Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/iJm2Vmwt2Jwxh3o1AMCIcUP-xXs.roa
File: iJm2Vmwt2Jwxh3o1AMCIcUP-xXs.roa (raw, json)
Hash identifier: GQygWyWnKWd+JsNE8+GOMeJRZvRzUKdk8IKt22ikZGg=
Subject key identifier: 88:99:B6:56:6C:2D:D8:9C:31:87:7A:35:00:C0:88:71:43:FE:C5:7B
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 01820C5B0D9100B141437EF813E839770721
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/iJm2Vmwt2Jwxh3o1AMCIcUP-xXs.roa
Signing time: Sun 17 Jul 2022 13:31:09 +0000
ROA not before: Sun 17 Jul 2022 13:31:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211252
IP address blocks: 194.147.4.0/24 maxlen: 24
194.147.5.0/24 maxlen: 24
194.5.148.0/24 maxlen: 24
193.151.183.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:0c:5b:0d:91:00:b1:41:43:7e:f8:13:e8:39:77:07:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Jul 17 13:31:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8899b6566c2dd89c31877a3500c0887143fec57b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7e:36:00:9f:11:4b:55:f6:e8:94:e1:5f:f2:
e8:61:3e:06:a9:b3:46:81:98:7e:a4:28:55:25:ae:
a1:48:4c:cb:23:59:7c:55:cd:32:7e:f8:54:af:6e:
ec:a7:68:17:1c:59:3a:a5:f4:bc:eb:0d:80:df:2c:
85:56:0e:7c:dd:d8:59:a5:c9:8e:6a:de:9b:4d:66:
0e:b1:b6:1b:53:ce:8c:aa:3b:e8:54:50:1f:97:e0:
62:07:1a:9d:41:a0:5f:8c:e6:15:a8:4b:ae:6c:90:
a4:de:d4:ac:d7:2a:ba:82:32:c6:11:ee:df:c7:c3:
41:94:a2:3f:28:77:36:cd:e6:5b:5e:7d:f7:cd:e0:
59:a2:da:63:6b:5b:81:07:c7:7d:db:80:53:0a:4a:
26:c8:5e:38:0f:81:e8:cd:15:b7:ba:e2:ca:ea:50:
57:7c:dd:fc:11:b1:85:69:69:7b:ed:f4:5a:5b:4c:
62:e4:56:c4:cf:53:78:c0:e0:ad:1c:6d:36:98:1f:
57:c0:08:33:38:e0:3e:bc:b2:51:2e:3d:f3:df:28:
85:0f:c9:ec:77:be:cf:bd:fb:05:56:b2:4c:b7:2a:
be:3c:e1:be:46:fe:74:0a:f2:61:04:13:c3:35:0c:
ba:3a:3b:0d:c8:d7:39:1c:49:3b:37:95:c0:b6:24:
82:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:99:B6:56:6C:2D:D8:9C:31:87:7A:35:00:C0:88:71:43:FE:C5:7B
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/iJm2Vmwt2Jwxh3o1AMCIcUP-xXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.151.183.0/24
194.5.148.0/24
194.147.4.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:cf:9f:0b:a8:0b:f0:c5:28:b5:2c:c1:04:a7:6d:7a:94:5d:
38:5a:46:ee:cc:20:86:45:cf:fa:2b:f6:06:13:be:c4:db:32:
ae:ed:f5:b2:fe:67:26:1b:f4:44:9e:11:b4:79:db:2b:28:47:
53:df:18:ed:ab:a0:97:f5:64:0e:3b:45:25:62:b5:e9:af:4a:
b4:77:7d:fc:7e:41:d7:34:05:c4:6d:87:0d:75:62:98:3c:38:
e9:ce:73:38:a5:3c:d7:dc:7f:79:a9:90:38:2f:59:0a:8d:19:
9a:ae:69:20:88:8d:5b:b6:eb:ef:43:8d:1f:41:40:b2:b8:aa:
fc:a5:4d:4e:c6:4a:be:e0:77:f5:4b:27:97:10:86:07:52:c4:
b9:c3:87:3c:eb:86:34:8d:81:5d:c8:46:48:da:1e:c1:43:0e:
6a:2d:d6:78:a4:6d:aa:6e:78:e3:9a:f2:59:f3:88:8c:c8:74:
5e:17:ac:aa:7d:e8:92:84:28:24:f0:7c:ce:44:63:1b:88:74:
50:b7:8a:7f:45:bd:50:66:0f:e5:d7:ee:f4:6f:e2:19:34:50:
34:ad:eb:14:db:36:e3:81:5d:fc:e3:51:01:49:52:32:06:74:
1a:09:12:f9:44:f3:b9:d8:70:63:3b:6c:90:16:ea:9f:c0:4c:
c7:77:e7:83
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYIMWw2RALFBQ374E+g5dwchMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyZWQ0YTJmYjE4MGRmNWY5OWQ0YmY4Yzc3Y2M5YTA2ZWYy
NjA1OGMwHhcNMjIwNzE3MTMzMTA5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ODk5YjY1NjZjMmRkODljMzE4NzdhMzUwMGMwODg3MTQzZmVjNTdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2H42AJ8RS1X26JThX/LoYT4GqbNG
gZh+pChVJa6hSEzLI1l8Vc0yfvhUr27sp2gXHFk6pfS86w2A3yyFVg583dhZpcmO
at6bTWYOsbYbU86MqjvoVFAfl+BiBxqdQaBfjOYVqEuubJCk3tSs1yq6gjLGEe7f
x8NBlKI/KHc2zeZbXn33zeBZotpja1uBB8d924BTCkomyF44D4HozRW3uuLK6lBX
fN38EbGFaWl77fRaW0xi5FbEz1N4wOCtHG02mB9XwAgzOOA+vLJRLj3z3yiFD8ns
d77PvfsFVrJMtyq+POG+Rv50CvJhBBPDNQy6OjsNyNc5HEk7N5XAtiSCTQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFIiZtlZsLdicMYd6NQDAiHFD/sV7MB8GA1UdIwQY
MBaAFILtSi+xgN9fmdS/jHfMmgbvJgWMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3UxS0w3R0EzMS1aMUwtTWQ4eWFCdThtQll3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS8wMzAxYmMtYzdmZS00NmU5LWI3YTAt
NDUyNmY2MjYzYmNlLzEvaUptMlZtd3QySnd4aDNvMUFNQ0ljVVAteFhzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS8wMzAxYmMtYzdmZS00NmU5LWI3YTAtNDUyNmY2MjYzYmNl
LzEvZ3UxS0w3R0EzMS1aMUwtTWQ4eWFCdThtQll3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAwZe3AwQA
wgWUAwQBwpMEMA0GCSqGSIb3DQEBCwUAA4IBAQBtz58LqAvwxSi1LMEEp216lF04
WkbuzCCGRc/6K/YGE77E2zKu7fWy/mcmG/REnhG0edsrKEdT3xjtq6CX9WQOO0Ul
YrXpr0q0d338fkHXNAXEbYcNdWKYPDjpznM4pTzX3H95qZA4L1kKjRmarmkgiI1b
tuvvQ40fQUCyuKr8pU1Oxkq+4Hf1SyeXEIYHUsS5w4c864Y0jYFdyEZI2h7BQw5q
LdZ4pG2qbnjjmvJZ84iMyHReF6yqfeiShCgk8HzORGMbiHRQt4p/Rb1QZg/l1+70
b+IZNFA0resU2zbjgV3841EBSVIyBnQaCRL5RPO52HBjO2yQFuqfwEzHd+eD
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:58 2023 by rpki-client on console-fra.rpki-client.org