Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/Cj17apwArYeKzu-FLXW-KBMWQpI.roa
File: Cj17apwArYeKzu-FLXW-KBMWQpI.roa (raw, json)
Hash identifier: GNsOHh7Y2WmEdnSq9IENca4SxBO9iRA9rmfYuDTO6lQ=
Subject key identifier: 0A:3D:7B:6A:9C:00:AD:87:8A:CE:EF:85:2D:75:BE:28:13:16:42:92
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 018412E29ED0C320F46B01E5CCFCE1C65B70
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/Cj17apwArYeKzu-FLXW-KBMWQpI.roa
Signing time: Wed 26 Oct 2022 06:02:32 +0000
ROA not before: Wed 26 Oct 2022 06:02:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 193.111.125.0/24 maxlen: 24
147.78.122.0/23 maxlen: 24
194.113.226.0/24 maxlen: 24
45.146.81.0/24 maxlen: 24
45.146.80.0/24 maxlen: 24
45.149.186.0/23 maxlen: 24
194.105.21.0/24 maxlen: 24
193.176.128.0/24 maxlen: 24
45.152.240.0/23 maxlen: 24
194.147.6.0/23 maxlen: 24
193.142.4.0/24 maxlen: 24
194.5.148.0/23 maxlen: 24
45.158.8.0/24 maxlen: 24
45.158.8.0/23 maxlen: 23
192.166.114.0/24 maxlen: 24
45.153.4.0/24 maxlen: 24
45.153.4.0/23 maxlen: 24
45.153.6.0/23 maxlen: 24
45.153.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:12:e2:9e:d0:c3:20:f4:6b:01:e5:cc:fc:e1:c6:5b:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Oct 26 06:02:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a3d7b6a9c00ad878aceef852d75be2813164292
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:c6:c5:24:25:9a:a1:6b:11:7c:25:ab:9d:16:
63:28:2f:f4:88:c4:77:c9:9a:37:b2:9a:0c:2f:5f:
1f:28:dc:7c:f9:d5:c4:b7:76:f6:f8:c4:4c:fc:01:
83:38:3e:4c:0c:cc:39:7e:e1:4c:98:81:11:26:7e:
b6:79:f5:af:48:3d:ea:62:4f:75:fb:80:39:70:57:
23:3d:09:2c:28:32:71:f4:0b:71:9c:a8:5b:fb:0b:
e1:de:53:b0:ee:26:b0:3f:e4:ae:32:96:7b:08:a5:
39:70:0f:10:5f:81:fd:68:20:21:2e:4c:f5:df:f7:
2c:09:2a:5e:21:5a:ed:5f:3c:50:76:6f:63:2d:c9:
47:de:83:f7:0d:a9:03:f2:0f:20:cb:81:35:3f:e4:
4e:98:00:91:60:c1:c9:6c:0b:8c:ef:35:22:26:ca:
3c:7b:bd:b7:bd:29:61:50:91:14:cf:c5:50:a1:92:
9d:22:54:a8:1d:fc:1a:e1:bb:c2:c0:07:61:b5:56:
2c:b8:f6:4b:70:88:45:17:39:9d:e2:5e:aa:de:ce:
b8:cd:90:4a:59:6f:3b:43:43:90:83:bc:68:57:05:
d3:f2:5a:2f:cf:c8:70:32:80:a4:ce:49:cb:df:17:
91:6e:96:b2:78:03:c5:0b:a3:f2:c9:63:10:08:6b:
fe:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:3D:7B:6A:9C:00:AD:87:8A:CE:EF:85:2D:75:BE:28:13:16:42:92
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/Cj17apwArYeKzu-FLXW-KBMWQpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.80.0/23
45.149.186.0/23
45.152.240.0/23
45.153.4.0/22
45.158.8.0/23
147.78.122.0/23
192.166.114.0/24
193.111.125.0/24
193.142.4.0/24
193.176.128.0/24
194.5.148.0/23
194.105.21.0/24
194.113.226.0/24
