Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/Q5h7-YyfmtrdypgE5ktZTb8wqiY.roa
File: Q5h7-YyfmtrdypgE5ktZTb8wqiY.roa (raw, json)
Hash identifier: 4cMGVw2r2UPrKZrTgDpshOVqHQSPbibGmE4q5NI1WuI=
Subject key identifier: 43:98:7B:F9:8C:9F:9A:DA:DD:CA:98:04:E6:4B:59:4D:BF:30:AA:26
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 018AC2ABDB92252F316D5BFFFEBD41C68132
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/Q5h7-YyfmtrdypgE5ktZTb8wqiY.roa
Signing time: Sat 23 Sep 2023 15:32:37 +0000
ROA not before: Sat 23 Sep 2023 15:32:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201814
IP address blocks: 85.237.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:c2:ab:db:92:25:2f:31:6d:5b:ff:fe:bd:41:c6:81:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Sep 23 15:32:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43987bf98c9f9adaddca9804e64b594dbf30aa26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:3b:72:f1:0d:4c:b9:c0:df:99:86:ae:20:90:
ba:12:52:5d:e6:a6:f6:71:c7:3c:52:19:93:c2:f5:
b4:30:56:88:91:c7:75:8b:bd:cc:08:56:f1:ed:47:
ee:0f:e3:32:7c:fb:d0:f8:8d:4e:bf:33:c3:5a:7f:
f3:3a:43:6a:c4:17:34:53:28:17:41:d2:24:c6:30:
ca:68:02:98:e0:91:b2:15:44:21:16:df:bd:98:8c:
9d:13:a2:77:d2:e2:40:c9:e5:7f:7a:09:a2:89:dc:
42:22:8d:2b:18:d0:e2:ff:bd:f8:c0:e5:7e:92:b9:
0c:95:1d:be:4c:ff:df:cb:b6:a8:ac:5f:d7:70:a3:
ec:ed:02:a1:e4:a8:54:67:ae:97:97:9f:2e:2d:30:
c7:33:7f:08:17:61:6a:94:62:94:25:0c:85:52:54:
ec:1e:0f:96:e5:62:74:c7:9d:a4:d0:cc:1c:14:a4:
5c:ed:34:c6:fa:0c:07:fd:bd:3f:1d:f8:a1:82:61:
8f:2a:d9:26:34:7c:49:7b:64:45:8e:6f:5f:f9:1e:
3a:ce:17:04:7b:bc:1b:d6:30:5d:24:b3:09:70:c5:
c3:04:c9:6a:86:77:35:ac:69:0b:69:79:27:f1:e0:
37:49:39:51:6e:89:d2:d8:de:b8:c3:7d:52:7a:e1:
9b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:98:7B:F9:8C:9F:9A:DA:DD:CA:98:04:E6:4B:59:4D:BF:30:AA:26
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/Q5h7-YyfmtrdypgE5ktZTb8wqiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.223.0/24
Signature Algorithm: sha256WithRSAEncryption
42:57:b6:eb:5b:d1:88:56:50:e4:aa:0a:26:cb:a9:a2:13:d3:
86:3b:8d:cc:bd:a0:6d:7c:0b:19:31:16:39:89:3a:93:6c:99:
c5:64:b7:d4:be:9c:cd:42:bb:4f:76:1c:c4:40:6f:6c:db:ad:
de:8b:05:4e:bb:cd:6a:b1:36:f8:32:97:f9:67:03:ad:20:34:
df:f0:ef:1c:d3:c8:af:ba:84:4a:4f:21:88:35:8f:39:0e:cb:
93:dc:20:06:66:96:74:be:cd:c1:52:d3:b8:f0:c5:c8:e2:7f:
af:c1:33:58:aa:eb:ec:d4:b7:00:f4:8e:ca:ec:9d:19:46:97:
e2:b0:0a:43:3f:d0:71:90:c1:cc:65:c2:34:07:1b:6e:be:39:
06:60:00:89:3c:bf:30:2e:40:36:30:40:db:1b:4b:98:cc:3f:
0b:ba:20:2e:71:a4:6b:57:83:80:b7:5d:55:53:73:5b:e7:1e:
69:e4:db:87:5d:2d:04:62:5c:a4:f3:3c:d5:d6:83:1f:16:fe:
00:46:da:85:5e:47:74:7a:55:c2:30:4a:55:53:b5:17:b0:88:
31:f5:e0:ad:ea:ed:ac:dd:04:f2:90:30:a5:d2:8c:ad:cf:b3:
a8:63:b6:33:a0:25:db:7f:fa:47:ca:da:e3:16:6c:41:b4:46:
e5:3e:f7:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 8 07:41:23 2023 by rpki-client on console-ams.rpki-client.org