Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/fTMK9pBXrCzBa0gqUk0eo6pbM4k.roa
File: fTMK9pBXrCzBa0gqUk0eo6pbM4k.roa (raw, json)
Hash identifier: EfDaYTBCF2RoFMDjD+zMoaaBNslDKB0qVJi6nbIRj2k=
Subject key identifier: 7D:33:0A:F6:90:57:AC:2C:C1:6B:48:2A:52:4D:1E:A3:AA:5B:33:89
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 0189B32E8302F41F4329FFFF831215B55D4A
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/fTMK9pBXrCzBa0gqUk0eo6pbM4k.roa
Signing time: Tue 01 Aug 2023 22:18:37 +0000
ROA not before: Tue 01 Aug 2023 22:18:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142561
IP address blocks: 85.237.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b3:2e:83:02:f4:1f:43:29:ff:ff:83:12:15:b5:5d:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Aug 1 22:18:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d330af69057ac2cc16b482a524d1ea3aa5b3389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:4b:ff:ab:5b:53:9e:7c:c4:36:a2:51:54:3e:
c9:dd:1c:48:c3:24:79:7f:ee:aa:e7:c1:5f:af:5e:
66:43:d8:31:fd:71:a9:49:06:db:cd:5e:67:cd:e5:
ae:f5:b7:59:80:26:6a:d1:e0:65:db:ad:d8:49:c7:
74:04:95:f4:87:90:a9:81:96:3a:c2:d7:20:b1:4c:
49:8a:91:8d:ee:6d:7f:e6:3c:7b:53:0a:05:fc:a3:
ef:d3:26:1e:cc:ee:e3:59:90:28:bd:cc:37:8d:58:
d9:16:5c:19:e2:79:ed:41:ed:69:6c:59:80:4c:34:
c4:2b:83:ae:39:e7:bc:d0:8a:c9:0b:33:28:84:05:
8d:55:9b:31:21:ac:5b:a5:6e:8a:94:4d:74:f2:ac:
f5:21:bd:1d:f5:08:07:34:73:39:66:32:70:a6:3c:
f3:62:8e:ef:e1:46:46:68:6f:af:1b:d2:21:19:ad:
68:5f:db:f3:59:35:3b:ba:37:3a:e8:f1:9d:7f:20:
09:23:54:6e:cf:2c:bf:a6:9a:82:d3:ba:22:6e:3b:
22:39:71:65:ab:1f:de:ef:85:a4:52:19:e8:b4:6c:
19:02:56:63:42:d8:dc:53:0c:1b:aa:d2:e9:85:ac:
0b:f3:bf:c3:56:c0:40:46:32:4b:09:dc:7e:c6:29:
db:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:33:0A:F6:90:57:AC:2C:C1:6B:48:2A:52:4D:1E:A3:AA:5B:33:89
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/fTMK9pBXrCzBa0gqUk0eo6pbM4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.222.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:e9:d8:97:fd:ce:1e:a5:74:cf:fc:25:01:f3:36:32:69:d8:
ec:95:43:6e:bb:27:b9:c3:d6:af:e3:54:25:4d:67:5f:d2:60:
ae:c3:c4:fb:96:10:19:55:15:38:86:00:1c:ae:4d:fb:56:e8:
3b:9d:a0:89:6c:65:c7:90:ab:06:91:d4:9d:b8:86:4a:bc:6f:
38:83:84:8d:e2:71:61:e3:99:29:48:27:75:45:64:73:72:14:
6f:b2:26:1d:a2:25:c4:0f:e2:69:02:1b:d8:87:6d:ce:93:89:
c0:96:8c:01:56:3b:8c:20:5a:22:3d:ae:41:73:1a:58:d7:c2:
ec:a1:c7:e3:bf:97:0b:f5:c5:8d:51:1c:dc:c7:8a:3c:e9:0c:
a5:b6:30:7c:43:b9:43:05:6f:4b:18:0d:2f:7a:1a:22:81:da:
6a:01:dc:c8:71:d6:1d:be:9c:b0:65:47:d0:23:2f:f1:f2:53:
de:e1:76:cc:5f:70:59:37:b8:e7:10:fd:7a:70:c2:04:c6:3e:
03:73:46:b4:b8:c2:85:a7:a2:78:9b:e6:4f:9d:21:2e:ec:a5:
63:ba:84:7d:bd:2b:f9:5d:b9:58:cc:93:76:63:ca:5e:65:a6:
cf:47:11:12:e7:f3:5e:3a:ae:64:04:9f:51:f1:7f:bd:cd:86:
87:c8:7e:05
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYmzLoMC9B9DKf//gxIVtV1KMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4YmY3ZjNhZDUzZjI5YTNjNDNmMGFkODIwMTdhMDUzNjhj
MDEwNGEwHhcNMjMwODAxMjIxODM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZDMzMGFmNjkwNTdhYzJjYzE2YjQ4MmE1MjRkMWVhM2FhNWIzMzg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhEv/q1tTnnzENqJRVD7J3RxIwyR5
f+6q58Ffr15mQ9gx/XGpSQbbzV5nzeWu9bdZgCZq0eBl263YScd0BJX0h5CpgZY6
wtcgsUxJipGN7m1/5jx7UwoF/KPv0yYezO7jWZAovcw3jVjZFlwZ4nntQe1pbFmA
TDTEK4OuOee80IrJCzMohAWNVZsxIaxbpW6KlE108qz1Ib0d9QgHNHM5ZjJwpjzz
Yo7v4UZGaG+vG9IhGa1oX9vzWTU7ujc66PGdfyAJI1Ruzyy/ppqC07oibjsiOXFl
qx/e74WkUhnotGwZAlZjQtjcUwwbqtLphawL87/DVsBARjJLCdx+xinb5wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH0zCvaQV6wswWtIKlJNHqOqWzOJMB8GA1UdIwQY
MBaAFFi/fzrVPymjxD8K2CAXoFNowBBKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0w5X090VV9LYVBFUHdyWUlCZWdVMmpBRUVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8zNjRiOTQtNmNhNC00ZjlhLTg4YTUt
OGIzZDUyN2M0OWU0LzEvZlRNSzlwQlhyQ3pCYTBncVVrMGVvNnBiTTRrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi8zNjRiOTQtNmNhNC00ZjlhLTg4YTUtOGIzZDUyN2M0OWU0
LzEvV0w5X090VV9LYVBFUHdyWUlCZWdVMmpBRUVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVe3eMA0G
CSqGSIb3DQEBCwUAA4IBAQA86diX/c4epXTP/CUB8zYyadjslUNuuye5w9av41Ql
TWdf0mCuw8T7lhAZVRU4hgAcrk37Vug7naCJbGXHkKsGkdSduIZKvG84g4SN4nFh
45kpSCd1RWRzchRvsiYdoiXED+JpAhvYh23Ok4nAlowBVjuMIFoiPa5BcxpY18Ls
ocfjv5cL9cWNURzcx4o86QyltjB8Q7lDBW9LGA0vehoigdpqAdzIcdYdvpywZUfQ
Iy/x8lPe4XbMX3BZN7jnEP16cMIExj4Dc0a0uMKFp6J4m+ZPnSEu7KVjuoR9vSv5
XblYzJN2Y8peZabPRxES5/NeOq5kBJ9R8X+9zYaHyH4F
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:14 2024 by rpki-client on console-ams.rpki-client.org