Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/AvY3JyOZlFSiUT_Vgjt56bPADiU.roa
File: AvY3JyOZlFSiUT_Vgjt56bPADiU.roa (raw, json)
Hash identifier: ApSJzTSCKJ49CQrERF0/slGgjYvWlvBeabb4wILmXFU=
Subject key identifier: 02:F6:37:27:23:99:94:54:A2:51:3F:D5:82:3B:79:E9:B3:C0:0E:25
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 0182F23B8DF5554A0290B187CCDEF04A3015
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/AvY3JyOZlFSiUT_Vgjt56bPADiU.roa
Signing time: Wed 31 Aug 2022 04:49:25 +0000
ROA not before: Wed 31 Aug 2022 04:49:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 193.111.125.0/24 maxlen: 24
147.78.122.0/23 maxlen: 24
194.104.156.0/24 maxlen: 24
194.113.226.0/24 maxlen: 24
194.105.21.0/24 maxlen: 24
192.166.82.0/24 maxlen: 24
192.166.83.0/24 maxlen: 24
193.176.128.0/24 maxlen: 24
45.152.240.0/23 maxlen: 24
193.142.4.0/24 maxlen: 24
194.5.148.0/23 maxlen: 24
45.158.10.0/23 maxlen: 24
45.158.8.0/24 maxlen: 24
45.158.8.0/23 maxlen: 23
192.166.114.0/24 maxlen: 24
195.206.230.0/24 maxlen: 24
45.153.4.0/23 maxlen: 24
45.153.4.0/24 maxlen: 24
45.153.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f2:3b:8d:f5:55:4a:02:90:b1:87:cc:de:f0:4a:30:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Aug 31 04:49:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02f6372723999454a2513fd5823b79e9b3c00e25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:c2:d5:4d:d2:e7:21:2b:96:60:ae:e5:21:6d:
03:12:3e:f5:c3:74:d1:32:14:5c:9e:1c:8a:7f:1a:
3a:32:f6:38:b2:e3:a4:a6:da:32:d4:44:70:dc:b9:
a5:d3:40:3d:7c:d5:b3:eb:37:2a:4f:f8:04:cd:c1:
c0:5d:24:d7:f6:3b:78:d9:d2:53:17:41:d8:49:e4:
9e:64:05:ee:e9:85:07:69:d1:8e:3a:65:77:ab:fa:
1f:9e:0d:91:9a:47:b8:89:e0:df:c7:7e:e4:da:9e:
47:e0:b2:e7:32:7b:5e:c1:74:42:57:39:7e:a6:c0:
fc:16:02:07:7d:e6:cc:b5:86:b5:63:bc:6c:76:e1:
4f:b2:cb:62:4b:bc:2e:2f:35:d4:21:64:40:16:ff:
37:40:29:06:77:c0:1b:a4:fd:c7:fd:91:61:16:8e:
98:5d:7c:4a:65:8f:94:1c:da:a1:da:ba:30:cf:18:
f8:da:ce:3c:c1:46:76:e1:bf:2f:f8:e4:70:c7:0c:
ae:05:11:60:cd:ea:32:bc:ae:0b:78:e7:2d:a5:b1:
4f:31:80:b8:57:95:c2:61:4f:c6:cf:6f:7f:8c:15:
94:47:1a:de:e8:54:9a:db:08:54:e7:a0:b0:f0:79:
77:be:f3:28:2d:f2:3b:ae:1d:ff:c5:da:60:9b:7e:
c1:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F6:37:27:23:99:94:54:A2:51:3F:D5:82:3B:79:E9:B3:C0:0E:25
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/AvY3JyOZlFSiUT_Vgjt56bPADiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.240.0/23
45.153.4.0/23
45.158.8.0/22
147.78.122.0/23
192.166.82.0/23
192.166.114.0/24
193.111.125.0/24
193.142.4.0/24
193.176.128.0/24
194.5.148.0/23
194.104.156.0/24
194.105.21.0/24
194.113.226.0/24
195.206.230.0/24
Signature Algorithm: sha256WithRSAEncryption
54:54:51:bb:c4:71:1c:48:41:0d:4c:0f:f5:a3:c5:05:18:f5:
ce:9a:e4:58:29:ae:18:01:54:9e:b4:16:8e:da:0d:8b:29:ab:
09:39:89:80:83:b3:79:91:6e:3e:d9:7e:4d:05:c7:e4:e1:b4:
4b:a6:76:ff:74:75:f8:d9:b5:25:1d:96:8b:39:e4:09:38:4a:
4b:95:5c:80:24:da:ad:11:c4:b9:c2:4c:f2:4d:7c:09:ea:5f:
f8:70:35:f1:c0:a8:dd:d9:61:74:24:dd:11:c7:49:f5:49:34:
af:c7:d0:e9:e6:7e:76:95:25:1d:5c:28:11:e0:12:1e:e2:04:
59:1d:19:f4:44:6d:c4:f6:b3:bf:b4:c6:81:ee:5f:ba:7d:fb:
38:34:5e:43:89:4b:9d:09:df:9f:1d:b2:c3:45:cf:54:a7:31:
fe:b2:b5:d4:3a:d8:85:36:44:e8:9c:5b:e8:de:c5:69:ac:a8:
b7:56:ef:16:5b:94:9b:b2:50:d6:8c:ba:a9:d2:fe:93:ab:c7:
ca:e8:12:75:eb:0d:5d:36:18:6a:26:de:f9:51:81:63:c8:28:
ec:26:00:0b:07:06:57:86:3c:97:10:58:d1:e7:49:95:a5:af:
10:6f:8c:14:9c:b1:b7:62:ab:31:e3:14:fd:e8:e8:07:5c:1a:
3a:97:83:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:57 2023 by rpki-client on console-fra.rpki-client.org