Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/y20NQWYXiWNuug_WJlEf3zG8o8w.roa
File: y20NQWYXiWNuug_WJlEf3zG8o8w.roa (raw, json)
Hash identifier: URlvixSB3EgZCDaAom9qu1TkUqDjUFY7vUc5uZR3Z7E=
Subject key identifier: CB:6D:0D:41:66:17:89:63:6E:BA:0F:D6:26:51:1F:DF:31:BC:A3:CC
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 0184B2DBA9F179672D1749EBAA95CC71117A
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/y20NQWYXiWNuug_WJlEf3zG8o8w.roa
Signing time: Sat 26 Nov 2022 07:34:11 +0000
ROA not before: Sat 26 Nov 2022 07:34:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 192.166.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:b2:db:a9:f1:79:67:2d:17:49:eb:aa:95:cc:71:11:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Nov 26 07:34:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb6d0d41661789636eba0fd626511fdf31bca3cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:7d:f7:f0:a5:62:43:75:20:ca:97:94:28:2b:
37:8f:e6:55:35:96:ae:0c:00:54:45:dc:36:1d:d2:
65:7a:e0:4c:24:9d:14:26:53:ec:41:c8:f3:86:e9:
c4:a5:58:5e:33:f7:9f:94:23:ad:cc:91:1c:76:8a:
2e:53:a5:69:16:a5:c3:29:f3:2d:9c:98:ab:d6:ee:
96:13:01:bc:dd:9e:83:d7:75:d3:65:3b:eb:d9:8f:
c6:0b:62:d5:bb:ba:15:1d:87:8a:9d:03:f9:b9:67:
a1:5a:cc:aa:da:72:b9:75:ea:2d:7d:c6:46:30:b9:
81:41:89:b3:14:16:d5:67:dd:b4:ea:6a:95:a0:44:
0a:68:4d:4c:39:d1:56:3f:67:87:01:de:a4:8c:46:
62:8a:73:7f:af:ec:36:3d:03:76:b2:cf:dc:55:8b:
22:60:79:4b:29:27:cb:7a:ce:9e:29:e3:28:00:de:
c3:a2:14:cd:4e:1f:85:01:ff:38:2b:0b:f4:35:7e:
9f:4c:85:c3:76:a1:0b:78:3f:cf:fe:b0:e9:00:77:
80:d5:cc:c4:98:7d:2a:de:31:db:81:62:b4:51:35:
de:ad:bd:11:70:f5:b2:7a:5a:ca:50:d3:cb:ee:f3:
e8:9d:6d:8b:f7:8c:f7:1f:67:49:b4:43:1d:b6:e6:
87:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:6D:0D:41:66:17:89:63:6E:BA:0F:D6:26:51:1F:DF:31:BC:A3:CC
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/y20NQWYXiWNuug_WJlEf3zG8o8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.166.83.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:8e:7c:cd:f6:f9:ac:52:b5:11:94:ab:52:de:6f:d7:03:c5:
bb:2d:13:83:94:27:ed:b4:28:89:67:bf:1c:5a:d8:ca:59:5f:
37:ab:48:5c:0e:8f:6f:dd:6b:ad:8f:e7:40:7b:ce:da:9e:96:
c3:73:e1:84:27:50:70:cd:bd:4b:ce:5f:f1:c9:6c:87:57:33:
4a:7e:3f:15:bf:4d:15:84:fc:2c:09:53:b9:d5:0f:5d:d3:9b:
6a:3d:63:41:40:af:13:4f:17:11:a1:f2:d8:32:35:fd:33:95:
27:70:14:51:2f:88:3e:e2:56:9c:f2:3e:8a:0d:0a:f3:6d:a9:
df:b7:1f:da:ee:63:8f:95:0b:1f:c4:64:5b:e8:1e:71:4c:51:
57:d8:0b:24:06:61:8b:49:c7:cd:56:9e:4c:32:8f:f8:d9:01:
6e:11:0c:4c:b1:82:0c:02:37:d4:40:6f:05:b8:7d:ad:7d:2c:
35:21:cc:72:17:97:4e:07:dc:df:7f:e0:2a:a8:e0:88:d6:07:
16:a2:46:12:42:8f:d0:75:ac:a0:f8:54:eb:8b:71:6b:a2:36:
a7:5a:94:c6:49:9a:cb:2e:75:e7:83:67:69:b1:23:4b:d7:f0:
76:40:a9:cd:7c:0f:3c:86:61:bc:98:d1:54:72:49:31:dc:f4:
b5:ac:d0:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:44 2023 by rpki-client on console-ams.rpki-client.org