Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/D3jYIXxJHTJhGyHr2J8qdfGOVCY.roa
File: D3jYIXxJHTJhGyHr2J8qdfGOVCY.roa (raw, json)
Hash identifier: CW4Lt+ApAjxjXYeGBCSPig/Revg/QH5dqZCbbtFer/I=
Subject key identifier: 0F:78:D8:21:7C:49:1D:32:61:1B:21:EB:D8:9F:2A:75:F1:8E:54:26
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 0181FCD77EEA3825DB1F7184F0BD51E962A3
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/D3jYIXxJHTJhGyHr2J8qdfGOVCY.roa
Signing time: Thu 14 Jul 2022 13:13:09 +0000
ROA not before: Thu 14 Jul 2022 13:13:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203893
IP address blocks: 147.78.122.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:fc:d7:7e:ea:38:25:db:1f:71:84:f0:bd:51:e9:62:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Jul 14 13:13:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f78d8217c491d32611b21ebd89f2a75f18e5426
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d4:4f:dd:87:6c:86:6d:c6:b3:d7:f0:e7:0e:
85:db:1e:8f:1c:44:87:bf:f3:33:ee:56:78:ad:c2:
f4:4f:30:2f:e4:4d:e6:93:fd:7a:9e:88:35:12:8f:
6d:8d:ac:41:f1:9e:0d:39:d2:48:5f:e8:af:f5:11:
f6:f3:8e:2d:de:80:6c:16:61:47:18:7c:10:bd:ab:
3b:09:e8:89:af:55:87:c7:9a:e9:9f:41:08:33:06:
52:08:ca:f9:69:36:e5:46:7d:02:71:97:30:3e:1d:
ea:33:04:3c:db:dc:b7:46:db:b7:bc:2e:da:3b:80:
cd:17:e6:68:a5:8c:21:39:a0:2c:fc:93:91:25:be:
2c:b7:81:ed:c0:a5:6a:b9:08:df:c1:aa:64:69:4d:
bc:fc:2e:f1:a8:c1:11:61:44:11:49:f9:bf:d2:7b:
9d:16:26:3e:67:45:7a:4a:b4:6c:85:cc:e8:3d:1f:
69:fc:6b:32:56:38:a1:02:db:43:6f:84:69:1c:be:
2f:19:27:a0:90:fb:9e:72:a3:0b:7e:d4:af:74:c9:
89:24:9b:b4:f9:0b:10:a7:11:66:d8:73:cb:21:1c:
6d:52:a7:a2:1f:97:64:39:e8:52:69:df:18:87:d5:
18:58:c4:ae:61:a9:93:ed:e2:6b:56:27:6c:67:55:
2d:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:78:D8:21:7C:49:1D:32:61:1B:21:EB:D8:9F:2A:75:F1:8E:54:26
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/D3jYIXxJHTJhGyHr2J8qdfGOVCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.122.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:93:91:8d:57:53:49:c1:9d:2f:e4:be:fa:0f:1b:18:27:ad:
90:36:5a:3c:23:83:28:58:a6:d8:1d:85:ae:48:27:38:28:4d:
d4:f9:33:09:a7:f9:b0:09:8a:8f:ff:8f:4d:bf:7d:4e:ec:04:
02:cb:f4:0d:c2:5b:79:03:e0:88:d5:7b:2d:18:8e:e8:e3:fc:
d3:58:e5:8a:a0:92:14:9d:11:27:90:3a:cf:e5:b2:38:7e:c2:
97:b5:a3:46:8f:2f:73:88:c1:84:bd:a9:a3:36:23:04:2d:11:
35:3b:fb:52:99:4d:ef:1e:6b:17:d8:23:10:d0:26:26:01:b1:
11:c8:d8:f5:98:c1:bb:35:2d:1d:8b:92:d3:c0:81:3c:ae:72:
c3:be:fc:a8:5c:bf:74:e0:a1:57:09:e4:c9:15:3c:9d:ce:64:
6a:fc:9e:68:5f:74:47:f0:28:f3:d4:25:87:86:70:de:7a:22:
03:33:fb:05:cd:fd:14:c4:af:e1:76:4f:f5:2e:1b:27:70:fa:
ca:ef:f6:3c:c3:fc:7a:89:c8:5c:43:f9:3f:58:55:99:d4:80:
9f:f4:b7:ec:d5:25:79:eb:6c:e5:98:dd:89:8f:92:d4:cd:2a:
37:ac:34:07:f2:19:cc:74:54:7c:9d:1b:73:0f:b5:5c:e4:35:
42:3c:45:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:57 2023 by rpki-client on console-fra.rpki-client.org