Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/xQxQS8-rttSwNxJhxHHCMxKe9KU.roa
File: xQxQS8-rttSwNxJhxHHCMxKe9KU.roa (raw, json)
Hash identifier: e+CcwFgOdjALLs8QHKA7kPA0lJ5GMA20inCtNAlenwA=
Subject key identifier: C5:0C:50:4B:CF:AB:B6:D4:B0:37:12:61:C4:71:C2:33:12:9E:F4:A5
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 0184E1380342FE4EC9FA133FC37521605630
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/xQxQS8-rttSwNxJhxHHCMxKe9KU.roa
Signing time: Mon 05 Dec 2022 07:37:35 +0000
ROA not before: Mon 05 Dec 2022 07:37:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 193.176.54.0/24 maxlen: 24
193.176.55.0/24 maxlen: 24
45.154.104.0/23 maxlen: 24
91.199.168.0/24 maxlen: 24
141.98.156.0/23 maxlen: 24
147.78.122.0/23 maxlen: 24
147.78.120.0/23 maxlen: 24
45.149.186.0/23 maxlen: 24
45.158.8.0/23 maxlen: 24
195.206.230.0/24 maxlen: 24
195.206.231.0/24 maxlen: 24
176.105.224.0/23 maxlen: 24
195.206.234.0/24 maxlen: 24
195.206.235.0/24 maxlen: 24
45.153.6.0/23 maxlen: 24
45.142.236.0/23 maxlen: 24
45.142.238.0/23 maxlen: 24
193.111.116.0/24 maxlen: 24
193.111.117.0/24 maxlen: 24
45.158.170.0/23 maxlen: 24
45.158.168.0/23 maxlen: 24
193.151.182.0/23 maxlen: 24
193.151.180.0/23 maxlen: 24
195.20.98.0/24 maxlen: 24
194.104.156.0/24 maxlen: 24
194.104.158.0/24 maxlen: 24
195.20.105.0/24 maxlen: 24
195.20.99.0/24 maxlen: 24
194.105.21.0/24 maxlen: 24
152.89.250.0/23 maxlen: 24
193.29.96.0/23 maxlen: 24
193.29.98.0/23 maxlen: 24
194.147.4.0/23 maxlen: 24
194.147.6.0/23 maxlen: 24
194.5.146.0/23 maxlen: 24
193.142.22.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e1:38:03:42:fe:4e:c9:fa:13:3f:c3:75:21:60:56:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Dec 5 07:37:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c50c504bcfabb6d4b0371261c471c233129ef4a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:57:3a:08:92:0e:e0:79:52:6e:56:9f:0b:a9:
b4:5e:62:22:66:4d:1d:98:b6:f7:df:dd:d1:7c:0c:
97:7f:2a:6a:2e:2e:bf:22:f8:cd:fd:34:06:4c:a9:
6e:48:96:dc:a4:cb:e5:ac:46:ab:a0:63:0e:74:35:
8f:80:c8:09:7d:97:e5:7f:f4:18:44:09:c9:7f:51:
49:b4:c8:7d:39:9a:20:55:24:c8:be:82:ad:56:c8:
05:da:b5:b1:a8:d3:d7:46:6b:1e:df:56:4f:b6:01:
c8:b5:98:97:3b:ec:f7:22:c9:96:d2:82:1f:02:1b:
e8:21:fb:33:95:4a:77:f8:34:c8:f7:45:d7:eb:84:
11:06:cc:92:8b:ec:92:8c:43:37:d5:d1:90:f6:10:
4a:8d:8a:12:f6:7a:39:2e:b6:f4:f3:d7:fd:5b:e6:
8b:7e:33:59:e1:69:59:c9:27:ab:31:cd:bf:d0:79:
6c:d0:80:9f:0f:a8:59:f7:f8:02:11:7e:38:dc:d4:
10:28:ec:fd:04:24:f7:e5:a0:52:d3:3a:da:81:bc:
c5:d5:e1:44:c8:66:94:52:7d:89:22:9b:3b:f4:d1:
36:d2:28:71:dc:ad:66:4c:dd:d2:76:c4:4c:5b:c5:
b4:e2:29:7a:b1:99:9f:2c:2e:8b:86:c2:98:3f:55:
c2:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:0C:50:4B:CF:AB:B6:D4:B0:37:12:61:C4:71:C2:33:12:9E:F4:A5
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/xQxQS8-rttSwNxJhxHHCMxKe9KU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.236.0/22
45.149.186.0/23
45.153.6.0/23
45.154.104.0/23
45.158.8.0/23
45.158.168.0/22
91.199.168.0/24
141.98.156.0/23
147.78.120.0/22
152.89.250.0/23
