Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/nSdwgI0dPvS2ZSqUTMBAj_vZ1Kw.roa
File: nSdwgI0dPvS2ZSqUTMBAj_vZ1Kw.roa (raw, json)
Hash identifier: Sn4MaPQhlF3YAaWBHQTDILv8N+s4V7L/iGJ6HKNt6Y4=
Subject key identifier: 9D:27:70:80:8D:1D:3E:F4:B6:65:2A:94:4C:C0:40:8F:FB:D9:D4:AC
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 018B192B15C7F4ED24FFEB5664284D7C37A7
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/nSdwgI0dPvS2ZSqUTMBAj_vZ1Kw.roa
Signing time: Tue 10 Oct 2023 10:38:55 +0000
ROA not before: Tue 10 Oct 2023 10:38:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 193.109.194.0/24 maxlen: 24
85.237.196.0/24 maxlen: 24
193.109.198.0/24 maxlen: 24
85.237.204.0/24 maxlen: 24
85.237.208.0/24 maxlen: 24
85.237.215.0/24 maxlen: 24
85.237.214.0/24 maxlen: 24
85.237.216.0/24 maxlen: 24
185.139.25.0/24 maxlen: 24
185.139.27.0/24 maxlen: 24
185.235.32.0/24 maxlen: 24
85.158.58.0/24 maxlen: 24
85.158.57.0/24 maxlen: 24
85.158.61.0/24 maxlen: 24
85.158.63.0/24 maxlen: 24
85.158.62.0/24 maxlen: 24
85.158.60.0/24 maxlen: 24
185.93.34.0/24 maxlen: 24
185.93.35.0/24 maxlen: 24
185.100.212.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:19:2b:15:c7:f4:ed:24:ff:eb:56:64:28:4d:7c:37:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Oct 10 10:38:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d2770808d1d3ef4b6652a944cc0408ffbd9d4ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:c5:36:8f:99:4e:c9:7e:c7:e9:38:92:bf:7d:
ce:2d:80:c2:dc:13:9b:b5:f1:53:3e:85:4b:bd:f6:
9a:7f:e8:33:6c:87:0c:39:c4:93:84:f4:ad:0b:18:
b5:a0:c1:a1:3f:83:8b:2a:55:68:47:76:17:6d:cb:
b1:4a:bf:13:b5:fd:92:b1:14:8f:df:c2:63:4f:f0:
7f:9c:a4:16:be:ea:94:78:a2:b8:99:c5:5e:03:cc:
be:c4:54:fb:57:bd:3f:3d:37:df:93:cd:7a:92:e4:
11:ed:8f:1c:c0:c7:28:d6:b3:33:43:53:49:d4:19:
f9:f2:76:3a:6f:dd:73:8d:d6:2c:a0:1e:9a:a9:d0:
f8:2e:53:18:3b:8b:5c:1a:6f:f2:3a:dc:6b:e4:45:
60:5e:c3:a9:04:b2:49:25:7a:ef:fe:43:a5:b7:41:
d4:cf:df:08:dc:dc:e6:fb:09:c6:8d:a9:04:35:a2:
ed:58:31:a4:f6:f7:05:3d:ac:f5:2f:7c:e4:e4:90:
a7:a6:b0:40:a7:61:31:bc:c5:2d:34:43:61:2b:b3:
c1:fc:c8:24:9e:db:07:d2:a2:5e:57:3b:08:20:9f:
85:1d:5a:1b:71:bf:e9:c2:03:6e:a7:a3:13:56:ff:
65:fd:d8:b3:be:1f:19:ec:9e:8f:7a:20:64:9b:f7:
50:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:27:70:80:8D:1D:3E:F4:B6:65:2A:94:4C:C0:40:8F:FB:D9:D4:AC
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/nSdwgI0dPvS2ZSqUTMBAj_vZ1Kw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.158.57.0-85.158.58.255
85.158.60.0/22
85.237.196.0/24
85.237.204.0/24
85.237.208.0/24
85.237.214.0-85.237.216.255
185.93.34.0/23
185.100.212.0/22
185.139.25.0/24
185.139.27.0/24
185.235.32.0/24
193.109.194.0/24
193.109.198.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:23:b8:44:98:e2:98:eb:fe:34:cd:e4:df:e4:0a:0e:3a:c1:
1f:b7:f5:39:8d:50:b0:75:01:ca:68:f4:2f:5b:6d:e5:a2:1b:
aa:26:42:a1:49:0d:3f:e6:5a:dd:8e:4f:a3:84:32:1b:11:7a:
30:21:17:b5:3b:f7:25:18:fc:f8:b8:22:52:a5:83:66:34:0e:
9e:fd:4e:d6:b2:4d:97:c8:8c:ae:8d:88:70:b1:8f:2b:aa:58:
53:8c:0e:99:3e:bc:e3:48:b8:93:87:ee:b3:cb:7e:fc:cd:54:
a7:93:48:59:1b:cf:3e:c0:0a:87:17:7b:1e:87:ed:81:e7:29:
51:45:d9:a4:97:e3:02:e6:db:5c:f3:14:db:21:01:75:34:c2:
f0:1c:0e:84:dc:92:d5:f7:e7:d1:68:ac:d2:74:e4:aa:50:41:
7e:47:d1:fd:a7:3a:d3:88:0a:9a:8c:6c:15:fc:40:81:24:e1:
13:71:b0:48:84:8b:ae:c4:7e:1e:0f:55:f4:59:a2:0b:90:7f:
9a:ab:bb:ea:b2:fc:50:aa:94:4f:63:ab:e6:78:a5:b4:d3:72:
62:b4:f4:dd:67:31:38:3a:98:27:f0:a3:74:61:2f:8a:66:58:
d9:49:24:8c:75:21:2f:07:f3:d7:ec:c1:02:56:e0:84:58:4f:
bb:09:ce:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:14 2024 by rpki-client on console-ams.rpki-client.org