Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/QcIZtbRwLSNT6cMPl6TinyZsZDU.roa
File: QcIZtbRwLSNT6cMPl6TinyZsZDU.roa (raw, json)
Hash identifier: RH6WpYVe8qSQnaLhT9986Nh1qfJer+DvGiuK4jCXlp8=
Subject key identifier: 41:C2:19:B5:B4:70:2D:23:53:E9:C3:0F:97:A4:E2:9F:26:6C:64:35
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 01847BF80CDA6A2FB8361A14EE79D29925E6
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/QcIZtbRwLSNT6cMPl6TinyZsZDU.roa
Signing time: Tue 15 Nov 2022 15:46:04 +0000
ROA not before: Tue 15 Nov 2022 15:46:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212669
IP address blocks: 152.89.249.0/24 maxlen: 24
193.151.182.0/24 maxlen: 24
195.206.230.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7b:f8:0c:da:6a:2f:b8:36:1a:14:ee:79:d2:99:25:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Nov 15 15:46:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41c219b5b4702d2353e9c30f97a4e29f266c6435
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ad:c3:8d:4b:72:b1:bd:10:73:9d:25:31:f8:
e5:0a:90:bd:fd:cc:c7:e0:27:04:26:c0:d1:68:5b:
95:3c:e0:f1:6a:5f:d8:e5:97:70:95:1f:15:80:27:
bd:04:34:2c:0c:1d:54:1f:2b:ea:7d:5f:68:55:af:
fc:e6:29:b6:7c:83:97:f3:01:83:19:2a:10:4f:36:
ca:9b:b1:ea:a8:d5:f4:dc:52:fa:a7:9e:6f:9d:48:
29:2c:6a:f1:0f:a8:ae:75:5b:36:ff:78:5b:cb:a7:
9d:62:31:cf:6e:ac:dd:1c:7a:a9:1f:c7:a4:bd:d4:
29:5f:5d:b3:95:9f:03:fd:4e:85:be:fc:8e:09:0f:
5d:eb:b4:7c:e7:b4:d0:20:bb:99:cd:95:3f:15:df:
7b:3c:ae:57:79:1d:6a:f6:86:21:00:e6:fe:15:58:
6c:35:93:3c:a5:a2:22:e9:07:52:d2:db:41:6d:6a:
87:65:86:81:3f:19:19:1c:b5:e2:83:1a:49:04:cf:
d9:58:7d:bc:30:92:3c:b6:c4:c7:eb:18:76:0d:78:
8b:1f:a7:f1:ae:81:d5:5a:53:c1:3b:3f:9a:4a:54:
ba:bd:20:62:78:db:1a:2d:7f:16:48:4d:61:74:6f:
fc:00:19:c0:62:a2:ef:e7:2c:c2:88:3c:82:ff:60:
8d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:C2:19:B5:B4:70:2D:23:53:E9:C3:0F:97:A4:E2:9F:26:6C:64:35
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/QcIZtbRwLSNT6cMPl6TinyZsZDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.249.0/24
193.151.182.0/24
195.206.230.0/24
Signature Algorithm: sha256WithRSAEncryption
70:74:ed:5e:98:ed:da:52:91:cc:dc:99:f4:e3:17:1f:73:5a:
64:26:42:6c:76:bf:a5:58:54:95:03:f2:1d:4a:cf:06:21:80:
fb:8c:8c:27:1d:b7:f2:15:e4:1c:69:7b:7e:63:08:86:d7:c8:
ee:a0:f4:e1:40:38:eb:73:bf:ff:23:42:af:32:1d:c7:42:f8:
a6:33:e0:8d:c8:60:69:19:61:52:79:19:b8:93:59:47:0e:71:
35:a3:3a:9b:34:88:e1:e8:eb:0f:d3:62:cd:40:d7:3c:5a:84:
21:fb:1f:24:93:0b:1b:ec:1e:07:42:14:98:5a:23:d6:b9:ea:
28:54:b8:b4:2b:13:7f:94:fb:dd:04:02:66:9b:1a:17:05:03:
c6:d0:5e:8e:07:16:36:b7:c1:4f:d8:db:04:c0:2a:7e:80:6b:
e2:ba:f6:17:c8:4d:76:db:70:b1:68:96:3c:eb:84:8c:c6:5d:
d8:3c:f2:1d:bf:6a:67:fc:c8:a3:db:01:66:4a:a4:a9:b8:1c:
c7:6d:4d:2a:4a:10:bb:9d:b2:e5:8a:d3:3a:48:f7:31:05:6e:
83:c8:ca:8c:30:48:2d:cf:e1:79:48:26:98:73:72:02:8d:6f:
e4:28:aa:d5:62:e7:c8:20:89:4d:28:03:fe:82:2b:f6:ab:65:
4c:ac:a3:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:58 2023 by rpki-client on console-fra.rpki-client.org