Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/JIrtEbusDKqUhFfW8G3lrJLxlvA.roa
File: JIrtEbusDKqUhFfW8G3lrJLxlvA.roa (raw, json)
Hash identifier: onbOAN2LS712NckLNupbJLPgqTa6t+LoywbiONhiQ+k=
Subject key identifier: 24:8A:ED:11:BB:AC:0C:AA:94:84:57:D6:F0:6D:E5:AC:92:F1:96:F0
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 018B0184858A66D2D2499296050C9E9FE75E
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/JIrtEbusDKqUhFfW8G3lrJLxlvA.roa
Signing time: Thu 05 Oct 2023 20:25:43 +0000
ROA not before: Thu 05 Oct 2023 20:25:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 193.109.194.0/24 maxlen: 24
85.237.196.0/24 maxlen: 24
193.109.198.0/24 maxlen: 24
85.237.208.0/24 maxlen: 24
85.237.215.0/24 maxlen: 24
85.237.214.0/24 maxlen: 24
85.237.216.0/24 maxlen: 24
185.139.25.0/24 maxlen: 24
185.139.27.0/24 maxlen: 24
185.235.32.0/24 maxlen: 24
85.158.58.0/24 maxlen: 24
85.158.57.0/24 maxlen: 24
85.158.61.0/24 maxlen: 24
85.158.63.0/24 maxlen: 24
85.158.62.0/24 maxlen: 24
85.158.60.0/24 maxlen: 24
185.93.34.0/24 maxlen: 24
185.93.35.0/24 maxlen: 24
185.100.212.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:01:84:85:8a:66:d2:d2:49:92:96:05:0c:9e:9f:e7:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Oct 5 20:25:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=248aed11bbac0caa948457d6f06de5ac92f196f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:59:c9:d8:f2:60:82:de:53:8c:5d:fc:f0:59:
b1:bf:6c:88:03:6f:ed:a2:9a:dd:85:96:31:ae:65:
c2:ab:6f:b5:b9:0c:73:87:97:74:e8:57:69:2e:95:
45:1c:2e:d4:7c:90:44:ef:d6:b0:04:8d:f9:65:e0:
2f:f2:14:d6:cf:1b:a4:a8:82:c6:d0:02:c4:18:68:
4a:d7:42:61:f6:8b:b8:bb:61:65:5f:62:49:e0:e4:
b9:9b:16:50:de:7d:33:63:a6:1c:06:6c:1d:1c:96:
a0:ac:f6:8c:08:73:ac:40:56:02:de:25:d7:87:11:
fc:76:f1:f9:31:e8:8b:86:ac:96:d0:99:85:3d:41:
a4:81:01:8a:29:67:72:35:e5:a0:43:9b:3c:24:1d:
e2:3d:04:b9:8d:54:28:c0:09:3a:9c:89:1c:ee:3d:
f8:e2:65:ba:0c:45:86:9e:4a:d8:c0:57:e4:7f:25:
fc:ce:e8:8e:28:30:3b:a8:d2:c5:d1:8d:39:6e:33:
90:20:14:68:a1:93:6a:b5:2a:f6:ed:af:b0:27:3a:
e2:95:c1:8e:75:ac:94:bc:f2:f7:57:41:e9:66:17:
f5:8a:0f:d6:73:22:63:de:2b:32:f6:93:a3:95:05:
74:89:0d:0c:31:16:94:e6:72:d9:a5:87:06:4e:9d:
74:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:8A:ED:11:BB:AC:0C:AA:94:84:57:D6:F0:6D:E5:AC:92:F1:96:F0
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/JIrtEbusDKqUhFfW8G3lrJLxlvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.158.57.0-85.158.58.255
85.158.60.0/22
85.237.196.0/24
85.237.208.0/24
85.237.214.0-85.237.216.255
185.93.34.0/23
185.100.212.0/22
185.139.25.0/24
185.139.27.0/24
185.235.32.0/24
193.109.194.0/24
193.109.198.0/24
