Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/b9wRGl2DsAqLHKMlasqGqx6kC_w.roa
File: b9wRGl2DsAqLHKMlasqGqx6kC_w.roa (raw, json)
Hash identifier: yogLfXEO1ncRVz2ZkLjbMDyQ6+m5UcGJqehLQcUFAbk=
Subject key identifier: 6F:DC:11:1A:5D:83:B0:0A:8B:1C:A3:25:6A:CA:86:AB:1E:A4:0B:FC
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 01856FCBA08EDB265B8124A37948A1E9BBFB
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/b9wRGl2DsAqLHKMlasqGqx6kC_w.roa
Signing time: Mon 02 Jan 2023 00:04:53 +0000
ROA not before: Mon 02 Jan 2023 00:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 185.235.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:a0:8e:db:26:5b:81:24:a3:79:48:a1:e9:bb:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Jan 2 00:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6fdc111a5d83b00a8b1ca3256aca86ab1ea40bfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:6f:53:89:03:7f:da:bb:6e:65:b4:99:a9:5c:
17:5d:3e:a8:d0:20:a2:5f:9f:7b:ef:3a:b1:c4:8a:
f9:4e:9c:0d:a3:08:01:a1:a5:eb:64:49:58:68:79:
2e:7e:c4:6e:39:5b:be:6e:df:5b:65:ef:4f:2d:9f:
b6:ce:73:9f:14:b6:67:79:ce:6c:5d:c5:4a:b5:42:
1b:43:d1:ce:6e:ea:b7:57:4a:92:e7:c5:ed:b2:bc:
3b:94:57:d3:fa:75:48:ab:52:4c:0d:40:c1:7c:12:
d2:a0:d6:41:f7:80:12:27:fa:9b:26:11:dc:52:73:
af:30:46:3f:b8:c3:88:66:49:da:59:6e:fd:f3:75:
4a:3f:7e:b6:4a:31:72:d6:19:6c:68:6b:89:bb:f8:
d8:64:19:e1:cf:5a:41:43:f6:47:ea:57:06:86:8a:
eb:be:29:18:1f:1f:9c:b7:71:18:5b:17:8e:5b:4d:
45:48:9e:bb:bd:64:a4:d1:ff:3a:44:31:9a:8f:54:
18:fc:85:a5:ee:b4:37:ed:cb:72:36:b9:de:26:fb:
c6:12:15:1b:b9:52:c0:d8:b8:1c:a4:39:42:98:e8:
f4:60:5e:6c:df:45:e7:cd:8a:ee:b1:8a:c4:d2:84:
2c:b4:95:88:b5:a4:1b:48:56:b3:e1:58:d0:f1:9a:
12:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:DC:11:1A:5D:83:B0:0A:8B:1C:A3:25:6A:CA:86:AB:1E:A4:0B:FC
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/b9wRGl2DsAqLHKMlasqGqx6kC_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.32.0/24
Signature Algorithm: sha256WithRSAEncryption
66:80:82:3a:a9:5f:77:fa:08:af:8d:1c:f0:ce:b5:03:56:78:
ab:69:de:87:06:31:e3:8d:fa:f8:61:08:4b:56:05:ab:7d:d6:
ab:89:d1:4b:f0:14:13:79:d1:60:56:88:7f:37:39:10:0a:cb:
4e:c2:37:dd:b7:18:74:5b:8e:22:d3:22:b0:62:97:cb:d8:31:
dc:a4:98:6d:77:88:34:5a:96:66:98:c5:96:4e:f7:4c:7a:f4:
3d:c3:39:ee:7b:e8:1a:b2:d9:22:37:d3:7e:e6:c1:2b:3c:34:
94:bc:31:ce:a4:44:12:1c:02:89:0d:35:a0:f2:c6:6e:24:e7:
c1:61:1e:db:59:ad:95:8d:77:e1:dd:92:40:22:af:ab:51:25:
67:f1:0b:1e:48:45:22:ab:67:62:90:88:a7:20:35:5d:48:d9:
9f:ae:bf:9f:a4:b1:86:a7:c2:d5:90:70:cb:f2:91:4c:53:51:
aa:aa:0b:eb:05:e0:98:e7:e4:61:a7:ba:1a:ee:49:3f:09:69:
e2:57:8e:7b:c7:a3:c5:86:50:08:f9:c1:43:94:6e:e1:21:1e:
1d:23:16:e0:bc:81:54:31:b1:bf:4e:1e:68:65:7a:07:6f:ad:
a1:c5:95:5e:7c:20:f6:44:61:ea:2b:80:f9:22:b5:03:8a:ba:
7f:c6:d7:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:24:30 2025 by rpki-client