Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/PTUA47SPaTnSrGE0siOfXBDHJiE.roa
File: PTUA47SPaTnSrGE0siOfXBDHJiE.roa (raw, json)
Hash identifier: r29Os0C9iS2GiRA5mOFbl6oRjZPKJBFi8z2Hr2virWY=
Subject key identifier: 3D:35:00:E3:B4:8F:69:39:D2:AC:61:34:B2:23:9F:5C:10:C7:26:21
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 018B192BFFD9D3427B5B0ED64032FF75A8CE
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/PTUA47SPaTnSrGE0siOfXBDHJiE.roa
Signing time: Tue 10 Oct 2023 10:39:55 +0000
ROA not before: Tue 10 Oct 2023 10:39:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 85.158.58.0/23 maxlen: 23
85.158.58.0/24 maxlen: 24
85.237.208.0/23 maxlen: 23
85.237.208.0/24 maxlen: 24
85.237.209.0/24 maxlen: 24
85.237.220.0/23 maxlen: 23
185.139.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:19:2b:ff:d9:d3:42:7b:5b:0e:d6:40:32:ff:75:a8:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Oct 10 10:39:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d3500e3b48f6939d2ac6134b2239f5c10c72621
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b6:60:65:54:6f:cd:e6:94:b4:50:02:a2:b3:
3f:fd:74:36:26:69:47:c8:9d:19:57:f6:24:7d:20:
f3:e3:8c:8c:89:91:99:d0:c7:ea:f2:42:37:c3:70:
d8:d6:8b:51:0c:78:d5:4d:06:7a:35:0f:c6:90:5a:
f6:c7:a6:58:80:1a:c4:9b:39:92:dd:e7:5d:db:1f:
8f:5f:ec:fe:b6:0f:8b:ae:29:cb:c6:c6:df:bf:2f:
f6:22:b6:43:22:98:cb:db:e7:64:ba:34:d6:d7:82:
d0:dc:c4:51:d2:1d:9a:d4:98:04:87:87:51:4d:51:
58:e6:18:26:41:45:a7:51:16:7a:9f:34:f2:ff:76:
d7:10:eb:ac:80:6e:4f:8e:d9:cb:53:9c:05:77:47:
5b:1b:78:a0:f0:5c:82:e9:38:e3:7d:91:2c:27:ce:
3a:22:82:f9:53:68:b5:66:56:a9:72:c1:63:e3:07:
30:eb:b7:70:c1:7b:45:27:ce:84:7f:1e:c1:a5:f2:
9d:a0:ab:7c:24:e2:45:7c:e7:3e:27:85:08:f0:a1:
bd:e9:72:d5:00:9e:eb:bf:8d:f7:be:04:59:5c:3d:
28:9f:2c:44:dc:c8:3f:7c:c4:af:bf:52:81:d6:0a:
94:15:66:df:23:31:e9:96:7f:a9:2b:5b:a1:0d:f5:
e3:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:35:00:E3:B4:8F:69:39:D2:AC:61:34:B2:23:9F:5C:10:C7:26:21
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/PTUA47SPaTnSrGE0siOfXBDHJiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.158.58.0/23
85.237.208.0/23
85.237.220.0/23
185.139.26.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:ef:7e:42:ab:4e:c9:45:8e:d2:13:58:3b:86:0a:fd:cd:f5:
0e:22:ee:f3:e5:46:6e:a6:a4:82:de:93:9f:7f:fb:ce:3b:11:
9f:b8:a6:8e:7b:b0:b8:37:97:48:37:25:17:36:f3:9e:ec:40:
90:34:e1:40:88:f5:cf:42:25:b2:8a:d0:79:ea:b8:9b:f8:cb:
1e:28:e6:0f:1d:32:67:8c:4c:47:d4:7b:00:a4:2d:87:ea:1d:
e5:44:25:bd:79:bf:8b:f8:6b:6f:23:eb:f2:55:e7:f3:34:67:
29:0b:32:73:01:38:7e:a8:71:95:70:da:ea:41:d9:78:49:13:
4b:80:e7:73:3f:a4:01:b1:6b:50:9d:27:87:38:32:3f:ed:6f:
f5:b8:6c:4d:9e:a1:6c:6d:8f:ab:82:fb:8b:0a:52:03:57:ca:
28:7c:27:47:d1:28:2d:54:67:a3:23:a9:89:90:68:b5:62:7f:
32:cc:c3:ba:31:64:4a:7e:df:5b:a8:f8:7a:6b:17:3b:ee:03:
52:a7:9f:72:34:21:4d:14:c9:cb:82:a9:75:68:6e:38:ce:b4:
8a:c5:76:57:49:f8:87:5d:fb:e3:49:99:dc:b0:f2:07:27:a8:
1f:f1:50:f6:98:ea:37:52:1e:2a:a0:01:30:29:e2:a1:20:0a:
53:49:06:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:38 2025 by rpki-client