Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/YbWokHGd2zcDCexe2H6VMTzOyKE.roa
File: YbWokHGd2zcDCexe2H6VMTzOyKE.roa (raw, json)
Hash identifier: zeYOrXR8rqA28IUkCVm/xaKytYd67IVNxxipt93loN4=
Subject key identifier: 61:B5:A8:90:71:9D:DB:37:03:09:EC:5E:D8:7E:95:31:3C:CE:C8:A1
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 01820B771616093546E5AFDBE5734ADF118A
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/YbWokHGd2zcDCexe2H6VMTzOyKE.roa
Signing time: Sun 17 Jul 2022 09:22:09 +0000
ROA not before: Sun 17 Jul 2022 09:22:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399641
IP address blocks: 193.176.55.0/24 maxlen: 24
91.199.163.0/24 maxlen: 24
91.199.172.0/24 maxlen: 24
192.166.115.0/24 maxlen: 24
195.206.231.0/24 maxlen: 24
195.20.98.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:0b:77:16:16:09:35:46:e5:af:db:e5:73:4a:df:11:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Jul 17 09:22:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61b5a890719ddb370309ec5ed87e95313ccec8a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:87:c6:01:5b:27:5a:02:f1:f5:e7:9d:7b:12:
92:05:68:42:ac:ef:25:ed:8d:bb:53:62:67:a8:a4:
e3:33:b1:79:2c:a8:e2:cf:dc:42:f0:c2:96:68:f8:
40:0a:c8:70:38:51:79:93:69:84:e9:8d:f9:c8:1f:
7e:75:d4:df:c0:dc:6d:0f:b8:59:9f:76:27:49:1a:
62:a9:40:48:2b:3b:71:37:ab:f9:70:45:a7:e7:d7:
14:35:ed:f4:9b:98:36:db:9d:41:b3:7e:49:5a:72:
d9:b8:4a:de:da:92:f4:47:97:b2:ac:63:85:00:59:
d1:d3:aa:37:fe:b3:b1:97:53:85:75:77:be:e3:97:
48:a5:e5:69:39:18:57:b1:15:41:14:0e:25:ca:fa:
69:3c:6e:81:16:8b:68:a5:47:6f:83:cb:e5:22:f1:
2d:a1:7e:ac:42:bc:5c:0e:e2:f8:57:27:67:fe:b9:
ec:ed:e3:c8:e9:6e:7d:78:5e:34:45:e1:ba:b5:41:
e7:f8:22:95:3e:9a:08:a1:53:8f:70:03:b4:0d:be:
88:fc:5c:fe:0f:3a:ef:27:ca:97:24:f0:c2:3a:29:
ee:26:bd:e7:c0:1f:fd:b2:54:6e:c4:8e:ba:35:38:
a8:a9:f2:9c:1f:40:21:94:aa:12:91:5b:80:9e:bb:
57:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B5:A8:90:71:9D:DB:37:03:09:EC:5E:D8:7E:95:31:3C:CE:C8:A1
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/YbWokHGd2zcDCexe2H6VMTzOyKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.163.0/24
91.199.172.0/24
192.166.115.0/24
193.176.55.0/24
195.20.98.0/24
195.206.231.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:ed:4d:ad:9a:7e:88:6c:96:7d:77:36:85:5c:85:1a:79:2a:
1f:10:5b:bf:b9:62:c2:8d:cb:1a:4d:1e:9d:f7:3e:19:c6:86:
14:a9:3d:f9:75:11:8a:f4:a5:8e:18:3f:db:18:e3:3d:b4:bf:
69:4b:80:c7:3d:25:ad:03:44:e2:d1:a8:4b:cb:51:ae:3a:9d:
a0:f9:48:a1:b4:f2:99:7b:55:34:b8:4e:b8:e7:50:61:59:b4:
21:d0:5e:28:21:0f:08:40:31:ba:58:34:26:c5:2f:94:83:91:
a2:3e:b9:e4:c7:f0:3a:46:6a:7b:dc:a2:fe:23:51:76:16:e1:
c0:14:10:f8:ab:18:98:93:28:c6:07:2b:b5:2d:8e:6c:b2:a9:
77:7f:21:8f:c9:0f:bc:63:7b:4d:2f:4a:61:aa:cb:ed:66:2b:
12:9e:04:dd:d1:e2:67:9b:c7:c9:d6:58:82:a5:c8:ad:17:f1:
7c:8e:53:92:94:d8:0e:3b:16:22:74:2c:90:f6:28:a3:e6:18:
5b:f4:af:f9:cb:5a:2b:3e:62:e9:b1:b4:da:d0:f0:a1:13:09:
ee:89:e5:4d:c7:7f:da:af:6a:4c:b8:d9:50:e5:e5:c7:a1:03:
71:78:04:88:4c:65:9a:3a:a5:13:25:f9:1f:8f:8f:71:86:58:
1e:52:bf:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:58 2023 by rpki-client on console-fra.rpki-client.org