Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/ijMUJ_dLCeztUIzLRxZp5wRgSIg.roa
File: ijMUJ_dLCeztUIzLRxZp5wRgSIg.roa (raw, json)
Hash identifier: 13ZlU5/ItpE7xbfFGv2viJCe2BFZn3P+bS970oprPHQ=
Subject key identifier: 8A:33:14:27:F7:4B:09:EC:ED:50:8C:CB:47:16:69:E7:04:60:48:88
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 018B724044BEF37E09E3C03594A4AA3F2517
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/ijMUJ_dLCeztUIzLRxZp5wRgSIg.roa
Signing time: Fri 27 Oct 2023 17:48:16 +0000
ROA not before: Fri 27 Oct 2023 17:48:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 193.109.194.0/24 maxlen: 24
85.237.196.0/24 maxlen: 24
193.109.198.0/24 maxlen: 24
85.237.204.0/24 maxlen: 24
85.237.215.0/24 maxlen: 24
85.237.214.0/24 maxlen: 24
85.237.216.0/24 maxlen: 24
185.139.25.0/24 maxlen: 24
185.139.26.0/24 maxlen: 24
185.139.27.0/24 maxlen: 24
185.235.32.0/24 maxlen: 24
85.158.57.0/24 maxlen: 24
85.158.61.0/24 maxlen: 24
85.158.63.0/24 maxlen: 24
85.158.62.0/24 maxlen: 24
85.158.60.0/24 maxlen: 24
185.93.34.0/24 maxlen: 24
185.93.35.0/24 maxlen: 24
185.100.212.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:72:40:44:be:f3:7e:09:e3:c0:35:94:a4:aa:3f:25:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Oct 27 17:48:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a331427f74b09eced508ccb471669e704604888
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:61:f8:73:ca:39:f3:65:24:7a:ba:3b:b2:b0:
24:bd:19:f5:c8:aa:32:7c:f5:88:d8:69:86:0a:3a:
d0:8f:f8:cb:e7:49:2a:55:81:e9:67:f2:31:40:6c:
1e:48:92:90:19:04:90:77:17:91:b7:46:b3:7d:58:
81:be:38:75:f1:2c:b2:5f:88:17:3c:cb:88:97:94:
e7:34:46:9f:81:9c:2f:c9:08:20:dc:6e:5c:c2:29:
2b:71:d6:09:2a:21:1d:75:e7:d5:cd:85:ba:65:47:
46:2c:c1:8f:ab:ff:b0:8a:a3:84:d9:08:01:e8:e7:
5f:26:62:1e:d5:d5:71:c4:cf:b7:44:17:cc:6a:18:
2b:27:46:11:db:09:4b:5a:d3:43:83:d0:0f:d4:39:
79:51:fa:ab:fd:c5:d0:ce:2a:67:99:c0:18:84:59:
7c:31:5d:8b:08:fc:96:fc:ee:e0:b5:66:b1:92:4e:
10:00:20:75:8b:1b:a7:5e:ce:5c:bc:1e:03:31:a5:
e7:04:f2:f0:5c:9a:e3:05:eb:c0:43:09:07:ec:ab:
9b:53:88:21:40:2c:bb:40:80:4d:98:35:47:29:9b:
92:98:df:51:fb:b6:11:57:2d:77:25:9a:6f:c7:18:
29:04:c7:9e:28:f6:02:71:3e:85:46:f7:91:1e:33:
87:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:33:14:27:F7:4B:09:EC:ED:50:8C:CB:47:16:69:E7:04:60:48:88
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/ijMUJ_dLCeztUIzLRxZp5wRgSIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.158.57.0/24
85.158.60.0/22
85.237.196.0/24
85.237.204.0/24
85.237.214.0-85.237.216.255
185.93.34.0/23
185.100.212.0/22
185.139.25.0-185.139.27.255
185.235.32.0/24
193.109.194.0/24
193.109.198.0/24
Signature Algorithm: sha256WithRSAEncryption
80:76:09:8a:c8:76:7c:7b:14:5e:fe:f1:8f:f1:87:5f:3e:65:
1b:38:d8:84:a1:cb:d4:70:67:0b:53:83:f9:b0:39:fb:64:d6:
82:7a:5e:16:da:d5:6f:11:21:0d:b5:50:82:96:70:92:51:aa:
40:9c:75:ca:fb:3d:ed:5d:ef:3f:81:41:34:8b:b9:07:ec:d9:
2f:1f:87:41:72:8a:d8:2b:64:80:6e:2a:fc:6a:55:83:e5:bc:
f3:ca:d3:64:1b:3b:66:8f:c0:2f:b8:6d:15:3f:0a:5a:df:4d:
3b:96:de:95:99:73:0d:e5:a7:cf:f8:8d:de:32:44:36:db:71:
83:9b:4d:58:74:27:f0:63:bd:17:35:e5:dc:83:07:1f:a9:b9:
d7:9f:49:86:c7:fd:5a:0b:dd:4a:e7:48:c1:54:b5:73:20:94:
88:ac:cc:ff:65:93:59:5f:30:98:3b:79:c2:85:8b:a6:44:fc:
e5:cf:b6:43:0f:61:49:7f:ef:ca:10:85:94:eb:e5:9c:4d:93:
95:6e:16:7f:7b:59:a8:a9:87:0a:c8:53:74:b0:25:d7:e8:14:
3e:29:da:79:95:49:f7:f1:72:66:25:3a:95:8e:f4:a9:08:5a:
79:0f:4a:92:fe:c3:8e:a4:e3:84:be:6f:b5:cd:66:f5:5a:47:
d3:78:0c:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:43:31 2025 by rpki-client