Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/xwnLqwa57gpr-8YPo9BWAf4z2Sc.roa
File: xwnLqwa57gpr-8YPo9BWAf4z2Sc.roa (raw, json)
Hash identifier: QmGIP6BXtNRd+1+TAdZRHJddQc2HXWmMIr5cPsGZ6QI=
Subject key identifier: C7:09:CB:AB:06:B9:EE:0A:6B:FB:C6:0F:A3:D0:56:01:FE:33:D9:27
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 0184516AE35FEC625C1450CC2EC364BF913D
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/xwnLqwa57gpr-8YPo9BWAf4z2Sc.roa
Signing time: Mon 07 Nov 2022 09:27:50 +0000
ROA not before: Mon 07 Nov 2022 09:27:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 53356
IP address blocks: 147.78.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:51:6a:e3:5f:ec:62:5c:14:50:cc:2e:c3:64:bf:91:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Nov 7 09:27:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c709cbab06b9ee0a6bfbc60fa3d05601fe33d927
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:16:9d:d0:d8:a4:7d:18:c8:6a:fc:48:c2:93:
e0:a7:53:ed:a8:15:4e:7e:6e:4a:29:6f:21:fe:c4:
6a:bb:82:c8:49:8e:b6:ce:e4:35:20:b7:11:62:cc:
5c:88:34:0a:8f:de:ee:df:f7:ef:36:06:cc:b1:c1:
46:2b:3c:39:2f:f3:8f:c6:95:e0:1a:0a:11:89:43:
cb:0b:dd:ec:30:24:c6:f4:38:0a:7f:ef:f3:7e:22:
42:3b:09:a1:a1:28:56:2f:b4:b0:ae:04:ab:c7:64:
7b:ad:65:9f:ab:9a:92:af:6f:52:df:33:37:50:e6:
67:ac:2a:6a:aa:7f:ca:24:bb:5c:93:c3:74:f8:8e:
9c:e6:a8:f1:45:bc:7e:69:3a:34:fc:1c:df:82:e9:
c0:f2:6b:68:17:75:32:50:a9:b6:25:c3:7a:86:13:
0c:10:81:2f:5f:ed:46:ba:0d:0c:7f:20:2d:8d:0b:
c0:d0:1e:3a:9f:80:f0:b8:2f:9c:20:1c:71:1f:ac:
ff:8d:3f:01:b7:26:b6:b4:8a:cc:ee:f7:a8:02:95:
18:48:d2:61:80:f8:a8:13:3a:36:53:19:7c:23:cf:
6f:9f:8c:0e:3c:02:98:6d:45:9d:7b:3a:21:20:93:
30:14:8c:e6:c1:80:4b:ba:87:d1:5b:57:3a:1e:05:
77:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:09:CB:AB:06:B9:EE:0A:6B:FB:C6:0F:A3:D0:56:01:FE:33:D9:27
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/xwnLqwa57gpr-8YPo9BWAf4z2Sc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.123.0/24
Signature Algorithm: sha256WithRSAEncryption
50:41:99:3d:f5:95:35:99:c1:56:86:5d:87:bc:fe:a4:52:3b:
39:b9:b3:20:7a:d8:d2:ec:76:17:d4:f9:79:69:87:08:43:72:
23:2a:7f:58:26:20:52:06:f0:5a:e9:8d:c8:97:52:d8:8d:18:
00:da:35:1b:d8:f6:60:16:e0:12:9b:ff:52:ee:7d:68:4d:8e:
99:06:8c:cd:96:fd:c5:b4:67:f3:0f:2a:86:0e:18:6b:2c:cd:
91:e9:0a:4a:05:d1:1f:1b:55:fb:cf:50:31:59:de:ff:43:79:
f0:08:ab:30:8d:94:62:67:fe:6d:65:4e:96:6d:13:af:e3:c7:
dd:14:02:09:0e:7c:23:f2:6e:95:9c:f6:a2:46:6d:d5:e9:52:
14:1b:82:cd:b1:a1:5c:81:83:88:82:a2:3c:97:e6:ce:dd:1e:
60:d8:f9:35:c9:54:7f:14:b9:ed:84:82:b6:11:fa:46:05:91:
49:a6:0b:5f:74:49:45:9a:4f:a1:0f:22:3e:fc:80:c1:4e:88:
34:d6:24:d2:f1:88:77:c3:b0:21:71:c3:1a:cd:36:3e:bb:fe:
7d:a0:05:d7:79:2f:3c:45:a8:cc:75:9a:40:1e:af:57:3d:a0:
6d:c1:a1:79:c3:01:a4:26:6e:42:c7:eb:f9:f9:da:3c:c5:7c:
44:d4:85:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:58 2023 by rpki-client on console-fra.rpki-client.org