Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/yALqIQAYo_eE9ZhAvGcw9BB6y3A.roa
File: yALqIQAYo_eE9ZhAvGcw9BB6y3A.roa (raw, json)
Hash identifier: 3evFDkEK1gwS80nMFW8Rrm8cZA3kFmdxfz1zI6SPCTU=
Subject key identifier: C8:02:EA:21:00:18:A3:F7:84:F5:98:40:BC:67:30:F4:10:7A:CB:70
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 01840B5D0A78761E0038289694CAA9C2CD86
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/yALqIQAYo_eE9ZhAvGcw9BB6y3A.roa
Signing time: Mon 24 Oct 2022 18:59:17 +0000
ROA not before: Mon 24 Oct 2022 18:59:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 193.111.125.0/24 maxlen: 24
147.78.122.0/23 maxlen: 24
194.104.156.0/24 maxlen: 24
194.113.226.0/24 maxlen: 24
45.146.81.0/24 maxlen: 24
45.146.80.0/24 maxlen: 24
45.149.186.0/23 maxlen: 24
194.105.21.0/24 maxlen: 24
192.166.82.0/24 maxlen: 24
193.176.128.0/24 maxlen: 24
45.152.240.0/23 maxlen: 24
194.147.6.0/23 maxlen: 24
193.142.4.0/24 maxlen: 24
194.5.148.0/23 maxlen: 24
45.158.8.0/24 maxlen: 24
45.158.8.0/23 maxlen: 23
192.166.114.0/24 maxlen: 24
45.153.4.0/23 maxlen: 24
45.153.4.0/24 maxlen: 24
45.153.6.0/23 maxlen: 24
45.153.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0b:5d:0a:78:76:1e:00:38:28:96:94:ca:a9:c2:cd:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Oct 24 18:59:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c802ea210018a3f784f59840bc6730f4107acb70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:b3:e7:f2:94:e0:fe:67:c4:7f:64:c7:21:a1:
c0:60:1a:e0:e0:b7:41:62:ff:da:34:a7:28:92:61:
0d:99:18:95:e8:cb:1c:9d:55:76:de:bc:c3:22:53:
7b:31:48:4f:54:f1:99:49:c1:53:63:ca:d5:35:27:
46:eb:3f:46:56:ed:90:66:4a:ca:23:42:89:67:e3:
5a:b9:c1:45:05:95:5e:e3:c8:6f:6e:61:a0:53:2e:
17:fa:46:b0:e9:05:92:3f:05:c5:b1:33:c6:fe:27:
26:76:1c:42:50:9c:aa:83:d1:52:fe:ea:86:d8:b0:
bd:ea:9b:ee:a8:76:8e:3c:ab:ed:3c:ed:8e:59:ff:
a1:59:40:31:76:35:20:1e:93:61:62:73:e5:48:16:
ab:cf:59:3f:53:84:63:c7:af:84:cb:7f:36:64:a6:
77:2f:f9:d9:6a:be:72:a6:50:d1:15:b5:68:f8:c9:
fd:46:13:9c:58:ea:1b:1c:19:54:98:43:60:c9:40:
cb:25:c8:ea:ce:45:ea:a2:68:74:c6:77:b9:17:35:
d3:a7:35:fd:38:5a:7d:fa:42:53:06:7d:44:6c:f6:
ad:e6:87:84:d6:4d:e5:15:b2:90:36:46:67:65:e4:
33:cb:bc:13:1b:81:54:1a:15:7f:3f:8e:fe:2d:70:
2c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:02:EA:21:00:18:A3:F7:84:F5:98:40:BC:67:30:F4:10:7A:CB:70
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/yALqIQAYo_eE9ZhAvGcw9BB6y3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.80.0/23
45.149.186.0/23
45.152.240.0/23
45.153.4.0/22
45.158.8.0/23
147.78.122.0/23
192.166.82.0/24
192.166.114.0/24
193.111.125.0/24
193.142.4.0/24
193.176.128.0/24
194.5.148.0/23
194.104.156.0/24
194.105.21.0/24
194.113.226.0/24
194.147.6.0/23
Signature Algorithm: sha256WithRSAEncryption
39:2a:06:88:d7:e5:fd:c3:bc:d4:03:0f:ad:f4:d5:97:0d:ff:
36:f6:14:2e:a1:6b:ac:13:df:0f:69:cf:3e:2a:05:06:11:a9:
5e:bb:e1:6f:55:de:34:72:bb:1e:6d:4e:5f:77:c8:b9:73:67:
2a:cc:75:25:0a:a2:3d:c9:15:d7:d5:ee:d7:85:ed:d5:86:9a:
73:26:d3:00:55:58:93:59:b3:e8:f8:86:94:eb:29:72:b7:c9:
e0:db:34:e1:00:6b:58:e6:bc:2a:73:ba:bc:d7:be:c2:b9:49:
09:9d:c8:c1:10:9b:1d:ab:84:b8:0b:97:89:8d:b3:c3:3e:21:
63:bd:d6:a6:8d:87:d6:13:54:11:26:e3:26:68:fd:b6:60:e2:
dc:29:36:98:1b:05:ae:e5:7a:44:58:f0:cf:86:34:c0:68:bb:
27:ab:2e:0f:22:f6:40:05:7c:f9:65:36:e2:8d:eb:8b:c6:ec:
ba:07:3e:b7:0c:43:96:84:2e:d2:4e:cc:1e:d6:17:9c:d2:29:
ba:a9:0c:0d:0f:4a:d9:67:ce:6d:19:fa:96:0f:3a:fb:d7:96:
5a:f9:a3:4e:1d:45:01:ad:89:c1:8d:48:9f:ba:79:1f:43:79:
34:b7:2f:b9:c8:3e:0a:93:ea:9a:62:19:a8:19:a9:40:00:37:
9f:12:bc:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:44 2023 by rpki-client on console-ams.rpki-client.org