Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/T8t3wPhq0PuQ0G_ROHX1uhPQ5ok.roa
File: T8t3wPhq0PuQ0G_ROHX1uhPQ5ok.roa (raw, json)
Hash identifier: LmCud18a/XGhAEajvjUQeYDWpQmdHjkt/f/YEY4hp2Q=
Subject key identifier: 4F:CB:77:C0:F8:6A:D0:FB:90:D0:6F:D1:38:75:F5:BA:13:D0:E6:89
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 0188BDCC0243203C98409A8CA59D1ED0E5B8
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/T8t3wPhq0PuQ0G_ROHX1uhPQ5ok.roa
Signing time: Thu 15 Jun 2023 06:44:03 +0000
ROA not before: Thu 15 Jun 2023 06:44:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42962
IP address blocks: 85.237.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:bd:cc:02:43:20:3c:98:40:9a:8c:a5:9d:1e:d0:e5:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Jun 15 06:44:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4fcb77c0f86ad0fb90d06fd13875f5ba13d0e689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:89:cc:96:9d:35:e7:96:40:f4:85:a9:1c:bf:
ec:b2:1e:d5:1e:27:c9:78:f0:a5:ae:cc:37:ae:06:
70:21:9d:5c:33:5f:06:f4:42:d2:0b:bc:13:75:d4:
38:f4:34:46:67:91:8e:23:5e:26:48:fd:be:b1:98:
45:b0:09:85:2e:2f:c2:67:13:84:f9:dc:c3:8d:07:
85:20:93:b1:31:27:0c:29:b7:93:3b:35:a7:49:d9:
e2:25:d2:b9:6a:eb:f7:37:ac:7f:7d:70:58:ed:48:
1a:f9:08:3c:1c:93:23:b9:6b:77:11:cd:61:df:ef:
c4:da:21:a7:80:f3:48:e9:2e:75:6e:ef:4d:93:d9:
dc:77:9c:95:74:ea:03:e3:48:23:1e:55:45:79:eb:
9b:7d:91:87:a4:1b:4a:14:60:0c:2d:40:05:a9:e5:
61:0b:26:6f:b3:2e:8c:6f:8e:56:10:bd:f8:3b:2a:
d3:4b:2b:21:ba:09:5d:66:5e:6b:ef:60:14:89:62:
2c:25:31:0a:68:c3:ed:89:d7:fd:a5:7f:4c:72:22:
dd:c8:05:70:bc:ed:08:cd:12:22:f9:b9:09:69:04:
57:01:c1:db:de:17:e7:10:f2:3a:1e:0e:51:4e:72:
d3:d6:49:a7:64:9f:73:77:73:af:c8:6c:ba:e3:af:
54:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:CB:77:C0:F8:6A:D0:FB:90:D0:6F:D1:38:75:F5:BA:13:D0:E6:89
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/T8t3wPhq0PuQ0G_ROHX1uhPQ5ok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.205.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:7c:4f:ba:68:55:24:98:48:86:99:98:56:fb:c7:95:5f:a9:
9b:d1:03:25:b9:78:67:9a:c2:d0:85:1b:7f:03:08:49:2d:af:
f2:e8:98:eb:15:a1:ce:7f:87:15:75:59:b3:26:4d:21:38:72:
ea:3c:85:9d:2e:b0:7e:cd:85:d1:69:d9:04:ad:f1:81:b8:73:
2d:1d:78:58:ec:6a:8a:8d:a1:5f:d7:75:77:16:72:d9:e6:f1:
19:cb:c3:d5:41:85:85:51:ce:29:a6:ff:6f:8c:d4:29:36:e9:
73:8a:f7:a1:19:c4:e7:70:86:cf:51:1e:f0:9b:96:b2:26:44:
37:b1:cf:94:15:6a:e6:64:56:97:c5:06:f0:ea:b2:f7:f1:f4:
20:5c:e6:6f:08:e6:a4:95:4e:76:42:f5:5e:76:44:9c:7e:40:
9a:3d:7a:fb:45:70:fa:7d:22:c2:18:d7:42:e8:f5:d6:76:57:
71:1d:2a:ba:f6:f4:4c:53:e5:e8:6b:7d:47:75:3a:cc:77:46:
6e:ba:7e:67:71:80:29:ca:13:62:2d:c8:92:08:1e:1e:0f:e4:
ae:cf:05:77:e0:d1:d4:45:64:64:83:93:30:3a:e2:43:86:c3:
fc:84:64:9d:63:4f:b5:a8:f5:cc:96:65:4d:10:4d:e1:94:94:
d7:67:a1:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 8 07:41:23 2023 by rpki-client on console-ams.rpki-client.org