Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/AsIeoBgojsWAqziHEUwioKSWUWM.roa
File: AsIeoBgojsWAqziHEUwioKSWUWM.roa (raw, json)
Hash identifier: 3bGeT3aTC16ZcKWcsAG8inBMoG1YcmmybZsLUQX30GY=
Subject key identifier: 02:C2:1E:A0:18:28:8E:C5:80:AB:38:87:11:4C:22:A0:A4:96:51:63
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 0182E84E9C42EFA77419DF155B5962E91EAC
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/AsIeoBgojsWAqziHEUwioKSWUWM.roa
Signing time: Mon 29 Aug 2022 06:34:02 +0000
ROA not before: Mon 29 Aug 2022 06:34:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 193.111.125.0/24 maxlen: 24
147.78.122.0/23 maxlen: 24
194.104.156.0/24 maxlen: 24
194.113.226.0/24 maxlen: 24
194.105.21.0/24 maxlen: 24
192.166.82.0/24 maxlen: 24
192.166.83.0/24 maxlen: 24
193.176.128.0/24 maxlen: 24
45.152.240.0/23 maxlen: 24
193.142.4.0/24 maxlen: 24
194.5.148.0/23 maxlen: 24
45.158.10.0/23 maxlen: 24
45.158.8.0/24 maxlen: 24
45.158.8.0/23 maxlen: 23
192.166.114.0/24 maxlen: 24
195.206.230.0/24 maxlen: 24
45.153.4.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:e8:4e:9c:42:ef:a7:74:19:df:15:5b:59:62:e9:1e:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Aug 29 06:34:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02c21ea018288ec580ab3887114c22a0a4965163
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:51:32:d0:22:25:c3:ec:7c:97:e4:c0:98:6c:
89:d9:ab:d9:57:e8:6c:fe:c4:c7:ad:1d:1b:76:29:
32:6c:4e:fb:bd:51:e5:e4:5f:34:4b:93:e7:ea:16:
f2:8b:0e:5a:40:e0:a3:62:a5:62:c3:8a:dc:15:9a:
00:d5:cd:6a:73:7e:7d:ba:09:a7:f0:a2:df:54:91:
67:2e:3c:f6:fc:2a:cc:47:9b:e3:42:10:90:30:f5:
00:e4:30:c2:99:f5:38:05:9f:08:dd:33:0b:06:be:
1e:a1:3c:91:da:25:b5:e1:11:35:0b:ed:7b:cb:a0:
f4:8c:aa:f1:29:f2:bf:aa:b8:38:92:61:8e:78:9c:
96:42:5a:59:70:fa:19:aa:aa:25:6d:53:ab:2a:13:
17:32:02:0c:e2:2b:13:ef:f2:3a:e9:a1:61:3a:30:
ef:67:ac:83:17:7c:5a:7e:7e:31:06:b5:22:68:be:
64:fe:c3:a2:97:3a:c3:60:5e:b8:ef:fb:7f:35:bb:
95:88:f3:0e:17:29:dd:f1:a7:c5:38:ee:92:f1:05:
ca:64:2d:e3:c1:e7:a9:fc:72:38:12:ac:ef:b6:a2:
de:72:7e:a8:1f:8e:dd:4d:26:0d:ce:4f:90:96:ef:
3e:67:01:4d:61:0e:d9:ba:cb:e8:fd:27:d3:89:ff:
11:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:C2:1E:A0:18:28:8E:C5:80:AB:38:87:11:4C:22:A0:A4:96:51:63
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/AsIeoBgojsWAqziHEUwioKSWUWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.240.0/23
45.153.4.0/23
45.158.8.0/22
147.78.122.0/23
192.166.82.0/23
192.166.114.0/24
193.111.125.0/24
193.142.4.0/24
193.176.128.0/24
194.5.148.0/23
194.104.156.0/24
194.105.21.0/24
194.113.226.0/24
195.206.230.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:f9:9a:e3:34:0e:9f:8e:a4:17:fa:9d:99:ca:32:1c:17:fd:
87:8e:51:73:10:3f:f3:bb:8f:b5:ea:19:27:f3:11:b0:c4:ac:
90:9b:7c:56:42:e0:ef:c9:25:ec:b3:26:ff:78:5d:29:53:e9:
50:b3:49:37:71:38:23:76:d1:6a:26:cf:f2:28:b4:8d:d7:a7:
55:c3:8c:fb:9b:fe:05:06:cf:fe:5c:d5:f8:22:96:3c:d1:7a:
5a:6c:e4:2a:dd:6f:c2:e4:03:48:83:16:fc:2f:92:c8:5a:7b:
80:84:c3:c6:08:3d:92:74:05:93:3f:35:7b:15:cc:ce:2f:39:
93:f3:be:60:4f:82:3d:3f:bb:95:7c:03:01:a4:d7:d9:07:ba:
25:c4:bb:3b:1a:c9:27:13:45:16:9b:8d:85:d5:24:e3:59:77:
2f:72:b4:22:92:0a:4f:a0:20:01:15:a1:a1:32:8a:eb:7a:1c:
a7:1f:62:a0:6f:2b:fd:b6:57:fd:da:f5:2a:f1:0a:cb:94:4c:
22:c2:e8:51:f7:63:98:20:7a:6e:a5:cc:0a:12:c9:11:ef:a2:
94:60:e7:bf:83:30:7d:6f:16:56:4c:48:4f:47:d0:20:2c:40:
90:4b:69:25:4e:31:07:65:67:74:dd:90:e9:e4:80:54:0f:42:
c0:d4:08:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:44 2023 by rpki-client on console-ams.rpki-client.org