176.105.224.0/23
193.29.96.0/22
193.111.116.0/23
193.142.22.0/24
193.151.180.0/22
193.176.54.0/23
194.5.146.0/23
194.104.156.0/24
194.104.158.0/24
194.105.21.0/24
194.147.4.0/22
195.20.98.0/23
195.20.105.0/24
195.206.230.0/23
195.206.234.0/23
Signature Algorithm: sha256WithRSAEncryption
46:3a:a5:f7:de:87:fe:67:1a:69:82:49:d9:39:8b:75:ce:d6:
9c:4a:1b:ef:ca:85:4f:85:59:c8:db:7e:7f:77:16:37:aa:c2:
6a:08:b9:53:0d:40:4e:94:53:4e:5e:01:21:b7:2a:fa:f0:12:
4e:bc:c3:61:c4:84:6d:e0:a7:0d:41:d7:e5:7f:b9:f2:06:97:
ad:ba:f7:9a:7a:6a:9f:03:68:c6:b5:e5:be:a1:be:e9:b1:2a:
6f:ce:74:57:cc:dd:c7:96:4e:16:d1:fe:94:4d:c6:f1:94:7e:
ea:9c:ac:08:ca:eb:93:d0:bf:88:60:92:43:99:89:01:e1:0c:
f1:ff:ca:a0:29:84:b6:87:02:c6:99:8e:33:1a:6e:67:5f:a5:
33:d8:22:75:55:eb:26:81:da:d7:f0:0e:70:ef:76:f1:f7:82:
5b:5f:05:91:3d:71:f2:60:f0:fa:c8:74:f9:7b:d1:0e:e5:43:
4c:e2:76:8d:c1:2d:36:09:d2:de:f6:95:43:4e:c7:68:c2:24:
b0:47:75:49:cb:10:c3:bb:b1:31:d8:fa:7d:f7:72:80:0d:b4:
9c:f9:15:14:ff:64:a6:90:82:1f:68:20:e5:6e:bc:a8:79:5c:
19:83:f7:17:75:93:92:f4:af:af:57:a3:82:7b:37:91:ac:42:
57:3f:35:ed
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgISAYThOANC/k7J+hM/w3UhYFYwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyZWQ0YTJmYjE4MGRmNWY5OWQ0YmY4Yzc3Y2M5YTA2ZWYy
NjA1OGMwHhcNMjIxMjA1MDczNzM1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNTBjNTA0YmNmYWJiNmQ0YjAzNzEyNjFjNDcxYzIzMzEyOWVmNGE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuVc6CJIO4HlSblafC6m0XmIiZk0d
mLb3393RfAyXfypqLi6/IvjN/TQGTKluSJbcpMvlrEaroGMOdDWPgMgJfZflf/QY
RAnJf1FJtMh9OZogVSTIvoKtVsgF2rWxqNPXRmse31ZPtgHItZiXO+z3IsmW0oIf
AhvoIfszlUp3+DTI90XX64QRBsySi+ySjEM31dGQ9hBKjYoS9no5Lrb089f9W+aL
fjNZ4WlZySerMc2/0Hls0ICfD6hZ9/gCEX443NQQKOz9BCT35aBS0zragbzF1eFE
yGaUUn2JIps79NE20ihx3K1mTN3SdsRMW8W04il6sZmfLC6LhsKYP1XCpQIDAQAB
o4ICnjCCApowHQYDVR0OBBYEFMUMUEvPq7bUsDcSYcRxwjMSnvSlMB8GA1UdIwQY
MBaAFILtSi+xgN9fmdS/jHfMmgbvJgWMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3UxS0w3R0EzMS1aMUwtTWQ4eWFCdThtQll3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS8wMzAxYmMtYzdmZS00NmU5LWI3YTAt
NDUyNmY2MjYzYmNlLzEveFF4UVM4LXJ0dFN3TnhKaHhISENNeEtlOUtVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS8wMzAxYmMtYzdmZS00NmU5LWI3YTAtNDUyNmY2MjYzYmNl
LzEvZ3UxS0w3R0EzMS1aMUwtTWQ4eWFCdThtQll3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGzBggrBgEFBQcBBwEB/wSBozCBoDCBnQQCAAEwgZYDBAIt
juwDBAEtlboDBAEtmQYDBAEtmmgDBAEtnggDBAItnqgDBABbx6gDBAGNYpwDBAKT
TngDBAGYWfoDBAGwaeADBALBHWADBAHBb3QDBADBjhYDBALBl7QDBAHBsDYDBAHC
BZIDBADCaJwDBADCaJ4DBADCaRUDBALCkwQDBAHDFGIDBADDFGkDBAHDzuYDBAHD
zuowDQYJKoZIhvcNAQELBQADggEBAEY6pffeh/5nGmmCSdk5i3XO1pxKG+/KhU+F
Wcjbfn93FjeqwmoIuVMNQE6UU05eASG3KvrwEk68w2HEhG3gpw1B1+V/ufIGl626
95p6ap8DaMa15b6hvumxKm/OdFfM3ceWThbR/pRNxvGUfuqcrAjK65PQv4hgkkOZ
iQHhDPH/yqAphLaHAsaZjjMabmdfpTPYInVV6yaB2tfwDnDvdvH3gltfBZE9cfJg
8PrIdPl70Q7lQ0zido3BLTYJ0t72lUNOx2jCJLBHdUnLEMO7sTHY+n33coANtJz5
FRT/ZKaQgh9oIOVuvKh5XBmD9xd1k5L0r69Xo4J7N5GsQlc/Ne0=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:44 2023 by rpki-client on console-ams.rpki-client.org