Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/vvAOms2XhmTS7zFyYibP-Ay0kq0.roa
File: vvAOms2XhmTS7zFyYibP-Ay0kq0.roa (raw, json)
Hash identifier: nLwcFOvfhgWs8yL8EotwHyMADfYSK2+k9a1aTB4WpNA=
Subject key identifier: BE:F0:0E:9A:CD:97:86:64:D2:EF:31:72:62:26:CF:F8:0C:B4:92:AD
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 01850F6AC451ED8925DE161843EA5B62DD25
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/vvAOms2XhmTS7zFyYibP-Ay0kq0.roa
Signing time: Wed 14 Dec 2022 06:55:33 +0000
ROA not before: Wed 14 Dec 2022 06:55:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203893
IP address blocks: 147.78.122.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0f:6a:c4:51:ed:89:25:de:16:18:43:ea:5b:62:dd:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Dec 14 06:55:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bef00e9acd978664d2ef31726226cff80cb492ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6a:35:92:09:aa:d7:12:c5:c1:a8:03:b2:2f:
90:bc:e9:44:54:ec:01:c0:1f:61:8f:21:a7:c9:1c:
50:7d:b4:db:d9:cd:3a:30:97:44:04:a9:35:08:e6:
2d:d9:5b:60:9d:95:7e:b0:73:dc:8b:83:a8:ec:1b:
03:db:dd:73:56:a7:50:58:d3:a5:94:04:5f:fb:b4:
f6:e2:f5:30:78:ad:62:a5:e2:82:7f:94:0c:22:a8:
a0:13:93:78:c2:40:01:fc:eb:95:fb:26:5f:cf:7b:
ce:53:bf:f5:be:6d:ef:69:40:76:67:fb:06:7a:b0:
e4:8e:78:c9:f6:b2:47:3b:90:97:f2:3b:45:06:06:
30:42:18:c0:0c:0e:0e:0e:07:92:ad:d8:81:9e:f3:
c4:dd:7a:6b:71:a4:78:af:d2:c7:09:ba:c9:a4:d8:
2a:a3:1e:c5:52:cf:a9:2e:0e:bc:ad:b8:37:4b:a4:
59:72:46:33:b5:71:65:9d:f2:f9:d9:c0:40:52:b4:
aa:d8:1a:f6:9a:02:a3:65:92:51:77:dc:7b:ac:4b:
4d:54:1b:88:ab:44:75:90:2d:af:4d:66:86:30:af:
65:76:5e:72:5b:40:c7:07:34:66:e6:c3:d9:d5:04:
6c:df:f2:59:de:06:73:d1:ba:c6:9a:11:9d:86:96:
61:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:F0:0E:9A:CD:97:86:64:D2:EF:31:72:62:26:CF:F8:0C:B4:92:AD
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/vvAOms2XhmTS7zFyYibP-Ay0kq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.122.0/24
Signature Algorithm: sha256WithRSAEncryption
51:c6:1a:e6:b7:45:d4:50:92:7c:63:e9:1b:5f:82:52:98:82:
d3:7b:f7:0f:fd:2b:20:fd:b9:9b:4f:d0:5c:fe:7c:8c:ae:d4:
9b:d5:3c:62:a2:60:c6:10:b3:2d:de:8e:55:21:3c:33:c7:1e:
a1:e2:c0:80:b4:88:5f:d9:76:ed:32:44:4b:a9:e1:12:14:39:
a6:4c:37:c4:8b:fe:7e:d3:68:6b:d0:8e:d4:28:4f:b4:12:43:
13:26:04:9f:ab:6d:2a:6e:f1:7b:50:bc:7d:d9:5a:29:36:1a:
b1:fa:e1:48:37:1a:ea:b0:e7:eb:fe:c8:5d:85:03:a9:34:fd:
59:f7:93:dd:9a:21:07:f5:ef:c8:00:01:4a:d0:1f:0c:97:79:
ce:42:88:3a:62:01:8e:eb:2b:d0:d9:2d:2c:a4:61:a3:26:9d:
ac:08:95:a7:70:d2:fc:13:53:2c:56:af:c1:f8:78:8f:9f:89:
04:49:be:3d:4c:a6:77:41:9f:66:dd:7f:32:54:a1:5a:eb:12:
56:97:de:d7:0e:52:21:f8:11:0e:ff:eb:7a:a2:d0:fc:ca:0d:
c0:a9:c4:36:5f:36:c5:fe:97:32:34:93:ff:b5:30:5f:f3:d3:
f7:6a:9d:c0:b6:40:b3:d7:d7:e4:24:ff:7f:98:be:e2:34:91:
f1:53:9e:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:44 2023 by rpki-client on console-ams.rpki-client.org