Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/oQeuG8iohnXTZJVgTqPVB6clrGc.roa
File: oQeuG8iohnXTZJVgTqPVB6clrGc.roa (raw, json)
Hash identifier: SZ/VKEYeedgbsObkq0G+OD9YxOHuvnSXYRu6mdXtzYg=
Subject key identifier: A1:07:AE:1B:C8:A8:86:75:D3:64:95:60:4E:A3:D5:07:A7:25:AC:67
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 0181DD81D9D2639034A0F930B6556EE3550B
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/oQeuG8iohnXTZJVgTqPVB6clrGc.roa
Signing time: Fri 08 Jul 2022 11:11:23 +0000
ROA not before: Fri 08 Jul 2022 11:11:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 194.113.227.0/24 maxlen: 24
193.111.117.0/24 maxlen: 24
147.78.120.0/24 maxlen: 24
193.142.22.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:dd:81:d9:d2:63:90:34:a0:f9:30:b6:55:6e:e3:55:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Jul 8 11:11:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a107ae1bc8a88675d36495604ea3d507a725ac67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:88:4b:3d:8d:69:0a:35:18:b5:e5:ff:cb:16:
bd:d1:e2:c0:70:ac:cc:c2:2a:36:ea:2f:5e:6d:bb:
57:66:86:e8:4e:af:13:75:80:84:e3:92:66:1b:3e:
c4:a8:ad:8c:78:ef:11:91:9e:dc:ed:95:7d:e0:52:
7d:8f:ca:0c:bc:ed:6c:44:ed:59:b9:6c:17:6f:ab:
9a:9f:83:99:e4:d7:b0:ed:db:97:bb:d1:57:3f:6b:
a7:4f:f6:63:67:8c:92:5d:4c:84:98:47:15:e5:a3:
83:5a:72:86:f1:de:45:a6:e0:a7:a2:d5:76:2c:bc:
0e:84:f0:91:ad:d1:37:74:9e:67:b8:06:f6:3d:17:
e7:e9:a0:ee:fa:8b:a4:54:c2:ef:6c:88:77:87:c8:
75:eb:a7:ca:78:05:76:f9:f9:31:dd:d5:62:f5:b7:
72:3a:e8:b2:64:76:84:81:8a:fb:72:22:a3:68:d0:
f3:fd:b9:ad:54:25:e6:c1:7f:69:25:f2:23:dd:f1:
16:23:ac:0b:0f:22:c8:83:51:d6:96:e8:f8:30:34:
8b:3d:b6:fc:9a:25:32:f7:3e:67:b3:83:f4:3f:5f:
e6:f3:18:2f:4c:c7:56:3c:2c:5f:0f:16:55:37:52:
9c:bb:db:29:48:9a:21:82:3a:31:07:80:ec:92:f0:
5f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:07:AE:1B:C8:A8:86:75:D3:64:95:60:4E:A3:D5:07:A7:25:AC:67
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/oQeuG8iohnXTZJVgTqPVB6clrGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.120.0/24
193.111.117.0/24
193.142.22.0/24
194.113.227.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:b8:dc:53:46:b7:53:96:b7:a3:47:2b:a1:a1:fc:85:23:0f:
e4:af:a2:03:c7:51:b0:4f:98:d3:55:fb:90:52:43:8e:58:65:
33:80:68:cf:69:76:1b:04:ba:8e:f0:b0:07:d4:b9:8a:19:0a:
5d:2f:47:83:c1:16:2b:9f:87:7f:b4:2a:8c:0f:00:6e:55:e6:
a8:1d:a4:2a:15:2b:bd:e8:5b:8a:ea:e3:c9:25:2c:6a:14:86:
03:4a:bd:7b:5b:b4:14:b8:cb:4b:de:d0:30:4a:ac:aa:35:26:
ac:d1:79:28:0e:19:d2:dc:33:b9:1b:e4:a7:6b:88:0c:b0:67:
80:38:52:f8:35:5a:09:31:c1:be:b6:f9:d5:7c:7b:e0:9d:4f:
f9:e2:53:21:6e:90:6f:5f:9f:ac:5f:05:84:da:67:c0:88:b3:
79:ab:78:bd:0a:52:bb:a4:ef:ec:ab:07:bb:2b:5d:eb:56:f6:
28:17:94:75:38:54:4a:32:e2:21:a0:c5:1d:d1:83:ae:32:54:
ae:39:3f:4d:94:32:0a:0f:9a:03:ee:e1:49:18:31:9c:1f:13:
b7:96:11:b5:39:a6:09:62:c3:a4:db:b9:ee:be:31:80:c9:ef:
f3:3d:ee:fc:c5:ce:b2:45:aa:89:e1:50:a0:39:38:1d:ae:27:
41:5f:5a:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:58 2023 by rpki-client on console-fra.rpki-client.org