Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/ZqOU1nIC3U2uKtCRln2X-pRfgF4.roa
File: ZqOU1nIC3U2uKtCRln2X-pRfgF4.roa (raw, json)
Hash identifier: Q4TdTQsHKErVI8CO9qwzRERYdMyuvOLR/VbXu2RZkaw=
Subject key identifier: 66:A3:94:D6:72:02:DD:4D:AE:2A:D0:91:96:7D:97:FA:94:5F:80:5E
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 032B9B6D
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/ZqOU1nIC3U2uKtCRln2X-pRfgF4.roa
Signing time: Sat 01 Jan 2022 11:04:29 +0000
ROA not before: Sat 01 Jan 2022 11:04:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140641
IP address blocks: 185.100.212.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53189485 (0x32b9b6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Jan 1 11:04:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66a394d67202dd4dae2ad091967d97fa945f805e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:5d:43:7a:2b:3c:79:ee:aa:51:f6:c0:1e:d3:
c7:41:14:23:b4:e5:d2:b2:c6:e4:6e:b3:8b:df:1d:
7a:c0:9f:74:78:8b:f6:ec:22:53:64:29:b9:77:e9:
47:6a:28:ad:31:1d:a4:5e:89:c5:b7:e3:72:b2:bd:
13:ae:92:41:a2:fc:a9:72:fc:88:69:7c:02:e4:55:
21:8d:85:7e:c2:70:27:e7:ad:4c:37:52:d4:f5:59:
c3:b7:ff:f0:05:fd:14:04:ef:84:80:0d:3c:07:dc:
c1:54:a1:cb:3d:17:a2:08:44:8c:26:c9:da:35:2f:
d8:ee:d6:c8:4d:9f:d1:58:0c:95:94:b0:56:17:ef:
e3:a1:a8:e2:72:a9:ae:b7:5b:a7:d4:8e:41:40:de:
5a:6e:9e:46:45:e5:69:20:c0:89:ab:c2:5c:cf:c4:
a0:39:c7:76:ca:12:21:fc:2d:fa:d2:2b:13:0b:c9:
84:f8:ce:04:38:2d:c8:58:89:4f:29:5f:34:fd:07:
a8:2b:d6:e1:b8:22:66:40:fa:f0:96:2d:d9:e4:af:
1a:54:52:42:ea:13:87:13:1d:72:3a:0c:29:a0:00:
04:91:6d:1e:65:40:72:37:20:14:5d:45:53:e8:67:
4b:83:52:11:9a:a6:03:2e:6f:a4:3f:c5:d3:d6:b2:
32:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:A3:94:D6:72:02:DD:4D:AE:2A:D0:91:96:7D:97:FA:94:5F:80:5E
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/ZqOU1nIC3U2uKtCRln2X-pRfgF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.212.0/24
Signature Algorithm: sha256WithRSAEncryption
88:bd:bb:3c:46:45:00:ee:de:c3:9d:9b:d6:9e:d6:02:50:e0:
b9:42:4c:b8:39:ab:f3:ec:0d:e7:c8:55:2c:4a:7e:c9:1e:45:
e2:9b:0f:d5:85:84:b5:c3:84:f8:42:6c:23:7b:67:13:5b:cc:
0c:32:0e:17:43:27:8a:c9:da:a6:2e:46:8b:c5:13:6b:11:ca:
6c:90:bd:d5:f5:60:6b:61:ee:a3:f1:c6:3d:38:71:b3:09:f5:
7b:f3:61:44:22:ef:d3:83:77:3a:82:0d:cb:1e:2e:b9:66:92:
4f:9e:fd:f6:9c:8b:25:b6:44:d0:fc:20:cf:1d:b5:18:d6:e3:
f6:c6:16:35:15:25:d2:9e:06:f6:63:62:7d:4f:4c:df:fc:3d:
13:ae:e9:ed:69:2b:cc:13:35:2d:d1:91:64:79:83:f5:d4:7c:
51:bf:41:3a:f3:0e:d3:75:7d:c1:3c:c9:2e:74:d6:7f:df:a4:
b3:00:4e:cd:4d:aa:86:52:06:90:2e:b7:7f:52:50:3c:ea:40:
fd:66:4c:b0:8d:6a:4b:30:5e:ba:1c:b9:b4:59:27:b5:3c:5a:
fd:ec:a1:31:9b:64:07:d6:48:2e:08:15:1e:30:38:a0:10:02:
14:52:97:23:83:3c:df:66:92:35:ae:26:cd:9d:29:38:94:75:
25:1b:a5:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:09 2025 by rpki-client