Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/Nu5mFvNF_Zj6YgeRTE1bj0bGOAk.roa
File: Nu5mFvNF_Zj6YgeRTE1bj0bGOAk.roa (raw, json)
Hash identifier: eKuidPGkAfwai4UuoDMOq/aZMOTfxl8wRaLev0a8XQw=
Subject key identifier: 36:EE:66:16:F3:45:FD:98:FA:62:07:91:4C:4D:5B:8F:46:C6:38:09
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 0188BDCC02E13E8E427626D86A320D6D139A
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/Nu5mFvNF_Zj6YgeRTE1bj0bGOAk.roa
Signing time: Thu 15 Jun 2023 06:44:03 +0000
ROA not before: Thu 15 Jun 2023 06:44:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51287
IP address blocks: 185.89.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:bd:cc:02:e1:3e:8e:42:76:26:d8:6a:32:0d:6d:13:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Jun 15 06:44:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=36ee6616f345fd98fa6207914c4d5b8f46c63809
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:1a:c5:1b:5a:4d:b3:33:6e:bf:f6:65:e5:1e:
0b:31:70:c2:dd:8a:1a:24:be:b4:2a:db:95:79:1b:
aa:85:13:09:93:04:db:36:02:8b:ec:6f:3d:69:2f:
48:6e:f6:b8:3f:d3:93:ee:88:89:ed:bf:cb:4d:52:
41:92:24:7b:5e:f9:68:a1:2e:11:33:8e:73:76:8d:
70:38:e2:07:e8:e4:2e:8a:cb:68:f0:5d:eb:fc:3e:
54:1c:c1:40:10:b5:86:fe:79:85:20:fd:1f:89:bc:
d1:88:72:68:25:23:c8:7f:6e:a5:dd:31:61:8e:50:
10:62:fc:b3:36:17:5c:37:47:f7:d5:c6:63:17:5b:
d3:03:71:5a:0a:ef:5e:8e:2e:09:ea:74:4d:33:26:
af:da:b4:b7:85:6c:7b:cf:15:fe:1b:34:e6:cb:7c:
0a:63:36:35:c7:dc:f5:30:9c:9a:19:41:60:c9:ba:
84:dd:c2:62:87:9c:22:7e:be:29:10:b7:56:5a:c0:
dd:7f:60:90:47:54:1a:a3:a7:b3:1c:15:eb:e0:36:
19:5c:53:89:b9:75:d5:67:5d:9f:5e:df:a4:8e:0d:
31:7a:89:33:94:55:37:4d:21:3c:f4:ad:4b:a6:92:
1e:dd:a4:b8:90:16:25:79:22:43:54:10:08:87:cc:
67:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:EE:66:16:F3:45:FD:98:FA:62:07:91:4C:4D:5B:8F:46:C6:38:09
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/Nu5mFvNF_Zj6YgeRTE1bj0bGOAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.76.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:64:ab:e2:68:37:98:7e:df:db:1f:2a:0c:ee:a8:d0:e5:ea:
df:dd:02:30:42:42:cb:eb:dc:49:ed:f6:87:11:8a:22:93:db:
64:62:ae:46:e6:90:fe:79:d2:51:1b:57:45:7c:24:a2:8a:ac:
05:63:a1:10:60:8b:4b:bc:bb:9e:e9:80:d0:b0:05:6c:8a:c2:
1b:fc:b7:d3:38:30:8e:0e:09:72:b3:90:65:6e:92:22:f8:a5:
8e:1d:66:bf:74:72:da:be:65:22:ae:9c:07:ca:23:ed:c5:de:
53:79:ca:fe:10:18:8c:ae:fd:b0:05:55:01:1e:cc:8b:cc:92:
27:95:13:9e:37:61:88:90:a5:0c:e5:de:66:ad:d8:7f:f6:74:
a6:a6:27:9e:45:f5:6c:38:73:5c:11:be:ba:d7:99:95:40:c4:
16:b3:47:e2:24:38:b6:f9:74:63:12:dd:00:ff:54:04:ee:02:
56:e4:dd:cc:40:5b:15:8e:37:b8:7b:47:09:24:04:bf:b3:15:
ce:ba:2a:6a:39:1e:5a:70:d4:41:b2:95:1a:15:df:ea:24:df:
30:c9:30:81:09:20:9c:ca:17:1f:c5:23:cf:c3:43:ea:07:5e:
c0:eb:1d:86:54:d6:b9:5e:dc:9f:b1:32:11:ec:09:1a:61:bc:
99:16:c9:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:05:33 2025 by rpki-client