Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/3_aYA_lX-eAWjpRY6Q4jz9gBXNc.roa
File: 3_aYA_lX-eAWjpRY6Q4jz9gBXNc.roa (raw, json)
Hash identifier: +80RNPSQG7NuENW1vnGjT4QvU5Vo7R0sLm5zKtQDSj8=
Subject key identifier: DF:F6:98:03:F9:57:F9:E0:16:8E:94:58:E9:0E:23:CF:D8:01:5C:D7
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 018B01839A780E74F01320E18A3052A1D489
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/3_aYA_lX-eAWjpRY6Q4jz9gBXNc.roa
Signing time: Thu 05 Oct 2023 20:24:43 +0000
ROA not before: Thu 05 Oct 2023 20:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 26042
IP address blocks: 85.237.202.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:01:83:9a:78:0e:74:f0:13:20:e1:8a:30:52:a1:d4:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Oct 5 20:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dff69803f957f9e0168e9458e90e23cfd8015cd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e8:53:94:2d:05:4a:67:53:ae:0e:54:7f:93:
dc:ae:d5:b8:e0:d6:f6:b7:ed:f9:ee:ed:a0:17:ed:
a7:4b:bc:c6:fc:06:f0:99:aa:a5:7a:d3:d9:82:61:
71:cb:6a:6b:8c:93:80:38:ff:99:9a:8c:89:58:96:
04:a5:76:11:20:d2:87:47:95:1d:ba:13:08:c7:9c:
de:bb:1d:87:85:46:0c:75:a7:e9:39:40:b1:5f:8f:
8f:d5:7a:d3:aa:61:32:da:58:66:4f:df:12:ff:90:
55:9f:ba:c9:da:a8:68:1f:2d:ea:09:f8:3d:b6:0a:
9b:81:5b:bd:18:0a:a0:4e:ef:0c:49:63:81:1e:65:
de:1c:cb:60:a6:30:b7:f4:cd:ba:7f:4b:30:e4:55:
79:1f:64:50:e6:08:be:23:fd:19:2d:b5:a4:1a:8d:
71:e8:21:a9:04:03:08:2f:7f:75:d3:64:a1:32:60:
db:e5:c8:6d:5a:7b:bc:d8:48:51:5c:44:b0:35:21:
50:70:fa:15:4a:5b:17:6c:27:8c:8f:76:f3:b8:fd:
03:85:f7:67:99:9d:b5:20:22:cd:10:2a:a0:28:23:
b9:9e:b7:dc:e6:f6:5d:58:fb:af:86:07:f0:57:86:
4f:36:34:b3:f0:00:2d:13:ba:69:a6:69:50:11:86:
85:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:F6:98:03:F9:57:F9:E0:16:8E:94:58:E9:0E:23:CF:D8:01:5C:D7
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/3_aYA_lX-eAWjpRY6Q4jz9gBXNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.202.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:e5:45:b1:f5:12:44:c7:d9:8a:d7:1c:57:8f:5b:25:79:8c:
ef:8c:8e:c2:25:9b:73:3c:14:ae:61:90:ac:77:b5:00:b7:6f:
56:60:d4:3e:7a:95:4a:0e:2e:8e:28:e3:22:aa:73:17:ac:74:
90:5e:40:0a:a0:99:65:19:5e:08:91:c2:12:c2:48:27:8f:09:
bb:f2:b4:57:ff:7c:c8:d6:87:69:1f:61:9e:58:92:b0:9e:83:
a4:f2:49:c5:52:12:6d:f1:fd:fd:57:aa:8c:b2:5b:1d:41:08:
8c:59:ae:91:44:de:f3:c8:58:11:8c:a1:09:7b:93:2e:0a:19:
35:6b:d0:20:59:b2:1a:ae:8d:47:0f:1e:ac:da:d7:54:83:3a:
57:d1:78:ca:aa:e5:8b:84:5b:db:dd:f9:21:bc:67:5c:58:8b:
dd:a6:d4:11:1d:e7:a4:6b:da:d5:e7:13:3f:47:13:5d:77:b6:
a2:e6:c5:6a:7f:aa:3d:fe:9f:2b:6f:e0:16:4b:aa:38:ee:42:
59:1d:4d:d0:72:58:84:96:80:c2:50:6a:2e:de:96:89:bb:88:
9f:46:25:cf:87:2c:db:5c:f9:51:8d:f5:c1:ad:ae:c4:4b:ba:
40:05:46:92:a1:a7:ea:17:c0:52:c6:3f:5e:65:84:92:a9:c1:
c8:83:6e:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:29:08 2025 by rpki-client