8f:d1:36:01:81:ff:b7:
6b:e6:f5:2f:cb:df:45:ac:ad:db:c0:63:36:6b:87:
67:7b:40:4a:8f:3d:6e:6d:1d:c5:ce:2b:89:bf:f2:
27:4e:45:9a:09:ad:5b:c6:1d:d2:c6:74:e1:1d:3b:
90:83:24:68:79:0c:cd:62:8f:62:8a:08:cf:1a:bb:
c5:72:07:a0:c0:62:f4:e3:e7:3f:62:a6:70:56:3f:
2c:95:b6:d9:b1:18:16:de:d7:02:83:67:02:d4:5b:
e3:48:1a:64:a1:88:00:bb:cc:93:26:0a:b6:5a:8f:
4e:ea:10:f2:2b:55:8d:5a:c9:04:e2:e6:9f:70:87:
b7:a4:ed:0a:8e:76:7a:85:ad:d1:23:80:79:8e:98:
93:f1:e8:7e:aa:6d:f8:8e:90:1b:39:9f:79:bb:3c:
e5:04:a4:47:8e:bc:ca:7e:23:58:94:c8:d4:66:70:
e7:fd:5e:3c:d3:1f:a9:ca:e1:bf:4a:17:e5:87:98:
ca:6a:4f:34:fd:84:99:79:93:40:3a:2d:3d:b7:8b:
d4:19:fb:d0:6f:84:21:10:eb:1e:37:49:4d:c7:21:
1b:e4:02:70:de:4d:f7:e2:15:0f:b0:cc:84:f4:4d:
03:66:1e:da:be:8a:2d:2d:9b:92:af:68:31:b3:90:
a9:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:58:3D:5F:EE:07:B5:24:7D:A3:B1:2E:BE:1A:BA:B4:72:CB:00:08
X509v3 Authority Key Identifier:
keyid:DC:73:08:3B:ED:44:87:71:7E:E7:D9:0C:67:51:37:9C:5B:69:15:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3HMIO-1Eh3F-59kMZ1E3nFtpFcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/1d42cd-00b0-4333-874b-3718656a40e8/1/LFg9X-4HtSR9o7Euvhq6tHLLAAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/1d42cd-00b0-4333-874b-3718656a40e8/1/3HMIO-1Eh3F-59kMZ1E3nFtpFcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.89.0/24
IPv6:
2a10:64c0::/29
Signature Algorithm: sha256WithRSAEncryption
03:38:d6:7a:47:66:64:48:56:fe:fb:dc:4b:4f:1e:c8:8c:a8:
40:bd:e2:0e:9f:31:92:25:e1:af:88:97:91:15:c5:4f:05:9b:
6c:23:1a:38:f8:2a:78:5f:3d:8a:38:bc:10:df:f2:7e:68:3b:
2a:0a:97:b3:28:7e:7b:14:7a:e1:38:df:48:75:7e:fe:42:9b:
5b:e9:d2:a4:33:79:66:33:3f:aa:25:82:c8:b3:9b:f6:b8:25:
5f:bf:47:de:ed:ca:98:ac:08:1a:47:28:59:57:e8:db:3a:4a:
90:f8:2a:1c:a6:37:65:3e:03:37:d1:e6:4d:b4:a0:21:a3:1e:
9a:b7:6f:b3:be:14:1d:91:be:14:7f:83:88:98:fc:c8:10:26:
3a:c0:dc:77:be:ac:b3:11:ff:46:9f:8a:34:09:71:b4:5a:3d:
d4:8a:7b:d7:f4:27:e8:dc:2d:6e:6d:a0:8a:a4:07:d1:70:75:
be:5b:a7:d9:79:29:91:a2:a0:f5:93:b4:b7:f9:a5:6a:5f:7e:
2e:56:8f:a1:60:aa:12:6a:86:c2:d8:00:f3:7a:5f:f4:8a:72:
70:b2:1b:d7:35:46:08:e4:8d:24:ce:1d:ab:bd:a4:3f:3e:35:
87:5e:ac:9f:65:6d:ba:8e:5e:f4:e3:6b:93:15:5e:a2:62:71:
fc:92:15:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:09 2023 by rpki-client on console-fra.rpki-client.org