Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/ZJphOBj-ttPL3oLRyQvdx1Y-7PQ.roa
File: ZJphOBj-ttPL3oLRyQvdx1Y-7PQ.roa (raw, json)
Hash identifier: 23MmGcSpDh2NZy4XYzWakvKYQTs6VsFNqC4L9KsWpXY=
Subject key identifier: 64:9A:61:38:18:FE:B6:D3:CB:DE:82:D1:C9:0B:DD:C7:56:3E:EC:F4
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 0185018BD9AB59E741351592A8785D466A02
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/ZJphOBj-ttPL3oLRyQvdx1Y-7PQ.roa
Signing time: Sun 11 Dec 2022 14:17:00 +0000
ROA not before: Sun 11 Dec 2022 14:17:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 193.176.54.0/24 maxlen: 24
193.176.55.0/24 maxlen: 24
45.154.104.0/23 maxlen: 24
91.199.168.0/24 maxlen: 24
141.98.156.0/23 maxlen: 24
147.78.120.0/23 maxlen: 24
45.149.186.0/23 maxlen: 24
45.158.8.0/23 maxlen: 24
195.206.230.0/24 maxlen: 24
195.206.231.0/24 maxlen: 24
176.105.224.0/23 maxlen: 24
195.206.234.0/24 maxlen: 24
45.153.6.0/23 maxlen: 24
195.206.235.0/24 maxlen: 24
45.142.236.0/23 maxlen: 24
45.142.238.0/23 maxlen: 24
193.111.117.0/24 maxlen: 24
45.158.170.0/23 maxlen: 24
45.158.168.0/23 maxlen: 24
193.151.182.0/23 maxlen: 24
193.151.180.0/23 maxlen: 24
195.20.98.0/24 maxlen: 24
194.104.156.0/24 maxlen: 24
194.104.158.0/24 maxlen: 24
195.20.105.0/24 maxlen: 24
195.20.99.0/24 maxlen: 24
194.105.21.0/24 maxlen: 24
152.89.250.0/23 maxlen: 24
193.29.96.0/23 maxlen: 24
193.29.98.0/23 maxlen: 24
194.147.4.0/23 maxlen: 24
194.147.6.0/23 maxlen: 24
194.5.146.0/23 maxlen: 24
193.142.22.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:01:8b:d9:ab:59:e7:41:35:15:92:a8:78:5d:46:6a:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Dec 11 14:17:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=649a613818feb6d3cbde82d1c90bddc7563eecf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:5e:ac:11:61:c1:0c:5c:32:1b:d5:34:a1:03:
bd:f9:57:95:ab:05:9d:9a:88:cd:73:a9:20:33:2b:
ca:b6:55:77:82:79:0b:b0:bb:5a:0d:e7:19:4d:2f:
bc:db:20:9d:30:3c:e0:7c:5b:c1:18:e8:e8:dc:56:
32:03:08:cc:de:83:0a:0e:2c:e8:f5:0c:86:4c:68:
28:bf:27:a4:da:3a:4e:65:6c:12:fd:9b:3b:c0:c5:
f6:57:3e:fa:9c:30:bf:0e:8c:9e:cd:d5:ae:30:b8:
71:ef:21:87:12:77:0e:8c:27:13:e2:26:13:fe:6d:
fb:c5:84:80:17:66:89:d9:16:97:ab:cb:5f:de:a9:
2b:0b:ea:26:1f:3c:27:c9:41:9b:25:f3:3f:9c:b0:
58:81:37:f9:18:a4:bb:03:2b:5a:28:b8:04:48:4a:
dc:3e:8e:11:1e:13:3d:85:f5:ae:e4:7a:58:17:0f:
ce:ff:70:e4:a1:4a:bc:80:18:d2:92:5c:c5:97:2f:
8d:84:c7:f2:78:73:10:67:0b:d5:83:99:e2:cc:c1:
92:db:ab:51:50:e0:cc:06:f8:a1:40:81:11:25:fd:
ab:b6:3b:06:b8:60:92:2a:86:96:ce:98:87:77:e8:
a7:6e:be:3c:37:27:21:64:22:82:77:ab:99:51:e5:
a0:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:9A:61:38:18:FE:B6:D3:CB:DE:82:D1:C9:0B:DD:C7:56:3E:EC:F4
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/ZJphOBj-ttPL3oLRyQvdx1Y-7PQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.236.0/22
45.149.186.0/23
45.153.6.0/23
45.154.104.0/23
45.158.8.0/23
45.158.168.0/22
91.199.168.0/24
141.98.156.0/23
147.78.120.0/23
152.89.250.0/23
176.105.224.0/23
193.29.96.0/22
193.111.117.0/24
193.142.22.0/24
193.151.180.0/22
193.176.54.0/23
194.5.146.0/23
194.104.156.0/24
194.104.158.0/24
194.105.21.0/24
194.147.4.0/22
195.20.98.0/23
195.20.105.0/24
195.206.230.0/23
195.206.234.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:f7:96:11:8f:3b:33:29:88:67:03:de:58:14:b4:74:90:3d:
b5:f6:93:9f:db:bf:49:1f:de:74:07:a1:ff:36:6f:eb:52:c5:
70:01:2f:65:94:30:83:71:11:f5:14:f3:74:6e:08:59:22:73:
5f:e5:1e:43:57:93:6b:73:5a:76:41:6a:24:dd:15:df:02:a2:
ac:a3:49:b2:9c:26:4f:0b:73:df:ba:db:3c:72:ec:3c:b6:bd:
c0:bb:5d:6b:6c:c1:55:7a:33:23:c3:1e:db:80:51:c1:9d:2a:
ea:17:bb:d7:bc:30:18:97:38:c3:9e:e8:db:38:f9:f1:28:c0:
50:14:ed:46:d0:b9:44:50:ca:58:d9:16:17:19:6d:b9:80:bd:
1e:d4:12:2e:b0:c2:0e:6a:78:56:7d:ed:d0:5c:63:35:21:90:
f6:91:49:b4:fa:1a:19:77:cf:95:c7:10:ee:8c:a2:a0:22:3a:
f7:fe:e7:de:86:74:cb:8b:65:3e:24:b9:81:6f:5e:4b:6c:4b:
57:46:bf:d0:eb:c8:41:0b:1d:53:84:84:23:22:5a:50:92:43:
fc:eb:85:00:3f:f7:bd:08:ca:e0:53:54:1e:5e:9f:83:c3:90:
86:ce:e0:bb:97:33:34:9d:69:cd:f7:a8:ec:85:18:05:0b:5c:
90:66:79:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:44 2023 by rpki-client on console-ams.rpki-client.org