Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/dc8e13-6dd3-44f9-90f6-7cd1f652d925/1/wOZgvWjTDynQvaSMhx2ZAH9FOoY.roa
File: wOZgvWjTDynQvaSMhx2ZAH9FOoY.roa (raw, json)
Hash identifier: JgC1wB5VG2BWoV+ecogC/50IUYM7q7i/M6zbCOEHlmM=
Subject key identifier: C0:E6:60:BD:68:D3:0F:29:D0:BD:A4:8C:87:1D:99:00:7F:45:3A:86
Certificate issuer: /CN=7b5516af4b74a1142bef13c3fd707059e61a6b95
Certificate serial: 018A60370B9CDFA81810B1D33D329346F811
Authority key identifier: 7B:55:16:AF:4B:74:A1:14:2B:EF:13:C3:FD:70:70:59:E6:1A:6B:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1UWr0t0oRQr7xPD_XBwWeYaa5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/dc8e13-6dd3-44f9-90f6-7cd1f652d925/1/wOZgvWjTDynQvaSMhx2ZAH9FOoY.roa
Signing time: Mon 04 Sep 2023 12:42:14 +0000
ROA not before: Mon 04 Sep 2023 12:42:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2856
IP address blocks: 109.205.158.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:60:37:0b:9c:df:a8:18:10:b1:d3:3d:32:93:46:f8:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5516af4b74a1142bef13c3fd707059e61a6b95
Validity
Not Before: Sep 4 12:42:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c0e660bd68d30f29d0bda48c871d99007f453a86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:4a:31:45:a7:c9:44:0a:2a:5c:37:82:84:8b:
b3:25:76:4b:90:e3:8e:56:a7:bd:28:45:00:72:f5:
1b:4c:05:28:dd:13:f2:f7:3d:05:df:d7:3a:d1:7e:
dd:46:de:83:3f:dd:91:3b:1a:96:ab:39:5f:8f:ec:
51:d0:4d:cc:7d:02:81:65:51:dd:56:fe:23:f1:6b:
68:78:a7:3d:f3:68:e3:09:a5:15:8d:6d:39:73:6f:
90:73:5e:56:83:85:ad:95:c0:c3:8e:e7:fb:09:59:
39:ea:39:cf:32:46:f3:de:ae:cf:24:01:b0:c9:66:
48:0e:5d:d6:54:f8:63:7e:52:ed:c5:34:c2:18:bf:
4c:2d:99:0b:92:37:05:b5:56:7f:4e:1e:d5:8f:78:
f3:fc:92:a1:aa:e1:fc:1a:68:bf:b0:a0:c1:93:76:
5e:b5:76:ea:93:9f:fb:c7:2d:24:fd:91:f0:34:ae:
f7:46:d7:4d:1c:96:62:70:74:3c:26:5c:88:d3:fa:
94:b6:b2:14:af:f4:8b:63:aa:7e:57:91:9d:50:3c:
0e:87:db:3a:b1:9f:b9:8a:66:4d:e1:e5:c2:c3:ce:
be:ff:97:a2:c9:44:ed:eb:36:e7:59:33:30:c2:fb:
f1:19:2e:f5:01:8b:68:e5:4e:58:35:60:3f:1b:42:
df:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:E6:60:BD:68:D3:0F:29:D0:BD:A4:8C:87:1D:99:00:7F:45:3A:86
X509v3 Authority Key Identifier:
keyid:7B:55:16:AF:4B:74:A1:14:2B:EF:13:C3:FD:70:70:59:E6:1A:6B:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1UWr0t0oRQr7xPD_XBwWeYaa5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/dc8e13-6dd3-44f9-90f6-7cd1f652d925/1/wOZgvWjTDynQvaSMhx2ZAH9FOoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/dc8e13-6dd3-44f9-90f6-7cd1f652d925/1/e1UWr0t0oRQr7xPD_XBwWeYaa5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.158.0/24
Signature Algorithm: sha256WithRSAEncryption
87:b0:45:d5:80:57:7d:33:cb:c6:0c:97:66:6f:3f:19:3f:21:
3e:45:88:05:0d:41:cf:56:14:93:36:d5:2f:fd:f6:ab:44:33:
f4:29:3f:f2:6f:eb:ba:11:af:43:94:27:d2:24:c6:1f:f6:d5:
45:85:0c:43:a3:e1:51:0e:bb:1d:6d:37:d5:f9:35:92:d7:cd:
0b:c4:cc:1d:81:2c:a3:85:72:52:85:7f:d2:a6:9c:06:a3:6f:
21:d9:c7:98:d2:be:77:0b:23:09:c0:f2:34:91:1a:12:a8:9a:
46:14:6f:64:e3:f8:d2:11:8c:b2:a7:b7:89:cd:4f:b9:64:a3:
cb:d3:ed:a9:fa:7c:75:59:6e:48:d1:2f:e5:e1:47:22:1f:92:
f1:74:6f:59:92:6a:8e:45:b7:dd:74:d2:a4:3e:4a:51:e2:6b:
03:c7:a8:09:bd:d6:32:8c:c8:32:c6:49:95:4a:95:42:e5:11:
1e:4d:e4:ea:b2:3c:34:88:9f:01:26:24:78:13:f9:0e:21:60:
0b:52:17:50:ec:f0:f6:61:b2:90:1f:d7:89:9e:d3:b5:15:a6:
c7:fa:dc:82:57:b8:49:21:9f:b4:cb:77:ff:17:f6:20:32:ac:
68:30:ca:a2:37:c6:9a:96:49:f5:e7:21:c3:98:40:93:8e:de:
5b:ef:06:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:30:37 2025 by rpki-client