Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/wz9bcORKdclK7SsmPVWy8dG0Im0.roa
File: wz9bcORKdclK7SsmPVWy8dG0Im0.roa (raw, json)
Hash identifier: HZJ2xwtSsdnVqxVWddVCwIuboyWtHaN7++++FgnreX8=
Subject key identifier: C3:3F:5B:70:E4:4A:75:C9:4A:ED:2B:26:3D:55:B2:F1:D1:B4:22:6D
Certificate issuer: /CN=45dab507c08976cc29d177373de627a1ce86efae
Certificate serial: 01856F0220EAEFE1FFEC971997746B528802
Authority key identifier: 45:DA:B5:07:C0:89:76:CC:29:D1:77:37:3D:E6:27:A1:CE:86:EF:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rdq1B8CJdswp0Xc3PeYnoc6G764.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/wz9bcORKdclK7SsmPVWy8dG0Im0.roa
Signing time: Sun 01 Jan 2023 20:24:48 +0000
ROA not before: Sun 01 Jan 2023 20:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 275
IP address blocks: 185.84.19.224/27 maxlen: 27
213.130.47.16/28 maxlen: 28
5.158.213.64/31 maxlen: 31
2001:728:0:5000::1532/127 maxlen: 127
2001:728:0:7000::/64 maxlen: 64
2001:728:401:21::/64 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:20:ea:ef:e1:ff:ec:97:19:97:74:6b:52:88:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45dab507c08976cc29d177373de627a1ce86efae
Validity
Not Before: Jan 1 20:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c33f5b70e44a75c94aed2b263d55b2f1d1b4226d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d5:ff:5d:cc:e4:7c:7b:36:bc:1c:a3:d4:9d:
12:ea:49:e1:4e:de:0a:f5:f9:ca:ba:bd:f0:fc:1e:
e1:d2:ee:9d:04:19:c8:c4:73:52:5f:13:4f:ff:cb:
5a:18:71:97:2b:0e:c8:79:fe:e1:5f:46:09:40:0a:
4b:58:56:b2:10:00:0a:18:1d:41:c5:fd:4a:11:96:
03:bf:c9:db:f4:77:23:62:69:0c:b4:f1:b8:0e:c9:
7f:9e:20:3c:d0:34:48:f7:9d:65:69:18:3f:8e:f7:
72:4f:e8:3a:0d:10:6a:c3:5d:f9:da:eb:54:9b:6c:
e6:47:98:76:02:48:cd:75:23:8b:b7:56:cd:8c:a2:
5c:8f:26:c8:04:75:a0:e1:5f:93:a4:92:9e:d3:7e:
2c:1d:29:13:ec:f5:3f:1f:93:16:7d:e6:d0:fb:b2:
3a:17:1b:b0:c0:72:0e:d9:a8:65:09:17:09:65:4a:
2d:46:f0:36:93:f7:2c:b7:ca:53:dc:6a:4f:2e:13:
74:b8:c5:2d:09:10:bd:b3:70:a4:02:89:48:a9:6c:
8c:9a:ab:3e:9e:59:3e:cb:ec:69:5e:8a:fa:79:e8:
81:8f:ba:bf:fa:b7:0a:b8:bf:d7:f9:40:38:f1:db:
0b:01:d0:37:ec:6a:b8:f2:85:ae:fa:8c:a7:1a:16:
1a:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:3F:5B:70:E4:4A:75:C9:4A:ED:2B:26:3D:55:B2:F1:D1:B4:22:6D
X509v3 Authority Key Identifier:
keyid:45:DA:B5:07:C0:89:76:CC:29:D1:77:37:3D:E6:27:A1:CE:86:EF:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rdq1B8CJdswp0Xc3PeYnoc6G764.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/wz9bcORKdclK7SsmPVWy8dG0Im0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/Rdq1B8CJdswp0Xc3PeYnoc6G764.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.158.213.64/31
185.84.19.224/27
213.130.47.16/28
IPv6:
2001:728:0:5000:0:0:0:1532/127
