Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/3KaP31L1yC76H8ndmMEYjiMKrmI.roa
File: 3KaP31L1yC76H8ndmMEYjiMKrmI.roa (raw, json)
Hash identifier: SJsmLlWwBPiv1RoNsbYWmdzPzTk9UbS2szgoualUoEA=
Subject key identifier: DC:A6:8F:DF:52:F5:C8:2E:FA:1F:C9:DD:98:C1:18:8E:23:0A:AE:62
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 018B35864CFC6F90CEC74AC2F84AF3DBD78F
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/3KaP31L1yC76H8ndmMEYjiMKrmI.roa
Signing time: Sun 15 Oct 2023 22:47:55 +0000
ROA not before: Sun 15 Oct 2023 22:47:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142561
IP address blocks: 85.237.208.0/24 maxlen: 24
85.237.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:35:86:4c:fc:6f:90:ce:c7:4a:c2:f8:4a:f3:db:d7:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Oct 15 22:47:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dca68fdf52f5c82efa1fc9dd98c1188e230aae62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:42:d4:a0:3a:76:f8:8f:bd:14:08:b1:76:1a:
6d:ca:88:81:f8:3d:82:e2:26:ea:8c:ea:4e:75:10:
dd:9f:f2:db:46:2a:2b:3d:eb:50:13:0f:af:c0:af:
ee:1d:e3:7d:96:19:2d:95:4f:01:af:dc:af:77:d8:
77:e1:ca:04:0b:42:be:58:f7:ec:b2:d1:70:3d:d8:
cc:b3:69:17:60:14:8f:7a:2e:27:89:1c:38:54:0f:
4b:91:b4:e6:39:93:57:5d:2f:2d:4c:77:f0:c3:17:
da:cd:fa:4a:c1:ad:04:ad:55:1b:22:90:ae:78:c9:
66:4a:34:cc:5d:07:47:00:96:40:51:30:f0:66:04:
f4:14:7e:33:af:8e:07:e1:29:17:31:ec:a8:4c:39:
ec:9a:6f:ef:3a:ee:7c:03:89:1b:34:2d:ad:b5:ea:
f6:bc:84:cd:6d:69:d9:fa:ad:4a:07:3e:b8:f4:f7:
9b:4f:53:82:5c:7f:6f:32:9a:d8:a4:13:34:c3:10:
20:e5:1e:48:b9:7b:7b:3c:10:2e:99:14:84:60:b7:
33:15:f8:7e:1a:cf:ab:f3:9d:27:71:a4:93:6a:56:
1b:4f:84:fa:18:4f:b5:33:0e:d8:8a:19:db:95:3b:
17:4c:6d:a2:8e:0c:e4:e9:98:73:8e:a1:63:9f:49:
bd:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:A6:8F:DF:52:F5:C8:2E:FA:1F:C9:DD:98:C1:18:8E:23:0A:AE:62
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/3KaP31L1yC76H8ndmMEYjiMKrmI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.208.0/24
85.237.222.0/24
Signature Algorithm: sha256WithRSAEncryption
31:a9:67:b7:4e:00:3f:50:c7:59:e7:d1:a1:ef:51:6e:a5:40:
a8:14:3b:66:e0:ec:31:ae:8c:0c:e0:01:e3:35:09:db:2f:d4:
73:be:8b:f4:a9:59:db:a7:88:da:03:83:34:9b:d3:63:6e:10:
37:07:82:08:53:13:df:33:0c:6d:e6:21:90:9a:81:f0:9f:c9:
13:27:c9:c7:19:e1:de:75:8d:36:04:2a:ed:a0:57:cd:e0:a0:
56:31:1b:c8:2b:bc:3b:cb:af:07:08:42:22:b6:3f:e2:41:71:
c5:10:da:3c:06:a3:5e:71:fc:f1:95:00:57:ed:10:d7:24:41:
46:a9:19:a8:83:ad:e4:44:44:3b:2d:5f:32:a7:16:c2:57:62:
12:d4:57:a4:b4:9c:94:b9:7a:f0:6c:b7:e2:53:7f:79:7c:1c:
c1:be:9e:24:d9:c5:6c:ad:ae:07:3f:6f:34:06:7e:47:a6:f3:
73:c8:7c:46:8b:f8:3e:db:57:75:95:25:da:08:53:27:7b:51:
89:12:d5:fc:ea:c7:16:e9:38:65:ff:0b:61:13:9d:8e:3b:42:
36:1d:fd:0a:fb:99:49:b6:60:03:bf:5f:76:d9:c0:29:00:c3:
40:db:65:d5:c8:e8:e4:7a:b1:27:33:83:d5:1a:da:94:73:1c:
7d:59:6f:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:14 2024 by rpki-client on console-ams.rpki-client.org