194.147.6.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:80:51:a1:83:22:1f:b6:fc:9b:29:4e:18:5c:34:db:2a:6b:
e6:34:2f:85:24:b6:d7:f6:83:1c:d2:e4:9d:cf:8d:c8:bd:13:
c5:ad:03:dd:6d:4c:66:c8:de:62:d2:2e:a8:9e:48:f6:1f:28:
d0:fd:0a:46:c5:c8:da:a7:14:08:db:94:83:3b:7d:08:e6:74:
92:4f:ce:22:92:32:fd:6c:65:3d:4d:a8:c9:53:b2:a3:f0:fb:
8b:c7:0c:9c:f2:b1:ad:a7:3e:43:45:36:61:96:40:f4:3a:af:
9a:ff:06:fd:ec:8d:ee:48:32:69:6a:c1:7e:02:46:7b:1d:71:
52:78:cb:02:3e:28:d9:40:21:e7:8a:0e:66:31:f0:42:04:92:
6c:d5:aa:be:f8:bd:8f:a9:ae:f2:e7:18:47:61:06:b0:a2:83:
f0:28:da:42:25:85:21:61:fd:6c:44:b7:f3:08:3d:82:d6:3f:
8c:9b:28:7e:ca:2d:ce:80:f8:e8:3d:dd:d8:b2:63:43:ff:bc:
d1:d7:53:34:a9:63:5a:1f:2c:4f:e1:d4:7a:81:9b:e6:1e:b1:
01:87:0e:68:a0:53:85:cb:cd:01:f5:35:7b:9e:e8:77:2b:05:
48:57:02:7e:9b:50:5e:86:88:99:1f:e8:d1:3e:dc:9a:ce:c3:
65:71:92:be
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgISAYQS4p7QwyD0awHlzPzhxltwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyZWQ0YTJmYjE4MGRmNWY5OWQ0YmY4Yzc3Y2M5YTA2ZWYy
NjA1OGMwHhcNMjIxMDI2MDYwMjMyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYTNkN2I2YTljMDBhZDg3OGFjZWVmODUyZDc1YmUyODEzMTY0MjkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjMbFJCWaoWsRfCWrnRZjKC/0iMR3
yZo3spoML18fKNx8+dXEt3b2+MRM/AGDOD5MDMw5fuFMmIERJn62efWvSD3qYk91
+4A5cFcjPQksKDJx9AtxnKhb+wvh3lOw7iawP+SuMpZ7CKU5cA8QX4H9aCAhLkz1
3/csCSpeIVrtXzxQdm9jLclH3oP3DakD8g8gy4E1P+ROmACRYMHJbAuM7zUiJso8
e723vSlhUJEUz8VQoZKdIlSoHfwa4bvCwAdhtVYsuPZLcIhFFzmd4l6q3s64zZBK
WW87Q0OQg7xoVwXT8lovz8hwMoCkzknL3xeRbpayeAPFC6PyyWMQCGv+QQIDAQAB
o4ICVzCCAlMwHQYDVR0OBBYEFAo9e2qcAK2His7vhS11vigTFkKSMB8GA1UdIwQY
MBaAFILtSi+xgN9fmdS/jHfMmgbvJgWMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3UxS0w3R0EzMS1aMUwtTWQ4eWFCdThtQll3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS8wMzAxYmMtYzdmZS00NmU5LWI3YTAt
NDUyNmY2MjYzYmNlLzEvQ2oxN2Fwd0FyWWVLenUtRkxYVy1LQk1XUXBJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS8wMzAxYmMtYzdmZS00NmU5LWI3YTAtNDUyNmY2MjYzYmNl
LzEvZ3UxS0w3R0EzMS1aMUwtTWQ4eWFCdThtQll3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUAwQBLZJQAwQB
LZW6AwQBLZjwAwQCLZkEAwQBLZ4IAwQBk056AwQAwKZyAwQAwW99AwQAwY4EAwQA
wbCAAwQBwgWUAwQAwmkVAwQAwnHiAwQBwpMGMA0GCSqGSIb3DQEBCwUAA4IBAQB9
gFGhgyIftvybKU4YXDTbKmvmNC+FJLbX9oMc0uSdz43IvRPFrQPdbUxmyN5i0i6o
nkj2HyjQ/QpGxcjapxQI25SDO30I5nSST84ikjL9bGU9TajJU7Kj8PuLxwyc8rGt
pz5DRTZhlkD0Oq+a/wb97I3uSDJpasF+AkZ7HXFSeMsCPijZQCHnig5mMfBCBJJs
1aq++L2Pqa7y5xhHYQawooPwKNpCJYUhYf1sRLfzCD2C1j+Mmyh+yi3OgPjoPd3Y
smND/7zR11M0qWNaHyxP4dR6gZvmHrEBhw5ooFOFy80B9TV7nuh3KwVIVwJ+m1Be
hoiZH+jRPtyazsNlcZK+
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:57 2023 by rpki-client on console-fra.rpki-client.org