Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/XTGz47VIf2Br5aiQ2G1qKm2vNLg.roa
File: XTGz47VIf2Br5aiQ2G1qKm2vNLg.roa (raw, json)
Hash identifier: ksbTAimiZHmeiOPvJPtB5MZkWuy6USW6u3QSPlS00OM=
Subject key identifier: 5D:31:B3:E3:B5:48:7F:60:6B:E5:A8:90:D8:6D:6A:2A:6D:AF:34:B8
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 01852F677ECAF3080B8D1F9D7D2681249681
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/XTGz47VIf2Br5aiQ2G1qKm2vNLg.roa
Signing time: Tue 20 Dec 2022 11:59:49 +0000
ROA not before: Tue 20 Dec 2022 11:59:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 193.176.54.0/24 maxlen: 24
193.176.55.0/24 maxlen: 24
45.154.104.0/23 maxlen: 24
91.199.168.0/24 maxlen: 24
141.98.156.0/23 maxlen: 24
147.78.120.0/23 maxlen: 24
45.149.186.0/23 maxlen: 24
45.158.8.0/23 maxlen: 24
195.206.230.0/24 maxlen: 24
195.206.231.0/24 maxlen: 24
176.105.224.0/23 maxlen: 24
195.206.234.0/24 maxlen: 24
45.153.6.0/23 maxlen: 24
195.206.235.0/24 maxlen: 24
45.142.236.0/23 maxlen: 24
45.142.238.0/23 maxlen: 24
193.111.117.0/24 maxlen: 24
45.158.170.0/23 maxlen: 24
45.158.168.0/23 maxlen: 24
193.151.182.0/23 maxlen: 24
193.151.180.0/23 maxlen: 24
195.20.98.0/24 maxlen: 24
194.104.156.0/24 maxlen: 24
195.20.105.0/24 maxlen: 24
194.105.21.0/24 maxlen: 24
152.89.250.0/23 maxlen: 24
193.29.96.0/23 maxlen: 24
193.29.98.0/23 maxlen: 24
194.147.4.0/23 maxlen: 24
194.147.6.0/23 maxlen: 24
194.5.146.0/23 maxlen: 24
193.142.22.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2f:67:7e:ca:f3:08:0b:8d:1f:9d:7d:26:81:24:96:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Dec 20 11:59:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d31b3e3b5487f606be5a890d86d6a2a6daf34b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:61:8f:1a:a7:f9:4b:41:ca:96:40:41:1c:cf:
69:3b:4c:75:f9:a5:ba:ae:d9:78:92:f8:93:b9:6f:
70:80:0f:50:d9:74:1b:dd:67:aa:70:cc:bc:c6:61:
6a:d0:d7:33:38:07:96:97:11:87:e0:34:c4:b0:a7:
3a:df:98:a1:ca:83:32:2e:4a:f5:f5:97:36:9a:4d:
9e:6d:94:59:03:32:ea:90:03:6c:81:a0:6a:84:6d:
60:f7:7b:1d:cf:fa:3f:0b:13:9b:a1:db:8d:91:7d:
c8:f2:1d:47:c3:92:b2:8b:5a:1f:7e:d5:a8:17:48:
75:84:35:f3:70:79:b1:8f:c3:f8:66:fc:8d:da:e0:
ee:43:7f:42:06:db:31:5b:67:6d:05:91:0c:e7:26:
8c:8b:7b:77:61:df:6d:43:d8:0c:a0:da:4b:76:5f:
85:28:ee:75:25:b8:e0:61:05:47:fd:9e:97:09:9b:
17:92:a1:4b:88:f6:c5:2a:a7:86:bf:75:9c:2d:f3:
f4:c0:06:25:2b:c6:43:86:30:94:d0:12:45:af:a0:
78:4a:a1:b3:d5:1b:0e:fc:fa:ae:5d:52:ce:af:c6:
f1:b7:72:38:2d:e0:be:97:11:b2:20:b8:69:f6:95:
2f:f0:01:16:ed:1e:81:2a:59:28:b5:d7:0f:99:5a:
3a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:31:B3:E3:B5:48:7F:60:6B:E5:A8:90:D8:6D:6A:2A:6D:AF:34:B8
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/XTGz47VIf2Br5aiQ2G1qKm2vNLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.236.0/22
45.149.186.0/23
45.153.6.0/23
45.154.104.0/23
45.158.8.0/23
45.158.168.0/22
91.199.168.0/24
141.98.156.0/23
147.78.120.0/23
152.89.250.0/23
176.105.224.0/23
193.29.96.0/22
193.111.117.0/24
193.142.22.0/24
193.151.180.0/22
193.176.54.0/23
194.5.146.0/23
194.104.156.0/24
194.105.21.0/24
194.147.4.0/22
195.20.98.0/24
195.20.105.0/24
195.206.230.0/23
195.206.234.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:07:0f:8e:38:7e:ea:24:8e:7c:57:d4:32:de:fb:3a:b1:d3:
5a:f1:ea:bf:ab:e6:c2:31:f0:13:88:99:f7:69:8c:e2:f5:63:
ed:3b:c8:e2:06:27:1c:8f:d7:c5:3b:9e:18:b4:9b:0b:2b:e1:
d2:10:93:71:70:ea:1f:43:e2:b3:45:4d:38:0e:79:18:a2:96:
14:d7:6e:14:ac:a5:27:82:5a:2f:84:d5:f7:67:15:27:87:ec:
73:d5:bd:27:4f:c0:57:f0:14:43:1c:b8:3f:91:b1:1c:38:ba:
93:6c:6a:f7:3d:4c:ba:43:52:85:c1:da:e1:ed:36:a6:44:10:
fb:6d:f0:35:13:55:02:1d:8d:2b:77:90:71:d6:01:c6:bb:0d:
21:8d:d4:3f:c5:99:b5:23:e4:0e:f8:e5:41:4c:58:d3:f8:fc:
e6:e7:98:87:be:9d:c9:91:88:82:1f:b9:f6:42:94:31:86:e6:
ad:93:35:cc:0d:ac:5c:3a:c2:c6:f7:33:47:a1:e8:32:c4:1a:
1e:0a:c2:a7:b0:78:09:05:6f:bb:2b:76:2f:e4:46:71:6f:40:
ab:c7:58:79:e3:dd:40:bb:95:1b:72:ed:43:3e:37:db:c0:b5:
54:da:c4:cd:ca:c6:82:bf:e3:52:f7:7b:87:4f:2f:6c:86:9e:
74:f7:26:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:58 2023 by rpki-client on console-fra.rpki-client.org