Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/V6OX4q7TgT0BwLiaySeE1egW-EY.roa
File: V6OX4q7TgT0BwLiaySeE1egW-EY.roa (raw, json)
Hash identifier: hdHLMuGUFH7S62ywfiePETBJbkB7N6ssj2FMUvD9+aw=
Subject key identifier: 57:A3:97:E2:AE:D3:81:3D:01:C0:B8:9A:C9:27:84:D5:E8:16:F8:46
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 018960B6ABDA51570D8A995C83415A05BBCB
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/V6OX4q7TgT0BwLiaySeE1egW-EY.roa
Signing time: Sun 16 Jul 2023 21:58:51 +0000
ROA not before: Sun 16 Jul 2023 21:58:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 85.237.196.0/24 maxlen: 24
85.237.208.0/24 maxlen: 24
85.237.215.0/24 maxlen: 24
85.237.214.0/24 maxlen: 24
85.237.216.0/24 maxlen: 24
185.139.25.0/24 maxlen: 24
185.139.27.0/24 maxlen: 24
185.235.32.0/24 maxlen: 24
85.158.58.0/24 maxlen: 24
85.158.61.0/24 maxlen: 24
85.158.63.0/24 maxlen: 24
85.158.62.0/24 maxlen: 24
85.158.60.0/24 maxlen: 24
185.93.34.0/24 maxlen: 24
185.93.35.0/24 maxlen: 24
185.100.212.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:60:b6:ab:da:51:57:0d:8a:99:5c:83:41:5a:05:bb:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Jul 16 21:58:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=57a397e2aed3813d01c0b89ac92784d5e816f846
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3a:1b:1d:a9:52:7a:a4:11:37:74:42:23:90:
84:fc:b3:23:e7:c4:96:ff:ca:10:7a:95:59:9b:de:
53:6e:92:95:c3:9e:40:0c:d1:26:ac:f1:d7:4e:93:
ac:8c:a6:fa:8b:9d:05:06:6b:28:59:07:46:76:b5:
d7:78:b4:98:16:dd:17:eb:5c:33:c9:03:18:80:d3:
bd:88:94:39:b8:8f:46:85:d5:5f:93:c2:ad:dd:fe:
6c:fd:22:b3:d3:54:ca:50:2a:88:df:17:4f:47:01:
e1:3d:ca:03:08:b2:6d:56:2f:11:64:e7:45:81:85:
4d:5e:5e:72:39:ee:ff:a0:c1:39:13:0e:13:de:94:
5b:3b:17:ee:b3:cc:b4:8d:4f:8f:6b:c4:7e:33:8f:
2e:84:eb:69:1a:84:09:6b:b8:d8:73:b7:c5:3c:c1:
d9:44:ee:03:bf:b3:9c:71:47:4e:ce:47:85:36:15:
72:07:3d:dc:59:d1:6a:f3:1d:7f:51:fb:eb:98:93:
5e:61:b2:13:85:43:ba:2a:94:ea:cf:71:90:21:a6:
7f:e0:0c:29:f9:42:5a:c4:4a:fc:0e:08:3f:80:fd:
5d:c0:85:4b:24:0e:11:d0:46:c3:5d:56:c0:86:35:
3b:b6:26:95:15:cb:6f:80:e8:8b:51:37:5f:a1:a3:
27:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:A3:97:E2:AE:D3:81:3D:01:C0:B8:9A:C9:27:84:D5:E8:16:F8:46
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/V6OX4q7TgT0BwLiaySeE1egW-EY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.158.58.0/24
85.158.60.0/22
85.237.196.0/24
85.237.208.0/24
85.237.214.0-85.237.216.255
185.93.34.0/23
185.100.212.0/22
185.139.25.0/24
185.139.27.0/24
185.235.32.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:9d:5e:1f:a3:d2:0c:1e:1a:de:be:d2:45:8d:a1:33:9d:51:
