Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/lI-iREIvvM6VfP1XEXBg4P6o6wk.roa
File: lI-iREIvvM6VfP1XEXBg4P6o6wk.roa (raw, json)
Hash identifier: nLaeyABHsEnx2/+irqml6u7ZQ5MQ9bYFDqEsELhZJ5k=
Subject key identifier: 94:8F:A2:44:42:2F:BC:CE:95:7C:FD:57:11:70:60:E0:FE:A8:EB:09
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 0184102D905956C14D6635E022B0AF49ED4C
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/lI-iREIvvM6VfP1XEXBg4P6o6wk.roa
Signing time: Tue 25 Oct 2022 17:25:32 +0000
ROA not before: Tue 25 Oct 2022 17:25:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 193.111.125.0/24 maxlen: 24
147.78.122.0/23 maxlen: 24
194.104.156.0/24 maxlen: 24
194.113.226.0/24 maxlen: 24
45.146.81.0/24 maxlen: 24
45.146.80.0/24 maxlen: 24
45.149.186.0/23 maxlen: 24
194.105.21.0/24 maxlen: 24
193.176.128.0/24 maxlen: 24
45.152.240.0/23 maxlen: 24
194.147.6.0/23 maxlen: 24
193.142.4.0/24 maxlen: 24
194.5.148.0/23 maxlen: 24
45.158.8.0/24 maxlen: 24
45.158.8.0/23 maxlen: 23
192.166.114.0/24 maxlen: 24
45.153.4.0/23 maxlen: 24
45.153.4.0/24 maxlen: 24
45.153.6.0/23 maxlen: 24
45.153.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:10:2d:90:59:56:c1:4d:66:35:e0:22:b0:af:49:ed:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Oct 25 17:25:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=948fa244422fbcce957cfd57117060e0fea8eb09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:2b:aa:d7:61:f7:1c:78:f8:e6:ec:5b:18:bf:
4c:ee:06:4a:87:92:d7:ba:87:8a:14:9f:2b:49:0b:
64:d8:d1:8c:86:df:23:d5:94:3d:dd:59:21:b3:bc:
93:7a:e2:5d:e4:d1:67:1e:fa:af:2f:c0:47:69:0c:
7a:fb:97:91:11:01:f7:af:a2:2c:d0:57:e5:81:3a:
99:ec:98:fe:04:99:02:a0:b3:a8:f0:c8:ea:04:6d:
91:fc:ad:5b:f5:c5:79:6d:02:e1:42:04:41:9b:46:
94:50:4c:9b:8e:05:14:e1:32:b9:65:37:a0:3e:50:
c8:85:c9:ef:23:f3:e4:3a:c2:e4:14:a0:69:89:cb:
eb:f6:16:98:4e:60:ab:93:b2:50:48:9a:5c:fe:b7:
bc:4f:35:25:ef:8f:74:44:6c:ba:59:74:89:52:82:
74:31:cf:1c:ad:4d:01:04:22:2e:50:7f:c8:fd:83:
3e:08:fc:29:78:4e:50:b7:ae:bb:c2:2b:f9:5c:7d:
29:16:9c:11:5e:e4:3b:37:0e:ec:5f:4a:75:dc:00:
cd:b3:4d:d4:1f:3c:c9:06:a4:ca:55:f2:7b:78:79:
b5:3b:72:d0:c3:65:89:ba:98:42:72:6b:18:f3:9e:
71:a2:8d:69:17:91:8e:cf:a5:ca:32:47:46:9b:93:
e5:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:8F:A2:44:42:2F:BC:CE:95:7C:FD:57:11:70:60:E0:FE:A8:EB:09
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/lI-iREIvvM6VfP1XEXBg4P6o6wk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.80.0/23
45.149.186.0/23
45.152.240.0/23
45.153.4.0/22
45.158.8.0/23
147.78.122.0/23
192.166.114.0/24
193.111.125.0/24
193.142.4.0/24
193.176.128.0/24
194.5.148.0/23
194.104.156.0/24
194.105.21.0/24
194.113.226.0/24
194.147.6.0/23
Signature Algorithm: sha256WithRSAEncryption
c6:60:7e:cc:ac:b7:19:b4:88:30:d9:6b:78:46:37:d8:ab:a5:
74:74:d4:e3:d9:16:57:49:1b:f7:c7:f6:d3:46:ba:e8:d4:e3:
98:58:0a:21:ef:e9:fb:d8:14:3c:f1:b5:b7:85:95:0f:1b:06:
d8:d6:85:eb:4c:5d:b7:18:88:6d:13:ad:d9:de:31:13:cb:b2:
44:d5:18:65:f2:27:5e:9b:95:f2:bd:19:a6:c3:b1:45:28:99:
b1:be:3b:9f:d1:ad:e1:eb:e5:81:6c:1d:ec:d6:67:9b:2f:f0:
b9:c9:c2:00:fe:63:8a:32:18:6e:9a:0b:a4:17:cb:87:ac:05:
a8:b0:33:84:ab:a1:fd:d4:87:27:37:71:a6:bf:30:6b:5e:89:
5f:4b:61:31:b0:25:71:f1:58:56:12:25:b3:72:fe:11:ee:65:
76:03:46:89:2e:25:77:1b:fd:95:3b:64:f5:1f:e5:ef:e0:e7:
1b:e9:f1:32:6d:18:e1:43:c2:d0:a4:21:8b:d5:72:30:79:de:
af:33:b4:58:16:c3:17:22:36:ef:66:f5:d0:35:a5:98:fa:9e:
aa:65:16:65:36:c8:52:c0:cf:3e:de:af:0c:51:2a:f1:a7:32:
9e:2e:0c:56:ca:0b:fc:50:cb:b5:bc:3f:1f:8a:8b:98:1b:27:
21:bf:96:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:58 2023 by rpki-client on console-fra.rpki-client.org