Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/1b7B-aXRRMRjnedm46c_6mbWjMA.roa
File: 1b7B-aXRRMRjnedm46c_6mbWjMA.roa (raw, json)
Hash identifier: 3j0N0vrvE7Hxi1sye/JSs013jKmwSwQbjUUD81xe08M=
Subject key identifier: D5:BE:C1:F9:A5:D1:44:C4:63:9D:E7:66:E3:A7:3F:EA:66:D6:8C:C0
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 018B6EC833E10895DCFC57777ADA1A87EB72
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/1b7B-aXRRMRjnedm46c_6mbWjMA.roa
Signing time: Fri 27 Oct 2023 01:38:16 +0000
ROA not before: Fri 27 Oct 2023 01:38:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 193.109.194.0/24 maxlen: 24
85.237.196.0/24 maxlen: 24
193.109.198.0/24 maxlen: 24
85.237.204.0/24 maxlen: 24
85.237.215.0/24 maxlen: 24
85.237.214.0/24 maxlen: 24
85.237.216.0/24 maxlen: 24
185.139.25.0/24 maxlen: 24
185.139.26.0/24 maxlen: 24
185.139.27.0/24 maxlen: 24
185.235.32.0/24 maxlen: 24
85.158.58.0/24 maxlen: 24
85.158.61.0/24 maxlen: 24
85.158.63.0/24 maxlen: 24
85.158.62.0/24 maxlen: 24
85.158.60.0/24 maxlen: 24
185.93.34.0/24 maxlen: 24
185.93.35.0/24 maxlen: 24
185.100.212.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:6e:c8:33:e1:08:95:dc:fc:57:77:7a:da:1a:87:eb:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Oct 27 01:38:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d5bec1f9a5d144c4639de766e3a73fea66d68cc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:79:1d:4c:c5:13:42:a6:25:e3:7c:f1:c3:5a:
5b:f5:4c:20:1a:5e:82:28:96:eb:df:ef:10:63:d6:
a0:30:c5:db:8a:18:c4:22:3e:9d:b9:05:bd:6c:95:
b3:a4:dd:8e:5e:c4:c4:1d:40:2e:e6:c6:96:50:97:
52:5e:da:6b:fb:c2:13:25:4d:f8:f0:64:f7:09:0d:
2e:39:45:62:88:01:7a:90:f0:f0:fd:67:4c:b7:29:
f7:1b:bd:03:cd:2c:03:4a:90:22:70:74:57:96:38:
3c:a1:ed:8a:2e:37:6a:71:a8:26:55:16:9e:f1:ad:
83:d7:4d:6d:85:b3:f0:c0:4e:ef:40:a1:f2:ab:84:
0f:7d:08:5a:47:51:30:4a:38:17:4c:94:a6:cc:5a:
c9:d9:9e:26:35:98:0e:b2:eb:70:36:43:77:ab:cd:
34:a9:fc:8a:47:9e:54:00:50:2f:16:4f:9d:ac:d6:
40:77:a4:12:cd:7c:d4:da:47:dd:7d:4d:0c:04:5c:
84:76:77:cb:d4:df:12:46:15:ae:43:c3:65:ed:7e:
d7:3d:be:a9:45:80:d1:cf:63:87:0e:8c:f9:7c:11:
15:38:c7:e0:c2:cd:ea:93:b0:42:61:14:d7:e8:a6:
40:df:a6:1e:e1:b1:8c:58:16:77:32:76:61:dc:76:
cd:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:BE:C1:F9:A5:D1:44:C4:63:9D:E7:66:E3:A7:3F:EA:66:D6:8C:C0
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/1b7B-aXRRMRjnedm46c_6mbWjMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.158.58.0/24
85.158.60.0/22
85.237.196.0/24
85.237.204.0/24
85.237.214.0-85.237.216.255
185.93.34.0/23
185.100.212.0/22
185.139.25.0-185.139.27.255
185.235.32.0/24
193.109.194.0/24
193.109.198.0/24
Signature Algorithm: sha256WithRSAEncryption
78:b1:65:ab:4f:a6:43:32:b8:83:12:5b:dd:32:fd:58:d9:e5:
fe:2c:d1:7c:42:db:a8:df:b3:bc:7e:e9:12:00:ac:9f:bd:2b:
ed:7d:59:a7:d0:49:8f:99:53:8c:7e:eb:f4:b7:4c:cc:a1:9a:
e9:8f:78:cf:51:f1:9c:b9:c6:a6:5d:bd:6c:b5:f2:b9:e8:29:
47:35:fc:ab:45:2b:a8:f9:e3:9b:5e:f7:26:1f:9d:b3:60:15:
38:3f:a7:23:66:8a:9e:e4:be:2e:b4:fa:5e:2a:1c:df:2e:3f:
4d:dd:9e:05:79:dd:77:9e:2b:93:da:c7:39:89:a0:ac:0b:7d:
33:d9:36:b5:cf:54:8b:1a:19:44:ce:49:72:85:d8:ad:17:91:
89:d0:46:31:ed:a7:2d:c7:ea:08:d2:eb:96:5d:35:93:44:5e:
38:fb:5e:7f:e2:2d:8e:f1:52:3f:2e:1b:6f:3b:aa:e8:74:54:
97:b5:bc:94:55:d5:bc:2a:c8:ea:95:2d:ad:00:e5:fd:41:bc:
60:fc:11:f1:73:99:1e:07:7c:ec:a5:d5:30:92:b6:86:1d:46:
a5:9d:92:36:40:7e:1e:b9:09:0e:18:ca:13:7c:1e:29:46:41:
29:4e:2e:71:08:c6:f8:f1:6c:b0:2e:8c:3c:39:49:4a:22:1b:
03:87:4e:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:41:21 2025 by rpki-client