Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/RDTWcjYgFdxzYLM7osXeAY0btZU.roa
File: RDTWcjYgFdxzYLM7osXeAY0btZU.roa (raw, json)
Hash identifier: efvUyenOjszPyvCI2mnnJhS8Iaga8uD/gAwi5SA8bDs=
Subject key identifier: 44:34:D6:72:36:20:15:DC:73:60:B3:3B:A2:C5:DE:01:8D:1B:B5:95
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 01820213DB3A6BF33165B4F433D16B3481FA
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/RDTWcjYgFdxzYLM7osXeAY0btZU.roa
Signing time: Fri 15 Jul 2022 13:37:11 +0000
ROA not before: Fri 15 Jul 2022 13:37:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211252
IP address blocks: 194.147.4.0/24 maxlen: 24
194.147.5.0/24 maxlen: 24
194.5.146.0/24 maxlen: 24
194.5.148.0/24 maxlen: 24
193.151.183.0/24 maxlen: 24
193.151.180.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:02:13:db:3a:6b:f3:31:65:b4:f4:33:d1:6b:34:81:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Jul 15 13:37:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4434d672362015dc7360b33ba2c5de018d1bb595
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:2a:90:c1:61:52:91:70:20:16:8e:33:86:9c:
22:76:d9:46:2c:82:34:9a:aa:ea:74:a8:70:ab:0e:
7f:47:09:bf:17:b3:92:9d:ce:10:cc:59:ba:a3:85:
1a:42:45:21:cd:27:2e:22:bb:ca:0b:94:8e:d7:84:
f1:66:c6:e8:78:67:3c:60:37:81:21:f1:98:07:97:
cd:ca:46:9d:c8:02:81:fc:2c:06:af:cf:72:a7:a7:
64:b6:97:04:8f:89:3a:c7:b5:7e:db:09:f7:c0:04:
6b:0b:18:1a:d9:1e:e4:c6:46:8c:c8:96:cb:67:23:
37:27:44:60:62:1d:4b:3c:31:c5:2e:66:1b:23:01:
6f:f0:37:4c:79:92:ae:89:5b:84:5b:28:bc:27:6d:
72:4e:e8:92:65:80:25:ad:ca:62:4b:eb:b1:ec:6c:
0c:6b:08:e2:42:12:d3:45:95:99:6f:aa:5e:5b:ec:
26:f9:ec:0c:38:31:07:9d:94:d2:80:30:74:ca:c3:
47:5b:f7:18:8e:13:dc:41:94:93:75:d4:d7:c4:25:
dc:17:2a:19:55:e4:c3:1e:3a:8a:b4:4d:b3:d2:e1:
0d:39:85:23:af:7c:63:68:9f:42:bd:04:e1:e5:09:
44:7d:76:30:b5:0e:08:08:9b:a0:0b:2a:03:91:00:
fa:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:34:D6:72:36:20:15:DC:73:60:B3:3B:A2:C5:DE:01:8D:1B:B5:95
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/RDTWcjYgFdxzYLM7osXeAY0btZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.151.180.0/24
193.151.183.0/24
194.5.146.0/24
194.5.148.0/24
194.147.4.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:8d:94:72:e7:1b:ef:03:7d:95:41:47:36:24:cd:38:ac:bb:
b6:38:e1:b0:96:df:24:95:74:41:e9:c5:a9:a6:eb:b3:5f:25:
9d:4c:07:4f:ab:42:ca:58:ec:6c:78:e0:13:a0:8a:14:b0:be:
db:39:2e:cb:8e:19:bc:6b:ad:73:b3:7b:68:1a:98:78:db:60:
35:fa:ba:02:38:b0:9f:d5:6a:72:5b:67:69:af:ca:a1:2b:16:
ea:8f:59:2b:29:4f:d1:90:31:b4:d6:cf:bf:cf:41:2d:22:bf:
4d:24:82:ea:60:fd:41:b1:e0:f9:e6:81:b6:60:fe:5a:bb:27:
d7:61:0b:a1:6f:0f:67:1e:41:f6:16:44:da:25:39:98:0d:37:
1c:af:ed:af:ce:16:d4:ce:29:a3:a8:7f:50:07:fe:4c:b7:f8:
ae:b7:29:cb:2f:5e:4a:f6:d2:2e:52:0f:7c:44:fe:5d:14:e4:
db:84:e3:14:7b:c4:ad:b2:01:ff:c0:4d:a6:98:8e:c1:5c:79:
d9:c8:6b:99:9a:dd:67:0d:af:55:a7:7f:0b:7d:45:4a:23:cd:
9c:0a:60:df:34:46:33:1c:62:99:f7:8d:bd:98:7f:45:e0:72:
07:a1:df:0a:d5:13:35:66:16:9c:8d:5e:03:e5:17:2b:9f:54:
34:0e:83:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:58 2023 by rpki-client on console-fra.rpki-client.org