Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/14ce03-23f2-4f7b-88c0-410e09477685/1/g2Cm09xhtPxZPDw7WBgNHSsW2Lc.roa
File: g2Cm09xhtPxZPDw7WBgNHSsW2Lc.roa (raw, json)
Hash identifier: QCvbth4L2QG1+VDOrk9OBzhiV5om8IgSH3NZ8Ouhbbo=
Subject key identifier: 83:60:A6:D3:DC:61:B4:FC:59:3C:3C:3B:58:18:0D:1D:2B:16:D8:B7
Certificate issuer: /CN=916098b0295d617488d3d9e7d23b59a331c15e60
Certificate serial: 0185719560B32D6EBC79C3A982B5DEC9670C
Authority key identifier: 91:60:98:B0:29:5D:61:74:88:D3:D9:E7:D2:3B:59:A3:31:C1:5E:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kWCYsCldYXSI09nn0jtZozHBXmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/14ce03-23f2-4f7b-88c0-410e09477685/1/g2Cm09xhtPxZPDw7WBgNHSsW2Lc.roa
Signing time: Mon 02 Jan 2023 08:24:52 +0000
ROA not before: Mon 02 Jan 2023 08:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 147.78.20.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:60:b3:2d:6e:bc:79:c3:a9:82:b5:de:c9:67:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=916098b0295d617488d3d9e7d23b59a331c15e60
Validity
Not Before: Jan 2 08:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8360a6d3dc61b4fc593c3c3b58180d1d2b16d8b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:95:90:8a:0c:a1:ed:b5:d9:1b:da:14:12:e4:
8a:52:55:a7:c5:e7:a5:61:20:2d:8c:2c:29:a9:f1:
c3:a5:ff:c2:51:30:3e:59:32:68:02:59:19:0c:84:
b1:77:8e:57:2c:71:0b:f7:7d:bf:ff:c3:d8:58:d2:
42:90:2e:74:4d:1a:7b:9f:db:34:fb:53:c6:14:60:
57:35:a1:97:e2:ca:96:09:16:a9:73:6c:9a:a1:f5:
67:cc:57:fe:c6:85:05:24:8b:c8:2a:10:ef:85:bb:
61:6d:e2:74:31:87:7e:8b:31:9b:ed:43:b7:c0:f1:
82:28:a3:29:e0:0e:71:ae:6d:03:d4:6f:38:95:fe:
ca:df:87:0e:af:11:65:20:a3:d6:be:a6:f8:48:f5:
db:24:1a:f2:a7:f1:73:25:a5:2c:f4:f7:4b:5e:4b:
89:f8:d8:d6:72:65:2b:92:22:ea:ed:92:2c:71:c9:
00:ef:d3:10:41:9b:c4:8a:8a:a3:a6:fe:91:0c:5b:
ec:34:a4:b0:fb:1f:62:48:cb:07:4e:af:a4:9f:c2:
f7:cb:db:6b:9e:9c:1f:c4:51:98:a7:6d:4d:27:57:
b0:28:77:e5:e4:e2:48:e9:6e:31:cd:55:e8:58:85:
bf:eb:59:5b:57:f9:fd:bf:37:bf:41:cb:e4:ff:47:
0e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:60:A6:D3:DC:61:B4:FC:59:3C:3C:3B:58:18:0D:1D:2B:16:D8:B7
X509v3 Authority Key Identifier:
keyid:91:60:98:B0:29:5D:61:74:88:D3:D9:E7:D2:3B:59:A3:31:C1:5E:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kWCYsCldYXSI09nn0jtZozHBXmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/14ce03-23f2-4f7b-88c0-410e09477685/1/g2Cm09xhtPxZPDw7WBgNHSsW2Lc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/14ce03-23f2-4f7b-88c0-410e09477685/1/kWCYsCldYXSI09nn0jtZozHBXmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.20.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:dc:c7:67:dd:48:8c:bc:22:dc:00:2d:79:5a:b0:ef:6d:df:
67:30:ee:03:21:dd:a5:f4:a3:a6:01:8a:6a:48:29:68:ee:80:
45:f9:e7:c8:a4:f5:ea:c9:bd:9e:83:56:a7:d0:f9:f9:fd:12:
ae:f8:a7:60:c3:2e:dc:4f:01:9c:b3:b5:ab:38:f9:6b:2a:4b:
5b:20:f3:b9:ad:8c:35:d5:90:84:8e:58:53:42:91:27:23:73:
36:70:cd:a0:a6:51:c3:96:70:c6:55:b1:f7:c6:50:28:c6:94:
75:d3:07:df:53:2d:87:c1:fb:4f:12:d3:0f:a7:55:7e:9c:33:
17:ad:10:ce:27:ca:0b:fe:39:f8:7c:34:ac:b6:1f:19:c6:87:
00:20:3e:87:bd:23:3d:e2:ed:c5:c8:c7:dc:44:43:ee:c4:1f:
c8:e6:d6:b7:d2:56:fd:1b:41:d6:f1:ec:22:dc:1e:d7:77:05:
65:68:ad:79:be:78:ce:56:a3:b2:ce:0d:d8:03:70:46:72:4c:
77:1e:11:95:e2:c3:50:10:05:20:d3:d2:9c:65:42:b2:17:5d:
df:5b:89:70:8b:05:c6:ef:8e:6d:ee:f9:53:14:f4:2f:d5:7f:
73:9b:09:81:9b:f5:d3:0f:7e:ba:43:53:8a:de:83:04:9b:31:
81:de:fb:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:33 2024 by rpki-client on console-fra.rpki-client.org