Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/XBLwbXv-rrK0XdZUxE7xtZIz7AI.roa
File: XBLwbXv-rrK0XdZUxE7xtZIz7AI.roa (raw, json)
Hash identifier: /+DqRaUt3Mn9h9A1+/uZP/1lmOCvmQ3+z64kzyKxbH4=
Subject key identifier: 5C:12:F0:6D:7B:FE:AE:B2:B4:5D:D6:54:C4:4E:F1:B5:92:33:EC:02
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 0188B6AFEEB7B8D68E8984C43BD6CED7F0CA
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/XBLwbXv-rrK0XdZUxE7xtZIz7AI.roa
Signing time: Tue 13 Jun 2023 21:36:03 +0000
ROA not before: Tue 13 Jun 2023 21:36:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.139.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b6:af:ee:b7:b8:d6:8e:89:84:c4:3b:d6:ce:d7:f0:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Jun 13 21:36:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c12f06d7bfeaeb2b45dd654c44ef1b59233ec02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:7f:e4:08:96:55:89:8c:04:9f:41:2f:4c:c2:
f3:5e:b2:bb:b0:1d:6e:1d:77:8c:b6:a8:8d:04:1a:
44:d0:24:84:76:ff:5f:7e:82:2a:c7:8f:4f:6a:71:
e5:ae:db:24:38:76:fc:e8:72:75:d0:24:41:82:29:
e3:1c:b9:83:0b:d2:39:6e:3a:93:7e:18:9e:00:38:
0a:3d:67:0f:10:0e:f0:6e:8e:50:77:97:63:34:27:
42:09:e4:63:bd:30:e5:1e:7a:d6:e4:43:03:f5:97:
f2:05:a1:87:47:b4:2d:ba:ac:33:93:be:4f:c6:6e:
e7:5e:4f:90:c6:00:1c:13:e1:ac:fa:23:1a:44:7e:
5d:6c:a9:3b:3b:89:58:37:01:fe:b1:8c:6d:05:52:
42:5a:92:58:44:e5:08:25:2b:20:84:b8:ad:16:6a:
cc:53:e3:bb:ad:02:4d:07:11:04:a1:cb:bb:20:82:
28:08:e3:5b:88:a4:7d:c5:43:2c:7b:3c:b3:1f:a1:
14:11:21:de:5d:21:72:82:43:78:ad:8d:05:e3:c0:
d2:5c:b8:b7:68:1d:f5:bd:15:ea:74:69:2d:f3:9a:
e3:b1:f6:b4:26:fa:45:d1:d8:11:8e:0c:b5:d6:5b:
08:94:ee:f4:b7:10:52:33:13:4a:22:85:5b:4f:8c:
54:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:12:F0:6D:7B:FE:AE:B2:B4:5D:D6:54:C4:4E:F1:B5:92:33:EC:02
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/XBLwbXv-rrK0XdZUxE7xtZIz7AI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.139.26.0/24
Signature Algorithm: sha256WithRSAEncryption
23:4f:f1:75:67:e9:63:0f:2f:d3:19:5c:5c:98:5c:fc:fd:e5:
72:6b:aa:7d:dc:0a:4a:85:ce:46:87:cc:09:c8:d2:37:90:db:
ea:b2:4e:b6:7d:93:56:ee:75:99:8b:51:35:aa:c4:96:f5:d2:
ae:05:a5:83:77:be:83:6c:f9:8b:83:80:44:99:db:50:da:c6:
f4:69:9b:80:12:1b:69:4f:04:c9:e6:91:ca:f2:ef:4b:fb:87:
8f:85:f3:7e:2e:db:52:39:2f:ea:d2:35:5f:bf:8b:a8:3f:4b:
53:99:9a:af:9c:4d:e0:40:2f:cf:4b:5c:44:21:96:77:9b:42:
63:5e:aa:3a:63:0f:ab:37:94:a2:f1:bd:bb:5d:ad:c7:86:4a:
4e:6d:21:ad:cf:35:5f:45:ae:b1:fa:bd:98:26:8f:f2:10:ec:
f7:15:8f:72:b1:a6:0f:86:e6:5c:ed:d6:ef:5b:ee:98:6c:17:
66:12:2c:27:93:5f:40:fb:49:2f:fa:96:31:c0:0b:51:74:d8:
e6:ce:14:20:56:f7:9c:45:7a:93:eb:af:27:91:4a:0c:b8:9a:
0f:87:75:09:ea:cf:6f:ed:54:6a:f1:6e:7a:87:c9:76:53:ac:
44:13:35:24:90:52:2e:48:00:4c:7d:c4:18:2c:20:3c:74:d0:
dd:8d:af:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:11 2025 by rpki-client