Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/csMDFhfnVT_nybiG6gijNgLHzG0.roa
File: csMDFhfnVT_nybiG6gijNgLHzG0.roa (raw, json)
Hash identifier: KNgozf4yNysnjq+eBmphsvBA09WJf0k4X7tH2qa8q3Y=
Subject key identifier: 72:C3:03:16:17:E7:55:3F:E7:C9:B8:86:EA:08:A3:36:02:C7:CC:6D
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 018A968060AD16294ECDB60C79C4C87C8C5C
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/csMDFhfnVT_nybiG6gijNgLHzG0.roa
Signing time: Fri 15 Sep 2023 01:41:50 +0000
ROA not before: Fri 15 Sep 2023 01:41:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 185.93.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:96:80:60:ad:16:29:4e:cd:b6:0c:79:c4:c8:7c:8c:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Sep 15 01:41:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72c3031617e7553fe7c9b886ea08a33602c7cc6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:52:55:26:76:34:88:ea:42:cb:93:a6:23:b0:
59:0c:70:f6:6e:54:64:8d:c7:9c:7e:89:6b:9d:20:
f2:80:64:4c:2d:b0:74:38:65:c8:6d:a3:4c:a5:1d:
c4:7d:d1:a6:5a:c5:c7:61:f5:9a:90:fc:b1:2c:a0:
26:d9:a5:51:b8:7d:3a:03:13:48:2c:65:71:5d:42:
67:cc:f3:30:f6:75:d3:9d:2d:68:82:99:fb:55:28:
4f:dd:99:e2:53:ce:d9:28:76:a5:ab:94:62:c8:e0:
98:df:de:ad:e0:02:60:b1:89:a1:88:f5:7a:06:da:
cd:bb:24:7a:b6:39:14:57:b4:c5:16:01:2f:aa:f5:
fa:3c:9a:4d:13:30:b8:37:1b:e7:5e:cc:0f:8c:91:
d0:34:d7:83:6c:40:b0:55:7b:d2:83:6a:11:23:35:
3f:88:4a:32:41:c1:59:77:b3:90:27:85:e9:69:f0:
b9:24:f1:90:57:5d:45:42:53:32:a6:80:75:1b:e0:
64:d4:5b:40:1a:78:de:81:6c:e0:9f:b8:ed:e5:d6:
c2:a6:43:eb:25:85:c4:ae:ec:5b:c7:bd:81:7e:c3:
10:ef:a1:b7:d3:64:cd:6e:33:10:5f:60:52:4b:37:
c3:8b:87:95:13:ce:65:5e:05:fa:dc:f8:98:47:43:
8e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:C3:03:16:17:E7:55:3F:E7:C9:B8:86:EA:08:A3:36:02:C7:CC:6D
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/csMDFhfnVT_nybiG6gijNgLHzG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.33.0/24
Signature Algorithm: sha256WithRSAEncryption
38:74:56:e6:b1:e1:95:a7:8c:59:ac:cd:35:d0:a7:18:5e:46:
e1:9d:0e:d5:cb:36:ac:f1:3c:f5:e3:14:8d:b9:c2:2a:8e:ce:
0b:9b:d4:0e:13:57:c1:e4:32:71:86:36:cf:83:78:63:40:10:
06:2b:56:d2:cd:15:3d:6a:18:63:97:c5:23:15:a9:3b:80:8d:
2a:9c:48:2b:f0:39:a0:df:f5:d4:77:df:be:4d:5d:26:71:f6:
33:62:14:2b:8c:f2:7c:08:73:7e:dc:39:82:04:b8:1d:18:a8:
be:f0:9e:c8:d3:b4:6c:c4:c8:2d:d9:f7:da:67:d3:c9:fc:01:
39:d5:4f:1b:ac:02:dc:52:0a:c5:fd:de:c8:99:d9:c1:a0:75:
3f:6a:48:6f:66:b3:7c:81:1c:2c:22:0b:32:66:ff:9a:27:a8:
74:c1:50:74:64:8d:72:02:91:5f:f0:89:7d:29:b6:f6:ed:da:
8e:14:e6:0b:f8:a9:56:be:3f:5a:e6:af:da:a9:87:bd:a5:63:
51:67:cc:6e:77:25:23:8a:71:dc:7e:96:36:d9:a7:4b:b8:50:
80:d8:4d:6e:90:61:d8:35:3c:01:af:37:be:7e:4e:21:d4:0c:
5e:0b:cd:a6:e1:f6:15:10:d4:16:6e:a0:59:93:8a:5d:1a:aa:
08:27:7e:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 8 07:16:17 2023 by rpki-client on console-fra.rpki-client.org