Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/22e96f-2451-4e86-a037-8db62ea50995/1/FDt3ktTT9e0VfFiTSAXmtBTqIDI.roa
File: FDt3ktTT9e0VfFiTSAXmtBTqIDI.roa (raw, json)
Hash identifier: 6+KLJT+Jhlew6T4f8CTmnn2vj9cQTIBu463I5e7dptk=
Subject key identifier: 14:3B:77:92:D4:D3:F5:ED:15:7C:58:93:48:05:E6:B4:14:EA:20:32
Certificate issuer: /CN=72978d1d4e7782816ac42da4788e33cbb2487859
Certificate serial: 01856F9DC2877BC3C4506AECEEE478A40CE9
Authority key identifier: 72:97:8D:1D:4E:77:82:81:6A:C4:2D:A4:78:8E:33:CB:B2:48:78:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cpeNHU53goFqxC2keI4zy7JIeFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/22e96f-2451-4e86-a037-8db62ea50995/1/FDt3ktTT9e0VfFiTSAXmtBTqIDI.roa
Signing time: Sun 01 Jan 2023 23:14:48 +0000
ROA not before: Sun 01 Jan 2023 23:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398464
IP address blocks: 194.180.232.0/23 maxlen: 24
194.180.236.0/23 maxlen: 24
45.133.112.0/22 maxlen: 24
45.136.24.0/22 maxlen: 24
45.147.8.0/22 maxlen: 24
45.147.232.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:c2:87:7b:c3:c4:50:6a:ec:ee:e4:78:a4:0c:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72978d1d4e7782816ac42da4788e33cbb2487859
Validity
Not Before: Jan 1 23:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=143b7792d4d3f5ed157c58934805e6b414ea2032
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8d:0f:9b:6b:ee:96:5f:f3:ac:c4:3d:2a:3c:
4a:c9:af:60:67:a6:62:df:66:9c:04:fa:30:f6:b0:
ee:e0:73:d1:1d:b6:78:ca:d9:ec:56:70:95:00:45:
fa:01:e7:5a:11:7f:0e:c1:2f:a5:90:b6:b3:0c:b1:
c8:b8:0a:2b:63:39:12:0d:40:49:46:b5:e3:5d:28:
e6:f1:62:4d:90:a0:06:b2:72:0c:61:cc:b2:ac:ab:
68:5a:70:98:c8:c7:25:57:35:f1:a2:cb:ab:71:a7:
48:6b:c6:f3:87:59:d9:8d:d0:db:4e:66:6b:60:84:
de:4e:86:6b:2c:ad:5d:dd:3a:ba:43:9d:03:c9:73:
fa:d5:ea:e1:28:b5:cc:05:dc:92:7a:0b:38:b9:eb:
0a:b6:56:5f:27:fa:8f:3d:25:b2:0d:6d:5d:12:21:
b6:16:a3:e8:a2:eb:6e:51:3b:c6:9e:6c:d8:04:e7:
b2:d2:15:7c:8c:a1:60:fa:fb:a4:1e:79:76:7d:d8:
70:30:ac:1e:4f:fb:a1:ee:48:13:0e:d0:ac:8c:97:
1a:fa:34:72:dc:de:06:9b:f5:c3:b7:ff:bf:eb:38:
38:19:67:db:9f:cf:d0:dc:ef:f4:90:ce:cb:62:0f:
f0:e8:10:e4:d2:87:5c:7d:79:68:54:b9:9f:e6:af:
c5:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:3B:77:92:D4:D3:F5:ED:15:7C:58:93:48:05:E6:B4:14:EA:20:32
X509v3 Authority Key Identifier:
keyid:72:97:8D:1D:4E:77:82:81:6A:C4:2D:A4:78:8E:33:CB:B2:48:78:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cpeNHU53goFqxC2keI4zy7JIeFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/22e96f-2451-4e86-a037-8db62ea50995/1/FDt3ktTT9e0VfFiTSAXmtBTqIDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/22e96f-2451-4e86-a037-8db62ea50995/1/cpeNHU53goFqxC2keI4zy7JIeFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.112.0/22
45.136.24.0/22
45.147.8.0/22
45.147.232.0/22
194.180.232.0/23
194.180.236.0/23
Signature Algorithm: sha256WithRSAEncryption
98:17:35:70:6e:7a:38:cc:99:c6:8c:1b:58:ed:ce:0f:27:1a:
e6:ba:05:5f:26:63:9c:b2:af:71:0d:34:ef:54:df:ce:d0:d9:
d1:19:91:4d:5e:7c:bf:f1:32:de:3f:a2:44:88:9c:51:72:3c:
9f:1a:d4:87:ba:04:1d:44:64:5c:4b:1b:8c:8d:bf:a9:0a:4f:
12:6b:a4:be:35:e5:3b:b8:81:e2:98:cc:4f:99:83:00:03:2c:
64:3b:2c:b2:44:7b:bb:66:a1:6f:d4:0d:c7:48:4a:a4:5d:c5:
e6:28:ba:23:6e:41:75:eb:8b:ce:d3:62:83:83:ff:09:9d:e8:
a1:a0:fe:87:4d:e9:72:ac:33:52:37:70:8f:22:a3:70:0e:df:
ad:91:3b:8f:ad:b7:d5:f3:73:98:fe:a0:e4:40:bc:2a:f7:72:
43:12:d5:6e:99:57:74:be:7d:ec:1e:56:25:f5:69:36:3b:3c:
22:23:f4:80:a9:81:51:81:d3:41:88:ad:28:99:28:fb:fb:bf:
e0:eb:3e:65:e6:f7:cb:40:68:0c:40:60:99:f4:d4:a2:f6:31:
a9:dc:60:22:f4:fc:e1:a3:34:4e:64:5e:64:3a:c9:96:c6:e3:
ed:64:36:b8:b7:40:6a:77:1d:d4:05:10:5f:1c:8f:4a:ca:22:
36:20:c7:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:58 2023 by rpki-client on console-fra.rpki-client.org