Signature Algorithm: sha256WithRSAEncryption
96:3d:cf:0a:68:1b:ca:f5:0f:52:2e:08:4e:99:a8:3a:b5:a0:
77:e1:ee:c4:a2:0b:90:20:5f:59:71:5b:81:84:cb:67:88:66:
ab:78:f5:0a:66:78:f8:ef:6d:af:ea:0b:69:1f:19:ce:e4:be:
bc:30:07:a6:84:d1:17:ab:80:00:3f:bd:90:3c:11:fe:f8:0b:
fa:0c:fd:8d:2e:5d:0c:1f:d0:07:56:bf:0c:32:43:14:0b:eb:
d1:f4:8c:b5:a4:67:63:95:fb:17:24:19:22:dd:09:41:30:96:
30:f5:0c:a4:09:a4:29:ed:ef:09:62:93:06:ca:83:46:f4:bb:
c2:10:d4:dd:3e:9f:55:8f:a5:6c:f2:86:50:b4:9e:3f:5f:f5:
4a:da:e8:30:a6:6f:c3:43:e8:53:7f:1a:27:24:9d:24:39:e5:
d4:33:04:ec:f9:33:9a:d3:0b:13:e7:db:5c:ca:d8:c8:b9:e8:
1d:8c:7c:da:29:8c:e0:31:12:0d:8d:92:b8:ae:11:5a:d2:38:
22:02:33:36:69:22:57:5f:4e:e8:da:1c:b4:87:26:5e:47:38:
2d:c8:ad:d8:ec:a3:b8:21:a5:74:58:96:95:59:8a:76:7b:08:
34:e6:4b:b2:5b:34:e0:24:1f:a8:23:74:d2:bc:33:af:46:53:
ec:c7:40:7e
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgISAYsBhIWKZtLSSZKWBQyen+deMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4YmY3ZjNhZDUzZjI5YTNjNDNmMGFkODIwMTdhMDUzNjhj
MDEwNGEwHhcNMjMxMDA1MjAyNTQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNDhhZWQxMWJiYWMwY2FhOTQ4NDU3ZDZmMDZkZTVhYzkyZjE5NmYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi1nJ2PJggt5TjF388Fmxv2yIA2/t
oprdhZYxrmXCq2+1uQxzh5d06FdpLpVFHC7UfJBE79awBI35ZeAv8hTWzxukqILG
0ALEGGhK10Jh9ou4u2FlX2JJ4OS5mxZQ3n0zY6YcBmwdHJagrPaMCHOsQFYC3iXX
hxH8dvH5MeiLhqyW0JmFPUGkgQGKKWdyNeWgQ5s8JB3iPQS5jVQowAk6nIkc7j34
4mW6DEWGnkrYwFfkfyX8zuiOKDA7qNLF0Y05bjOQIBRooZNqtSr27a+wJzrilcGO
dayUvPL3V0HpZhf1ig/WcyJj3isy9pOjlQV0iQ0MMRaU5nLZpYcGTp10RwIDAQAB
o4ICWzCCAlcwHQYDVR0OBBYEFCSK7RG7rAyqlIRX1vBt5ayS8ZbwMB8GA1UdIwQY
MBaAFFi/fzrVPymjxD8K2CAXoFNowBBKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0w5X090VV9LYVBFUHdyWUlCZWdVMmpBRUVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8zNjRiOTQtNmNhNC00ZjlhLTg4YTUt
OGIzZDUyN2M0OWU0LzEvSklydEVidXNES3FVaEZmVzhHM2xySkx4bHZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi8zNjRiOTQtNmNhNC00ZjlhLTg4YTUtOGIzZDUyN2M0OWU0
LzEvV0w5X090VV9LYVBFUHdyWUlCZWdVMmpBRUVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHEGCCsGAQUFBwEHAQH/BGIwYDBeBAIAATBYMAwDBABVnjkD
BABVnjoDBAJVnjwDBABV7cQDBABV7dAwDAMEAVXt1gMEAFXt2AMEAbldIgMEArlk
1AMEALmLGQMEALmLGwMEALnrIAMEAMFtwgMEAMFtxjANBgkqhkiG9w0BAQsFAAOC
AQEAlj3PCmgbyvUPUi4ITpmoOrWgd+HuxKILkCBfWXFbgYTLZ4hmq3j1CmZ4+O9t
r+oLaR8ZzuS+vDAHpoTRF6uAAD+9kDwR/vgL+gz9jS5dDB/QB1a/DDJDFAvr0fSM
taRnY5X7FyQZIt0JQTCWMPUMpAmkKe3vCWKTBsqDRvS7whDU3T6fVY+lbPKGULSe
P1/1StroMKZvw0PoU38aJySdJDnl1DME7PkzmtMLE+fbXMrYyLnoHYx82imM4DES
DY2SuK4RWtI4IgIzNmkiV19O6NoctIcmXkc4Lcit2OyjuCGldFiWlVmKdnsINOZL
sls04CQfqCN00rwzr0ZT7MdAfg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:26:50 2025 by rpki-client