Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/IKN5pJEBVO7F8VCZr5xLFYP6jmY.roa
File: IKN5pJEBVO7F8VCZr5xLFYP6jmY.roa (raw, json)
Hash identifier: HZLXWB5KUF4Q1req0DDKTf4gcz96uJAeirLwjWuSh9k=
Subject key identifier: 20:A3:79:A4:91:01:54:EE:C5:F1:50:99:AF:9C:4B:15:83:FA:8E:66
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 0188C85355453347E2E37D2D318FFB840788
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/IKN5pJEBVO7F8VCZr5xLFYP6jmY.roa
Signing time: Sat 17 Jun 2023 07:48:04 +0000
ROA not before: Sat 17 Jun 2023 07:48:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 193.109.198.0/24 maxlen: 24
85.237.206.0/24 maxlen: 24
85.237.206.0/23 maxlen: 23
85.237.217.0/24 maxlen: 24
85.237.220.0/23 maxlen: 23
85.237.220.0/24 maxlen: 24
85.237.221.0/24 maxlen: 24
185.93.33.0/24 maxlen: 24
185.139.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c8:53:55:45:33:47:e2:e3:7d:2d:31:8f:fb:84:07:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Jun 17 07:48:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20a379a4910154eec5f15099af9c4b1583fa8e66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:33:e5:8b:98:94:bb:8d:cd:0f:1a:ab:bf:c5:
be:04:0b:72:ee:5e:06:d7:7f:8b:38:58:b2:2d:52:
1f:46:f7:2c:a1:6a:c6:df:1a:2f:70:32:98:c9:17:
cc:2e:6f:3b:ea:f4:a0:5f:fc:a7:0b:dd:f2:e6:d8:
8b:0c:e3:86:75:40:68:b2:9d:43:95:62:98:bf:2f:
a4:0b:71:cb:4c:f2:e6:a2:da:c2:41:fd:31:f3:20:
df:50:1c:07:9a:1d:cc:df:39:62:b9:ac:a5:bc:aa:
4d:c0:b1:13:99:e0:57:56:da:79:f1:ef:77:62:04:
82:8e:f3:a4:68:38:04:36:b6:be:d2:28:4d:49:00:
b8:cc:ca:9a:37:89:fc:a8:06:a3:ea:53:bd:07:7c:
47:79:f4:84:fb:2a:7f:a8:c1:91:ea:5f:7b:01:f6:
30:f8:8d:9f:b6:a7:20:30:11:4d:78:62:e7:40:aa:
15:77:b8:71:7a:f9:5a:a4:c4:1e:2a:5f:3f:ba:6d:
46:b0:ef:77:73:d7:97:da:25:29:2b:ca:a7:d1:23:
62:f4:43:c8:df:1e:63:e7:77:a6:d7:b4:3a:36:a6:
60:f6:f5:7d:19:61:fb:6a:c2:d2:18:e8:48:ab:85:
41:7b:e0:db:f1:07:c8:b6:57:61:45:24:54:40:0c:
62:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:A3:79:A4:91:01:54:EE:C5:F1:50:99:AF:9C:4B:15:83:FA:8E:66
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/IKN5pJEBVO7F8VCZr5xLFYP6jmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.206.0/23
85.237.217.0/24
85.237.220.0/23
185.93.33.0/24
185.139.26.0/24
193.109.198.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:a9:87:37:e4:9b:dc:97:55:68:50:bc:9d:8a:41:ae:36:e3:
95:76:b1:0b:b5:63:7b:c8:1e:d3:f9:ed:ea:0a:0c:3d:46:87:
f1:07:e8:02:10:3b:05:8d:11:b2:0f:ed:4b:d4:9b:c3:42:82:
fb:77:c4:56:4d:57:53:9c:be:92:20:68:d0:9a:85:cf:8f:29:
b0:61:a9:e6:53:16:86:22:86:97:0c:5d:ad:4e:37:78:8c:28:
12:eb:c7:02:1e:d8:b6:07:20:f6:f2:81:c7:93:62:bd:3f:bd:
9a:ea:89:28:e1:9d:17:e3:93:33:c5:32:51:01:35:76:9b:d1:
a7:d9:b8:5d:be:0a:6a:d9:5a:c4:12:25:ac:74:e6:3f:5c:92:
fa:c0:09:d7:33:be:0c:a9:47:11:80:28:48:4a:55:61:fa:e7:
ad:02:07:47:44:cb:17:ef:f0:be:da:b5:c6:5f:b5:0c:98:8a:
77:2b:c3:28:82:19:5d:3a:df:9c:b5:45:c7:65:16:2a:d3:67:
09:84:b6:bf:37:29:6a:a0:84:19:98:65:bb:3c:8d:ad:07:6b:
9b:c6:b3:21:03:27:aa:a0:d8:bb:c1:7a:71:e1:19:4d:96:65:
0b:6b:d2:96:9a:f5:19:2e:d7:c5:f8:90:ff:64:bf:62:fc:00:
63:53:9e:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:00 2024 by rpki-client on console-fra.rpki-client.org