2001:728:0:7000::/64
2001:728:401:21::/64
Signature Algorithm: sha256WithRSAEncryption
56:93:7c:bf:ab:cd:4a:42:9f:ff:99:43:64:03:5c:35:c7:d1:
b4:d9:20:7c:64:4e:b1:96:6b:a5:06:02:6c:d8:2b:30:37:94:
0a:b9:54:72:2e:a5:eb:01:51:f9:00:ec:0c:f0:11:a3:87:24:
0e:27:97:0b:6f:b7:a0:ba:a6:92:1b:08:67:82:3f:1a:77:90:
e8:81:6a:fe:32:f6:96:7c:ae:04:8b:bc:d7:9e:f4:a8:25:a1:
7a:a7:86:dd:3d:57:b6:d9:51:8c:4c:79:3a:a1:e1:4f:e8:5d:
07:b4:79:92:5b:57:cb:c0:46:c9:cf:c9:b6:a3:25:d6:7d:93:
d4:7a:6a:a2:70:b8:f0:33:dc:eb:ce:45:09:c6:fd:90:ce:9a:
e0:5b:3e:fa:00:99:3b:83:92:01:93:6f:b9:d7:16:e4:18:de:
e4:66:de:f9:0d:00:2a:b5:c0:93:6e:6e:67:06:d5:fa:0f:d9:
5d:82:51:6b:01:3c:b5:a7:4c:54:0b:c4:91:df:69:1c:20:a7:
29:21:8c:17:38:c3:2d:d6:31:71:13:c1:dc:05:a6:3d:04:e5:
9b:be:9d:ae:46:20:08:d4:d8:1a:b9:6d:85:21:c3:70:1e:93:
94:0f:82:c4:44:01:f3:90:dc:4f:62:1d:06:f9:6e:af:02:8f:
ec:b3:87:1b
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgISAYVvAiDq7+H/7JcZl3RrUogCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ1ZGFiNTA3YzA4OTc2Y2MyOWQxNzczNzNkZTYyN2ExY2U4
NmVmYWUwHhcNMjMwMTAxMjAyNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMzNmNWI3MGU0NGE3NWM5NGFlZDJiMjYzZDU1YjJmMWQxYjQyMjZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAotX/XczkfHs2vByj1J0S6knhTt4K
9fnKur3w/B7h0u6dBBnIxHNSXxNP/8taGHGXKw7Ief7hX0YJQApLWFayEAAKGB1B
xf1KEZYDv8nb9HcjYmkMtPG4Dsl/niA80DRI951laRg/jvdyT+g6DRBqw1352utU
m2zmR5h2AkjNdSOLt1bNjKJcjybIBHWg4V+TpJKe034sHSkT7PU/H5MWfebQ+7I6
FxuwwHIO2ahlCRcJZUotRvA2k/cst8pT3GpPLhN0uMUtCRC9s3CkAolIqWyMmqs+
nlk+y+xpXor6eeiBj7q/+rcKuL/X+UA48dsLAdA37Gq48oWu+oynGhYa3wIDAQAB
o4ICSTCCAkUwHQYDVR0OBBYEFMM/W3DkSnXJSu0rJj1VsvHRtCJtMB8GA1UdIwQY
MBaAFEXatQfAiXbMKdF3Nz3mJ6HOhu+uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmRxMUI4Q0pkc3dwMFhjM1BlWW5vYzZHNzY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC85YWE1MDAtZjNiZC00NzdiLTkwODIt
YWEwYjExNTY0YTMyLzEvd3o5YmNPUktkY2xLN1NzbVBWV3k4ZEcwSW0wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC85YWE1MDAtZjNiZC00NzdiLTkwODItYWEwYjExNTY0YTMy
LzEvUmRxMUI4Q0pkc3dwMFhjM1BlWW5vYzZHNzY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMF8GCCsGAQUFBwEHAQH/BFAwTjAbBAIAATAVAwUBBZ7VQAMF
BblUE+ADBQTVgi8QMC8EAgACMCkDEQEgAQcoAABQAAAAAAAAABUyAwkAIAEHKAAA
cAADCQAgAQcoBAEAITANBgkqhkiG9w0BAQsFAAOCAQEAVpN8v6vNSkKf/5lDZANc
NcfRtNkgfGROsZZrpQYCbNgrMDeUCrlUci6l6wFR+QDsDPARo4ckDieXC2+3oLqm
khsIZ4I/GneQ6IFq/jL2lnyuBIu81570qCWheqeG3T1XttlRjEx5OqHhT+hdB7R5
kltXy8BGyc/JtqMl1n2T1HpqonC48DPc685FCcb9kM6a4Fs++gCZO4OSAZNvudcW
5Bje5Gbe+Q0AKrXAk25uZwbV+g/ZXYJRawE8tadMVAvEkd9pHCCnKSGMFzjDLdYx
cRPB3AWmPQTlm76drkYgCNTYGrlthSHDcB6TlA+CxEQB85DcT2IdBvlurwKP7LOH
Gw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:06 2023 by rpki-client on console-ams.rpki-client.org