Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/itxWTsSVhxNBXqQvzet8j_yb95o.roa
File: itxWTsSVhxNBXqQvzet8j_yb95o.roa (raw, json)
Hash identifier: srobby1WvbV4ZFcpe97ikLr16dTGI0USS+wb3n42OcE=
Subject key identifier: 8A:DC:56:4E:C4:95:87:13:41:5E:A4:2F:CD:EB:7C:8F:FC:9B:F7:9A
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 018B393F87DA61112C62782F53D56CE81A52
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/itxWTsSVhxNBXqQvzet8j_yb95o.roa
Signing time: Mon 16 Oct 2023 16:09:06 +0000
ROA not before: Mon 16 Oct 2023 16:09:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 193.109.194.0/24 maxlen: 24
85.237.196.0/24 maxlen: 24
193.109.198.0/24 maxlen: 24
85.237.204.0/24 maxlen: 24
85.237.215.0/24 maxlen: 24
85.237.214.0/24 maxlen: 24
85.237.216.0/24 maxlen: 24
185.139.25.0/24 maxlen: 24
185.139.26.0/24 maxlen: 24
185.139.27.0/24 maxlen: 24
185.235.32.0/24 maxlen: 24
85.158.58.0/24 maxlen: 24
85.158.57.0/24 maxlen: 24
85.158.61.0/24 maxlen: 24
85.158.63.0/24 maxlen: 24
85.158.62.0/24 maxlen: 24
85.158.60.0/24 maxlen: 24
185.93.34.0/24 maxlen: 24
185.93.35.0/24 maxlen: 24
185.100.212.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:39:3f:87:da:61:11:2c:62:78:2f:53:d5:6c:e8:1a:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Oct 16 16:09:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8adc564ec4958713415ea42fcdeb7c8ffc9bf79a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:6c:5e:a2:03:b8:91:a0:5b:41:4f:a0:43:d9:
26:6d:c7:2e:9e:20:5b:c3:be:b1:f4:0b:53:7c:32:
5e:72:61:1e:e4:aa:46:d4:fc:e1:4b:2b:ae:3f:84:
57:f1:80:8d:70:20:a7:d3:51:4e:a1:82:51:8f:a7:
00:49:b4:c8:f8:f2:aa:98:af:3a:c5:09:06:69:b4:
ee:1c:65:7a:e8:66:aa:78:76:a2:f7:73:dc:70:d9:
ba:49:b1:39:92:a6:e6:25:64:04:a9:6d:19:ca:bb:
90:8b:50:e9:53:9b:a1:18:7d:af:78:7b:eb:62:62:
27:61:23:6d:56:5d:a1:eb:c7:54:85:86:82:38:99:
b3:3d:c2:d1:26:03:32:27:ab:c0:21:df:ee:71:05:
77:0a:fb:80:49:cf:92:a7:f9:1d:69:9e:1c:e0:7d:
80:d2:df:65:90:59:71:9e:eb:1a:35:f6:0b:26:79:
85:31:35:b8:99:c2:ff:1f:90:f9:d2:36:42:9a:ac:
a9:c5:c7:a4:9e:03:c1:76:ff:4f:6d:9e:1d:1f:43:
23:ef:6a:77:1f:e2:c0:41:63:06:71:b2:50:26:5a:
45:cf:67:a2:9d:c3:4b:27:2c:4c:21:6c:a8:76:ec:
1c:51:74:52:96:30:ab:8b:63:bf:57:2c:93:99:84:
63:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:DC:56:4E:C4:95:87:13:41:5E:A4:2F:CD:EB:7C:8F:FC:9B:F7:9A
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/itxWTsSVhxNBXqQvzet8j_yb95o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.158.57.0-85.158.58.255
85.158.60.0/22
85.237.196.0/24
85.237.204.0/24
85.237.214.0-85.237.216.255
185.93.34.0/23
185.100.212.0/22
185.139.25.0-185.139.27.255
185.235.32.0/24
193.109.194.0/24
193.109.198.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:19:5e:f4:5a:71:31:18:cf:31:62:ca:ae:66:81:b5:b6:15:
7d:6f:31:84:e1:a9:ad:95:33:52:88:44:98:b2:11:07:23:01:
9e:0a:4c:43:dc:7a:53:5d:c1:7d:d9:2b:4b:d7:cb:03:9f:ed:
77:f9:30:4d:76:37:f0:ba:56:3d:38:d4:10:d6:de:9a:db:db:
af:3f:34:f7:06:7c:1a:7a:2c:8a:c5:68:b7:c4:aa:ba:dd:2d:
3d:6b:47:65:1a:7f:d0:8f:f4:33:8f:07:32:07:07:cf:98:7d:
26:ed:de:c5:e3:55:b8:2d:13:b4:70:e9:26:e6:d3:f0:f1:eb:
db:b5:49:ee:7b:d2:b4:0b:87:aa:c3:73:18:f0:34:7e:6c:06:
13:ee:7c:cc:3d:69:f6:22:67:d7:e4:47:60:e5:8a:af:de:9e:
44:af:72:1c:bf:ea:a0:0a:db:dd:45:18:86:61:a9:07:03:6f:
37:c9:49:29:76:97:db:9c:d9:e3:8c:66:40:8d:61:6b:16:2f:
b7:4c:bc:e2:d9:07:2a:48:91:82:c6:1a:70:e5:96:c0:fb:50:
0c:82:e2:bf:18:cf:23:4e:53:98:f4:c0:33:ed:00:6a:5c:24:
f2:e2:60:f5:2d:3c:e1:7c:22:12:41:68:83:c3:89:9f:77:87:
ad:00:2f:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:09 2025 by rpki-client