57:be:bb:b2:cd:27:d7:87:05:f1:b8:5e:25:84:d0:e7:b6:31:
b1:1c:41:66:76:30:3f:37:7f:21:70:d1:a9:41:52:85:f0:c3:
67:e7:83:1a:14:9e:15:e6:79:7a:bb:b2:f4:b2:be:e3:55:ad:
8c:ca:5a:e8:73:2e:08:b3:ef:89:f7:68:4d:e6:bc:83:b5:b0:
68:26:de:d3:1d:be:9c:2c:4e:76:0e:68:c0:15:06:82:ad:04:
55:3d:7d:1e:2b:92:80:3a:7a:ce:f0:3a:91:1e:00:6c:58:9c:
98:00:5a:8c:0d:71:69:77:cf:15:f7:3d:8a:ef:8c:86:d7:76:
c4:73:19:ba:7d:42:89:de:59:fc:f1:0c:c1:ef:5e:b0:28:11:
7e:2f:49:f4:50:6e:e8:f8:b7:8b:06:89:28:93:df:e8:2b:34:
c2:18:7b:4b:4a:d3:8d:4d:1a:b8:7f:27:d6:86:93:4f:46:5d:
1a:be:cb:0d:54:35:4d:47:a5:74:40:e4:c5:e2:fa:06:d6:b2:
66:63:36:ee:38:2b:d9:e8:6d:f8:22:2c:9c:58:1a:b5:33:dd:
0d:d6:0c:e7:90:a8:7a:e3:6d:94:2d:ea:14:c6:b4:d6:23:35:
6b:cc:1f:8b
-----BEGIN CERTIFICATE-----
MIIFOzCCBCOgAwIBAgISAYlgtqvaUVcNiplcg0FaBbvLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4YmY3ZjNhZDUzZjI5YTNjNDNmMGFkODIwMTdhMDUzNjhj
MDEwNGEwHhcNMjMwNzE2MjE1ODUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1N2EzOTdlMmFlZDM4MTNkMDFjMGI4OWFjOTI3ODRkNWU4MTZmODQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTobHalSeqQRN3RCI5CE/LMj58SW
/8oQepVZm95TbpKVw55ADNEmrPHXTpOsjKb6i50FBmsoWQdGdrXXeLSYFt0X61wz
yQMYgNO9iJQ5uI9GhdVfk8Kt3f5s/SKz01TKUCqI3xdPRwHhPcoDCLJtVi8RZOdF
gYVNXl5yOe7/oME5Ew4T3pRbOxfus8y0jU+Pa8R+M48uhOtpGoQJa7jYc7fFPMHZ
RO4Dv7OccUdOzkeFNhVyBz3cWdFq8x1/UfvrmJNeYbIThUO6KpTqz3GQIaZ/4Awp
+UJaxEr8Dgg/gP1dwIVLJA4R0EbDXVbAhjU7tiaVFctvgOiLUTdfoaMnrwIDAQAB
o4ICRzCCAkMwHQYDVR0OBBYEFFejl+Ku04E9AcC4msknhNXoFvhGMB8GA1UdIwQY
MBaAFFi/fzrVPymjxD8K2CAXoFNowBBKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0w5X090VV9LYVBFUHdyWUlCZWdVMmpBRUVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8zNjRiOTQtNmNhNC00ZjlhLTg4YTUt
OGIzZDUyN2M0OWU0LzEvVjZPWDRxN1RnVDBCd0xpYXlTZUUxZWdXLUVZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi8zNjRiOTQtNmNhNC00ZjlhLTg4YTUtOGIzZDUyN2M0OWU0
LzEvV0w5X090VV9LYVBFUHdyWUlCZWdVMmpBRUVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMF0GCCsGAQUFBwEHAQH/BE4wTDBKBAIAATBEAwQAVZ46AwQC
VZ48AwQAVe3EAwQAVe3QMAwDBAFV7dYDBABV7dgDBAG5XSIDBAK5ZNQDBAC5ixkD
BAC5ixsDBAC56yAwDQYJKoZIhvcNAQELBQADggEBAD2dXh+j0gweGt6+0kWNoTOd
UVe+u7LNJ9eHBfG4XiWE0Oe2MbEcQWZ2MD83fyFw0alBUoXww2fngxoUnhXmeXq7
svSyvuNVrYzKWuhzLgiz74n3aE3mvIO1sGgm3tMdvpwsTnYOaMAVBoKtBFU9fR4r
koA6es7wOpEeAGxYnJgAWowNcWl3zxX3PYrvjIbXdsRzGbp9QoneWfzxDMHvXrAo
EX4vSfRQbuj4t4sGiSiT3+grNMIYe0tK041NGrh/J9aGk09GXRq+yw1UNU1HpXRA
5MXi+gbWsmZjNu44K9nobfgiLJxYGrUz3Q3WDOeQqHrjbZQt6hTGtNYjNWvMH4s=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:14 2024 by rpki-client on console-ams.rpki-client.org