Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/56be95-4047-46b5-b098-29e53b3136e6/1/3xfW3UohxRWqFcrWEsJMSfQtLxw.roa
File: 3xfW3UohxRWqFcrWEsJMSfQtLxw.roa (raw, json)
Hash identifier: UQg3Yih3pzcmnCvjn5hPC2V+rQVh9oB94pZiAd7qjXo=
Subject key identifier: DF:17:D6:DD:4A:21:C5:15:AA:15:CA:D6:12:C2:4C:49:F4:2D:2F:1C
Certificate issuer: /CN=8c7fd3dbdc3a9b9531e686b5b07645c328b1b51a
Certificate serial: 0188D2AF9E33364CCA1AEAE5E62335E7ED4B
Authority key identifier: 8C:7F:D3:DB:DC:3A:9B:95:31:E6:86:B5:B0:76:45:C3:28:B1:B5:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jH_T29w6m5Ux5oa1sHZFwyixtRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/56be95-4047-46b5-b098-29e53b3136e6/1/3xfW3UohxRWqFcrWEsJMSfQtLxw.roa
Signing time: Mon 19 Jun 2023 08:05:04 +0000
ROA not before: Mon 19 Jun 2023 08:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.104.190.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d2:af:9e:33:36:4c:ca:1a:ea:e5:e6:23:35:e7:ed:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c7fd3dbdc3a9b9531e686b5b07645c328b1b51a
Validity
Not Before: Jun 19 08:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df17d6dd4a21c515aa15cad612c24c49f42d2f1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:1e:ae:67:66:7f:50:a3:b0:1d:32:ae:29:2b:
1b:3f:b3:46:11:e5:cd:7f:70:73:4b:48:e9:23:87:
57:72:08:d4:c3:be:77:8f:63:04:3f:63:c1:53:a0:
15:23:45:fc:27:fd:cc:d9:7d:71:87:4d:95:db:56:
2b:3e:60:db:1e:8f:40:5a:d0:d1:df:84:d9:51:c8:
2f:7c:40:14:60:47:e8:92:31:9e:23:74:93:dc:95:
b3:e6:bd:e7:2d:76:39:a1:b8:fa:3d:99:4f:af:b9:
6f:cb:b5:86:66:95:8c:06:55:9b:e0:95:0e:57:4e:
bb:9f:5c:55:e5:f6:39:ca:c6:b9:77:dd:22:e2:0d:
c4:d2:ac:73:cd:bf:e4:d0:39:52:3d:db:51:f5:cf:
0a:9f:5a:e0:06:00:32:be:a9:4c:9b:16:20:19:dd:
09:b9:eb:62:00:6a:53:2c:4f:92:a6:9d:39:67:00:
05:b5:b7:17:12:e9:50:e0:93:9f:c7:64:72:12:8b:
bd:2f:a0:8d:e1:6f:5e:57:0b:1e:90:b0:7d:44:a7:
e8:6b:3a:0a:94:02:80:95:fb:a9:2a:d5:b0:99:45:
26:9c:91:66:25:31:ca:7e:23:3b:f6:63:97:11:b4:
b1:36:41:f0:8f:3f:e3:98:07:55:28:fe:53:87:0d:
24:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:17:D6:DD:4A:21:C5:15:AA:15:CA:D6:12:C2:4C:49:F4:2D:2F:1C
X509v3 Authority Key Identifier:
keyid:8C:7F:D3:DB:DC:3A:9B:95:31:E6:86:B5:B0:76:45:C3:28:B1:B5:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jH_T29w6m5Ux5oa1sHZFwyixtRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/56be95-4047-46b5-b098-29e53b3136e6/1/3xfW3UohxRWqFcrWEsJMSfQtLxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/56be95-4047-46b5-b098-29e53b3136e6/1/jH_T29w6m5Ux5oa1sHZFwyixtRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.190.0/24
Signature Algorithm: sha256WithRSAEncryption
47:a7:bd:8c:7a:35:dc:4d:fa:48:a4:21:e6:2c:be:53:7f:d3:
b0:e1:d6:95:50:42:28:88:33:0b:b6:48:a6:97:92:62:50:47:
34:72:5f:68:a7:67:5e:8d:22:af:ba:67:88:9c:b5:88:08:be:
37:e8:c2:6f:73:8c:9e:73:d9:39:cc:1c:ad:27:16:bc:67:a7:
94:a0:15:77:15:3e:ad:67:ff:a7:11:a6:5c:76:de:8f:73:6e:
c4:06:88:f3:15:54:65:b7:16:46:ac:f4:43:17:48:b2:a7:3f:
7a:1d:e9:51:80:de:4e:ee:9b:6c:90:be:2b:8f:ad:98:a2:f7:
19:02:a8:51:53:4e:8c:4a:52:af:81:69:66:4a:ba:2e:63:6b:
24:4c:2a:bb:e3:cc:60:74:38:94:58:fc:93:60:25:98:e3:4f:
41:37:b1:a7:0e:9f:46:9a:83:55:a4:fe:af:df:fe:e7:c0:76:
d2:09:5f:1a:86:86:c2:d9:ac:8d:1b:a7:2b:a6:ab:da:31:96:
31:12:49:7c:c4:65:52:e1:5f:70:47:a9:00:23:8f:94:41:59:
62:63:f4:2f:89:e6:aa:6e:49:f0:b1:68:f5:95:5c:7f:f0:b4:
3a:ef:6c:fe:e0:63:01:65:26:8a:95:bb:73:21:8e:2e:22:54:
de:8d:f5:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:20 2024 by rpki-client on console-fra.rpki-client.org