Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/IKk7hjt9KGsW_Fdf8xBE9NlUc7Q.roa
File: IKk7hjt9KGsW_Fdf8xBE9NlUc7Q.roa (raw, json)
Hash identifier: rC9tctfb8H2g4wp+587aNgzsJPB4p98iPeiDj+ffmKo=
Subject key identifier: 20:A9:3B:86:3B:7D:28:6B:16:FC:57:5F:F3:10:44:F4:D9:54:73:B4
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 018211A289536124E46B90329B1345272794
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/IKk7hjt9KGsW_Fdf8xBE9NlUc7Q.roa
Signing time: Mon 18 Jul 2022 14:07:20 +0000
ROA not before: Mon 18 Jul 2022 14:07:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213035
IP address blocks: 194.147.7.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:11:a2:89:53:61:24:e4:6b:90:32:9b:13:45:27:27:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Jul 18 14:07:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20a93b863b7d286b16fc575ff31044f4d95473b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ad:c9:79:c3:79:92:25:ac:f0:cd:14:1c:ea:
24:80:3f:a6:21:ec:19:9d:da:0f:fd:3b:ba:71:a9:
7a:c5:fa:96:33:8b:b6:da:15:52:09:40:ae:59:00:
9b:bb:1e:fb:00:85:fe:f8:d4:07:db:ab:23:13:34:
3a:4d:f3:71:d3:c1:33:f7:97:4d:6f:3c:a3:44:b4:
0a:10:d8:c2:e4:0f:df:15:7d:d3:da:27:2e:92:9b:
7a:15:cc:67:50:e4:1b:6a:45:bc:6f:a0:04:5e:bb:
a0:c1:72:ec:7a:24:f2:9d:2e:e9:f4:5d:19:cb:32:
6a:4c:98:45:6c:46:64:d7:73:fe:5d:c4:96:08:8c:
3f:93:f3:51:42:2b:92:dc:96:23:33:6f:c4:b0:47:
e5:9b:e4:63:fe:7e:bd:69:58:28:3a:a5:c1:fa:16:
1a:32:6f:8c:98:5d:0e:6a:39:81:8b:ba:7e:22:a9:
51:be:b4:e7:d7:16:56:9f:8c:da:04:b8:db:c5:44:
74:97:0b:df:50:fd:5f:97:8d:62:ce:37:62:92:96:
d1:2c:0f:7d:79:b7:89:e7:9c:2b:bb:eb:77:dd:d1:
77:eb:b8:bc:22:c8:5f:a1:ae:d9:58:6f:83:1c:82:
bb:bb:a1:1f:35:4b:f8:89:78:f7:fc:f6:a0:9c:30:
c3:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:A9:3B:86:3B:7D:28:6B:16:FC:57:5F:F3:10:44:F4:D9:54:73:B4
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/IKk7hjt9KGsW_Fdf8xBE9NlUc7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.7.0/24
Signature Algorithm: sha256WithRSAEncryption
03:4e:a4:3c:e5:2a:5b:d7:94:df:23:0a:70:67:15:30:db:ef:
04:0f:f7:7b:0f:06:9f:42:49:5d:c1:de:48:28:c7:03:17:60:
29:13:c6:d6:2b:df:10:69:3c:11:06:02:d9:71:6c:28:4d:1c:
00:7e:2d:a5:7b:51:ba:40:a7:2c:2a:db:0d:01:5a:1b:c0:fc:
69:6c:da:d0:98:81:34:47:4e:ca:a9:7c:de:90:f4:d5:77:cb:
65:c1:a5:15:99:91:24:90:8f:cf:f7:22:aa:9e:e8:7d:54:e2:
a5:ec:84:ce:5a:b7:aa:ed:f2:58:1a:de:39:46:ff:c5:4c:3b:
7e:b1:df:16:12:82:65:7c:2b:6d:d2:1d:57:d9:b5:90:f9:b4:
ef:83:a4:a2:92:b2:a9:df:41:85:8d:6b:bf:a6:46:e3:7a:23:
c6:bf:7d:1b:ce:8f:be:e6:47:cb:44:05:e0:f6:75:25:a0:d0:
a7:78:57:8f:38:8a:8a:1e:a6:e8:8a:80:21:3e:11:4a:0d:04:
b2:56:99:71:5d:3e:8d:77:e3:97:e3:f4:84:02:35:da:22:d1:
ff:aa:15:2e:4d:08:24:9c:eb:2d:1b:5d:f4:db:e4:52:ce:c9:
ec:cf:b2:76:7a:49:86:7e:fa:d2:87:29:d5:1a:4b:68:70:15:
4a:ef:67:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:57 2023 by rpki-client on console-fra.rpki-client.org