Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/t6PqgYVP4yDcPhRluOAX6hBW0q4.roa
File: t6PqgYVP4yDcPhRluOAX6hBW0q4.roa (raw, json)
Hash identifier: gF68e9sdaDdiOhQEM+EHHYmO9Wn+zjmd25RlEGnCpPw=
Subject key identifier: B7:A3:EA:81:85:4F:E3:20:DC:3E:14:65:B8:E0:17:EA:10:56:D2:AE
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 032CAB22
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/t6PqgYVP4yDcPhRluOAX6hBW0q4.roa
Signing time: Sat 01 Jan 2022 11:04:30 +0000
ROA not before: Sat 01 Jan 2022 11:04:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397630
IP address blocks: 185.100.215.0/24 maxlen: 24
185.139.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53259042 (0x32cab22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Jan 1 11:04:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7a3ea81854fe320dc3e1465b8e017ea1056d2ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:88:32:98:59:0d:04:20:17:26:dd:cb:f4:e8:
ea:21:ef:b4:ca:f7:33:5f:53:3c:63:68:6c:0e:17:
15:ca:5a:3b:a7:e4:6a:0b:e4:07:20:74:d2:c6:89:
89:36:33:5e:a9:03:ba:d6:a9:eb:33:31:a5:3d:4b:
6d:c6:84:48:f0:0e:24:e1:7e:49:6f:28:10:37:26:
2f:56:c7:fb:af:be:02:17:17:07:f0:f3:02:68:74:
8d:95:60:f6:11:ba:19:bb:91:53:e4:9c:fb:0d:dc:
22:e3:79:bf:be:8c:23:fa:01:80:0d:d5:89:5b:0d:
55:dd:57:d7:a7:3d:5b:b7:22:6b:3b:28:8d:b1:60:
ad:5b:48:04:cd:f6:44:47:cb:82:3c:eb:8f:e1:a3:
c6:9a:47:41:83:f0:5a:3b:a7:55:de:a8:5e:79:bc:
bc:df:97:08:40:55:ad:f0:77:77:fa:64:9c:3d:38:
b3:80:58:12:4b:c8:92:f1:e9:82:51:2b:a1:89:63:
44:5f:eb:a6:12:a1:6a:21:36:42:11:67:dc:34:19:
da:53:df:cd:85:6c:67:bc:fb:cc:a5:23:bc:44:43:
1e:70:be:ad:09:47:69:82:d2:9a:9f:39:ea:ae:48:
d5:90:2c:26:ff:1d:15:bd:d7:0b:ce:4a:c6:62:dc:
29:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:A3:EA:81:85:4F:E3:20:DC:3E:14:65:B8:E0:17:EA:10:56:D2:AE
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/t6PqgYVP4yDcPhRluOAX6hBW0q4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.215.0/24
185.139.27.0/24
Signature Algorithm: sha256WithRSAEncryption
87:cc:e9:18:cb:6d:14:a8:16:8e:a9:23:d3:26:72:21:e9:01:
ad:82:ce:ea:76:2e:00:e0:d2:2c:fe:18:cd:30:a9:d3:28:c0:
77:6e:ab:25:70:00:33:60:4b:2a:03:d3:ed:ed:e3:50:72:4b:
7c:b9:05:4e:db:be:2b:51:9f:17:44:b4:22:0d:d2:b8:06:28:
2f:20:84:4b:92:be:82:a2:e6:12:b4:07:a6:7a:27:62:ba:24:
30:51:53:3e:01:14:e8:45:15:f6:87:b7:cc:cd:65:96:3b:43:
0c:f2:ba:a5:4e:66:1c:f8:82:7c:d5:55:11:4b:9f:65:94:48:
15:a5:24:dc:23:79:0a:53:de:c2:65:6e:67:0c:90:f1:48:74:
81:db:c3:c5:97:45:16:e1:c2:ca:13:c2:31:d3:61:a5:10:bf:
ee:62:82:7a:ec:e4:97:f9:e6:e7:1d:33:4b:ec:ab:28:9e:c0:
82:f8:66:50:ba:cf:27:19:2a:be:ba:6d:8a:ad:81:4f:a1:bd:
5b:2b:ae:ff:36:dd:58:29:54:f4:4a:ef:c9:91:3a:d1:d2:77:
cf:50:9a:27:b5:87:3e:81:77:1c:43:e1:9c:7f:f9:8e:d6:94:
c5:99:d8:37:e6:55:d7:3f:02:34:92:ed:66:9a:cc:ee:a9:34:
de:06:c6:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:44 2025 by rpki-client