Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/oo5dtmXqMRpY4K4Ip6cC3qLmSjc.roa
File: oo5dtmXqMRpY4K4Ip6cC3qLmSjc.roa (raw, json)
Hash identifier: OJzZ/MWNKkR6/TLIDgK/RG2HATZWu3m/EUQ5XOM5MiY=
Subject key identifier: A2:8E:5D:B6:65:EA:31:1A:58:E0:AE:08:A7:A7:02:DE:A2:E6:4A:37
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 0188BDCC0388038B9F82F467928E90517712
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/oo5dtmXqMRpY4K4Ip6cC3qLmSjc.roa
Signing time: Thu 15 Jun 2023 06:44:04 +0000
ROA not before: Thu 15 Jun 2023 06:44:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 85.237.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:bd:cc:03:88:03:8b:9f:82:f4:67:92:8e:90:51:77:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Jun 15 06:44:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a28e5db665ea311a58e0ae08a7a702dea2e64a37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e8:78:87:35:df:8c:6d:f9:f8:f1:e7:24:17:
bf:66:3e:ac:b4:a7:cd:3f:b9:a6:24:43:43:5f:8f:
37:7b:ec:5a:af:eb:20:ec:31:f6:36:ad:a5:6a:27:
67:61:a9:1b:9e:1d:e2:33:b9:5f:c1:cb:e1:92:26:
57:1f:88:00:ad:d9:ee:f6:30:74:68:54:a7:4d:b4:
01:95:9b:36:19:89:f8:41:a3:69:95:74:99:6d:f9:
18:53:0b:b8:2b:b8:c2:d0:b6:8c:e7:58:90:a6:db:
0b:a9:f6:d1:5b:f5:0e:e6:07:95:fd:ee:4d:90:02:
4b:84:23:96:80:8b:eb:bc:72:b8:48:28:91:e1:66:
c8:f2:99:e0:9d:9b:0e:1e:a2:53:8d:20:42:da:33:
50:fc:4d:55:50:3d:a1:1d:86:e6:f9:f9:7f:6f:58:
b0:b8:7c:d4:4c:57:71:5d:63:ed:98:0c:c9:41:2a:
6c:22:47:ae:8a:51:fd:06:32:f4:87:88:50:72:12:
59:9c:f9:b3:64:5c:ef:f4:47:e2:70:a2:34:8b:1f:
83:db:5e:f7:17:bd:31:b5:ea:94:34:a4:3b:93:df:
1f:22:9c:e3:41:84:4b:f8:b9:af:9c:1b:bf:6d:a2:
72:db:6e:26:1d:79:79:b7:cd:1f:ff:ab:32:7a:56:
98:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:8E:5D:B6:65:EA:31:1A:58:E0:AE:08:A7:A7:02:DE:A2:E6:4A:37
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/oo5dtmXqMRpY4K4Ip6cC3qLmSjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.222.0/24
Signature Algorithm: sha256WithRSAEncryption
76:bd:8f:ae:23:c6:70:dc:ff:d2:25:b4:7f:7e:7d:76:4e:fb:
84:15:d5:66:c2:94:c5:e5:f4:a3:00:01:94:e4:76:e0:fa:25:
3d:05:5f:22:85:02:0a:02:42:ed:ee:a7:72:d0:cb:eb:cd:25:
6d:01:f0:c1:73:76:d8:e5:29:5e:78:a0:fb:ac:20:95:5e:73:
43:f3:98:19:ba:a8:e7:cf:74:9b:58:cf:06:22:9f:55:bd:47:
d8:52:c5:a9:cb:f5:49:b3:03:0e:e8:69:08:7f:98:65:9f:2f:
22:3a:65:9f:87:4e:a9:ff:de:88:73:6f:9f:ca:cb:68:0c:09:
67:00:4f:ee:6e:76:76:f0:f5:77:ee:93:cb:6d:f6:40:26:74:
a9:18:60:e9:8b:62:3c:c0:b0:e9:4c:13:f9:c3:36:ba:35:87:
7e:ae:3b:8d:c0:fe:c9:29:bf:8a:9e:70:b8:aa:a9:ca:83:78:
f8:67:8e:e3:cf:c2:31:08:fc:81:3f:28:c8:6f:88:4b:a8:2b:
e3:9e:c0:74:f7:74:aa:67:1d:71:37:3a:d7:60:ac:b6:e5:24:
2d:a2:7b:7f:86:18:fe:db:6b:44:25:c2:8d:2d:9b:a1:48:fe:
c0:09:7a:c0:4c:31:89:4d:66:1c:f7:c1:92:84:59:eb:e5:51:
0d:be:72:fe
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYi9zAOIA4ufgvRnko6QUXcSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4YmY3ZjNhZDUzZjI5YTNjNDNmMGFkODIwMTdhMDUzNjhj
MDEwNGEwHhcNMjMwNjE1MDY0NDA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMjhlNWRiNjY1ZWEzMTFhNThlMGFlMDhhN2E3MDJkZWEyZTY0YTM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmuh4hzXfjG35+PHnJBe/Zj6stKfN
P7mmJENDX483e+xar+sg7DH2Nq2laidnYakbnh3iM7lfwcvhkiZXH4gArdnu9jB0
aFSnTbQBlZs2GYn4QaNplXSZbfkYUwu4K7jC0LaM51iQptsLqfbRW/UO5geV/e5N
kAJLhCOWgIvrvHK4SCiR4WbI8pngnZsOHqJTjSBC2jNQ/E1VUD2hHYbm+fl/b1iw
uHzUTFdxXWPtmAzJQSpsIkeuilH9BjL0h4hQchJZnPmzZFzv9EficKI0ix+D2173
F70xteqUNKQ7k98fIpzjQYRL+LmvnBu/baJy224mHXl5t80f/6syelaYCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKKOXbZl6jEaWOCuCKenAt6i5ko3MB8GA1UdIwQY
MBaAFFi/fzrVPymjxD8K2CAXoFNowBBKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0w5X090VV9LYVBFUHdyWUlCZWdVMmpBRUVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8zNjRiOTQtNmNhNC00ZjlhLTg4YTUt
OGIzZDUyN2M0OWU0LzEvb281ZHRtWHFNUnBZNEs0SXA2Y0MzcUxtU2pjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi8zNjRiOTQtNmNhNC00ZjlhLTg4YTUtOGIzZDUyN2M0OWU0
LzEvV0w5X090VV9LYVBFUHdyWUlCZWdVMmpBRUVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVe3eMA0G
CSqGSIb3DQEBCwUAA4IBAQB2vY+uI8Zw3P/SJbR/fn12TvuEFdVmwpTF5fSjAAGU
5Hbg+iU9BV8ihQIKAkLt7qdy0MvrzSVtAfDBc3bY5SleeKD7rCCVXnND85gZuqjn
z3SbWM8GIp9VvUfYUsWpy/VJswMO6GkIf5hlny8iOmWfh06p/96Ic2+fystoDAln
AE/ubnZ28PV37pPLbfZAJnSpGGDpi2I8wLDpTBP5wza6NYd+rjuNwP7JKb+KnnC4
qqnKg3j4Z47jz8IxCPyBPyjIb4hLqCvjnsB093SqZx1xNzrXYKy25SQtont/hhj+
22tEJcKNLZuhSP7ACXrATDGJTWYc98GShFnr5VENvnL+
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:14 2024 by rpki-client on console-ams.rpki-client.org