Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/WGlVQsXx0UpVX9LDdF2dvpQqtRI.roa
File: WGlVQsXx0UpVX9LDdF2dvpQqtRI.roa (raw, json)
Hash identifier: 9GY0e9b4C3uwiOTEIc70V5WfAGkQohImjnnhM9stqro=
Subject key identifier: 58:69:55:42:C5:F1:D1:4A:55:5F:D2:C3:74:5D:9D:BE:94:2A:B5:12
Certificate issuer: /CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Certificate serial: 018A8951BD3AABC8417070C08E517777FC22
Authority key identifier: 6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/WGlVQsXx0UpVX9LDdF2dvpQqtRI.roa
Signing time: Tue 12 Sep 2023 12:15:50 +0000
ROA not before: Tue 12 Sep 2023 12:15:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5065
IP address blocks: 185.65.61.0/24 maxlen: 24
185.65.60.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:89:51:bd:3a:ab:c8:41:70:70:c0:8e:51:77:77:fc:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Validity
Not Before: Sep 12 12:15:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58695542c5f1d14a555fd2c3745d9dbe942ab512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:2a:2e:58:bc:7a:b7:e7:01:b5:e7:46:1c:e9:
fc:1b:2e:0d:db:b7:0d:25:96:1b:6b:e2:ae:f1:16:
45:6a:26:9b:cf:93:15:1b:cf:71:bb:94:c5:82:4c:
fe:4d:29:3a:86:99:58:0c:67:38:79:cc:3e:9e:d0:
a9:8d:19:8e:c9:84:30:ec:f6:83:66:61:36:2d:3b:
a8:c2:e3:af:bd:5f:1c:9c:c1:b5:fe:a4:a3:d1:13:
34:e7:f1:52:28:27:2c:d4:28:f2:c4:c7:bd:33:b0:
de:4a:63:30:1d:b9:43:5d:27:2f:09:83:d0:60:62:
52:41:ae:7d:b1:98:7b:17:81:8e:e5:fa:7f:5b:87:
3d:70:6a:cc:e0:c7:a7:27:17:1c:64:99:4b:cb:19:
26:54:70:5e:9c:e4:c9:10:52:b6:32:e7:77:7e:8b:
90:2f:4b:d8:cf:a0:81:b1:cc:a6:e7:2f:55:30:d8:
ed:56:b3:65:c5:82:b8:64:26:66:64:3b:21:1d:26:
f1:75:7b:b2:2f:71:01:33:3e:0c:ea:d5:24:64:f8:
66:a5:2e:ae:f5:ce:78:75:2d:91:22:30:cb:7d:be:
be:b2:d6:a7:ff:f8:ce:10:d6:6f:4b:5a:59:0f:13:
d5:28:d0:d0:70:9e:d8:78:b5:d9:87:36:fd:82:0b:
e7:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:69:55:42:C5:F1:D1:4A:55:5F:D2:C3:74:5D:9D:BE:94:2A:B5:12
X509v3 Authority Key Identifier:
keyid:6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/WGlVQsXx0UpVX9LDdF2dvpQqtRI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.60.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:2f:ba:4d:6d:95:05:eb:f7:60:16:60:48:87:0d:11:fc:15:
d7:8c:df:18:f6:40:a6:25:83:17:ce:3e:57:a8:7d:ef:79:e6:
10:31:b9:ff:52:28:9d:4c:d9:c7:c5:4d:a5:2e:1b:9d:00:1d:
10:bc:8d:85:f0:bb:b5:e1:2a:20:f8:56:9c:b2:64:5f:6b:8d:
58:60:0f:bf:12:e7:23:3e:a9:ea:56:02:20:c9:e9:01:76:c5:
b7:76:f2:f5:18:86:62:9b:54:ca:69:21:35:7b:93:3e:5a:8c:
38:ee:18:37:4c:5e:04:56:28:cf:6a:e3:5d:71:62:be:f1:b1:
ac:35:b6:f4:2f:15:3f:85:17:3b:3e:48:0f:2e:90:23:f5:47:
72:19:12:ea:14:a6:87:7c:71:a3:f4:3d:94:89:b8:c4:29:35:
5f:cb:af:34:77:84:2e:6d:87:0b:48:ef:35:76:cb:d2:46:4f:
ff:8b:21:d0:c5:91:2c:85:25:7a:68:29:fd:c3:af:a9:14:50:
b2:c2:02:a0:80:d5:02:f2:fc:55:33:0b:84:b3:6f:2c:66:b3:
e4:31:69:e0:75:1a:b7:44:a4:d0:f8:5a:1a:92:a9:e6:ae:c6:
2f:3a:a0:d0:e7:7e:70:3e:54:f3:c1:a7:ab:6f:36:3f:49:33:
bc:de:31:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:26:06 2025 by rpki-client