Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/T1G5SzbilZ45a6VWFTvGR1nlI-c.roa
File: T1G5SzbilZ45a6VWFTvGR1nlI-c.roa (raw, json)
Hash identifier: A1jt/hWAafy+ZYQ5KWF+AVahBpehLJbw8XHkteQ0zWY=
Subject key identifier: 4F:51:B9:4B:36:E2:95:9E:39:6B:A5:56:15:3B:C6:47:59:E5:23:E7
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 0183A6A3A494350DC3C7F90B777908541412
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/T1G5SzbilZ45a6VWFTvGR1nlI-c.roa
Signing time: Wed 05 Oct 2022 05:34:45 +0000
ROA not before: Wed 05 Oct 2022 05:34:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 193.111.125.0/24 maxlen: 24
147.78.122.0/23 maxlen: 24
194.104.156.0/24 maxlen: 24
194.113.226.0/24 maxlen: 24
45.149.186.0/23 maxlen: 24
194.105.21.0/24 maxlen: 24
192.166.82.0/24 maxlen: 24
192.166.83.0/24 maxlen: 24
193.176.128.0/24 maxlen: 24
45.152.240.0/23 maxlen: 24
193.142.4.0/24 maxlen: 24
194.5.148.0/23 maxlen: 24
45.158.10.0/23 maxlen: 24
45.158.8.0/24 maxlen: 24
45.158.8.0/23 maxlen: 23
192.166.114.0/24 maxlen: 24
195.206.230.0/24 maxlen: 24
45.153.4.0/23 maxlen: 24
45.153.4.0/24 maxlen: 24
45.153.6.0/23 maxlen: 24
45.153.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a6:a3:a4:94:35:0d:c3:c7:f9:0b:77:79:08:54:14:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Oct 5 05:34:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f51b94b36e2959e396ba556153bc64759e523e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0f:22:f2:a8:8d:bc:85:de:c5:f6:c3:52:07:
2f:0b:7e:80:3d:8f:da:37:de:ca:78:c5:7b:a9:d6:
8c:85:44:93:06:11:21:c2:17:d2:1a:56:89:c4:de:
86:21:82:ab:06:b1:37:0b:72:c7:bf:d1:bc:e2:e1:
66:18:ae:fe:d5:2b:f9:35:56:08:e6:c2:51:6c:c5:
ee:17:a9:20:55:b0:4f:70:cd:df:ab:a7:a3:c8:da:
6f:d3:4f:fd:f0:6d:86:97:78:91:5b:fe:8a:5d:32:
ea:6b:df:c6:b1:11:74:f1:b6:62:57:ef:18:d3:c6:
ae:50:f1:53:cf:dc:4f:cc:19:2e:3d:e8:f9:9c:14:
0d:df:49:36:ee:9d:b4:fe:4a:17:6d:69:93:a7:74:
b3:85:85:f4:51:55:c3:0d:d5:01:c5:f4:7c:e9:d7:
3b:53:96:eb:a2:81:a0:0b:7b:de:20:03:2b:dd:1b:
e9:26:43:34:12:9e:d7:9f:e0:f4:98:06:be:ff:04:
27:3d:99:2e:16:6a:e0:ed:92:23:e7:48:97:11:35:
ce:f1:e6:ff:02:db:5e:2b:c9:d7:84:21:04:6a:9f:
80:ba:b3:04:30:4a:20:d2:94:5a:62:8c:9f:82:77:
db:16:38:b0:30:5a:ef:17:9e:b0:cd:8d:ba:ec:3b:
cc:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:51:B9:4B:36:E2:95:9E:39:6B:A5:56:15:3B:C6:47:59:E5:23:E7
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/T1G5SzbilZ45a6VWFTvGR1nlI-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.186.0/23
45.152.240.0/23
45.153.4.0/22
45.158.8.0/22
147.78.122.0/23
192.166.82.0/23
192.166.114.0/24
193.111.125.0/24
193.142.4.0/24
193.176.128.0/24
194.5.148.0/23
194.104.156.0/24
194.105.21.0/24
194.113.226.0/24
195.206.230.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:5f:f8:7a:86:59:d2:5c:c9:ef:87:44:30:9f:cf:19:b1:0c:
0d:43:2c:1a:79:7a:7a:21:2e:24:e8:2a:ab:b7:5f:51:d0:63:
1f:e0:ab:c3:3e:a3:ea:85:af:13:c3:13:45:6f:87:96:fb:b6:
ca:8f:53:73:76:8f:fa:fd:f7:00:92:a2:4f:5a:5c:9e:ef:34:
66:7d:52:c9:e4:83:d0:4c:98:70:39:bd:db:4e:f8:1a:d7:a7:
53:1f:ee:05:4f:be:be:b5:4d:67:87:cb:7d:b6:62:20:4d:bd:
99:49:49:1e:3b:13:ab:97:9b:5d:df:57:94:4a:03:10:5b:74:
1e:17:8e:55:b5:3d:52:c3:35:f7:fa:83:0e:b0:dd:2a:13:48:
0e:af:da:5a:cc:d6:35:96:8f:57:a2:34:0a:98:31:8f:a5:24:
fd:8b:a6:5c:86:4a:13:87:79:66:59:a4:e1:ed:3b:dd:6e:92:
d3:52:7c:5f:03:2d:b4:df:4d:18:09:2f:39:e2:7e:17:1c:ab:
75:52:2b:68:8e:c8:31:a4:02:60:87:b8:d8:2d:90:89:12:2a:
6d:27:5b:f7:79:c8:ba:5c:9a:09:69:8f:b0:4d:e3:4f:cc:06:
33:3f:c3:f4:96:af:0d:61:80:fd:07:de:da:77:52:32:8e:57:
e2:3c:36:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:44 2023 by rpki-client on console-ams.rpki-client.org