Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/3c9e24-7e5a-48b6-b75f-d1b36841dee1/1/wpiIhF99PgOJXsAb6NWknecmFn4.roa
File: wpiIhF99PgOJXsAb6NWknecmFn4.roa (raw, json)
Hash identifier: AZNOZF8wcb9xhNCq+Y6NjAOIKL3/0HXbu4Ppl2VFSd4=
Subject key identifier: C2:98:88:84:5F:7D:3E:03:89:5E:C0:1B:E8:D5:A4:9D:E7:26:16:7E
Certificate issuer: /CN=d162caa6a984f0885bfe8a7e5e091f932377442b
Certificate serial: 018CC726C10E443A4B0438F5D2F852AE68E0
Authority key identifier: D1:62:CA:A6:A9:84:F0:88:5B:FE:8A:7E:5E:09:1F:93:23:77:44:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0WLKpqmE8Ihb_op-XgkfkyN3RCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/3c9e24-7e5a-48b6-b75f-d1b36841dee1/1/wpiIhF99PgOJXsAb6NWknecmFn4.roa
Signing time: Mon 01 Jan 2024 22:30:54 +0000
ROA not before: Mon 01 Jan 2024 22:30:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212346
IP address blocks: 185.217.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:c1:0e:44:3a:4b:04:38:f5:d2:f8:52:ae:68:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d162caa6a984f0885bfe8a7e5e091f932377442b
Validity
Not Before: Jan 1 22:30:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c29888845f7d3e03895ec01be8d5a49de726167e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:dd:1c:c6:f3:1e:9b:7d:0b:c5:82:28:72:82:
5e:a0:c8:e7:ca:c5:ef:87:be:ed:a8:cd:b9:6e:1a:
86:5c:8c:86:37:39:b1:e0:e6:3b:89:69:6f:a6:e5:
e1:f7:33:7a:ab:bb:85:55:14:25:63:06:5b:52:87:
4a:d8:99:f3:85:9b:39:8d:c5:af:67:79:3e:b0:97:
95:1b:c2:38:4f:ae:0b:2a:8a:09:be:37:ab:fc:d4:
3c:52:80:e2:ed:81:a4:2f:c4:02:80:c6:59:5a:50:
8b:ab:08:7c:f0:80:6a:5e:d5:7c:a5:83:5d:38:c4:
b2:c8:fc:28:cf:fb:be:c9:50:8f:c9:0b:91:b3:82:
10:34:da:68:5d:fc:2c:e9:31:a5:01:e1:ac:43:32:
36:44:51:53:ce:44:59:1b:b4:b4:ee:0c:53:85:47:
7b:b9:81:1a:a2:55:e5:c5:43:d0:90:63:b1:a5:e3:
27:ee:66:c2:e7:18:a7:ed:66:ec:fd:1c:2f:aa:c5:
ed:b3:3e:85:c0:53:8a:bd:a6:d8:f0:5b:6b:9b:e8:
c5:9c:f6:0e:45:e3:a5:cf:a3:33:03:48:e9:a5:a5:
dd:3b:5d:f5:11:1c:83:53:26:ae:9b:ce:07:e2:bc:
de:13:fc:ad:ee:87:dd:14:86:95:2f:a0:e4:2b:c8:
87:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:98:88:84:5F:7D:3E:03:89:5E:C0:1B:E8:D5:A4:9D:E7:26:16:7E
X509v3 Authority Key Identifier:
keyid:D1:62:CA:A6:A9:84:F0:88:5B:FE:8A:7E:5E:09:1F:93:23:77:44:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0WLKpqmE8Ihb_op-XgkfkyN3RCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/3c9e24-7e5a-48b6-b75f-d1b36841dee1/1/wpiIhF99PgOJXsAb6NWknecmFn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/3c9e24-7e5a-48b6-b75f-d1b36841dee1/1/0WLKpqmE8Ihb_op-XgkfkyN3RCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.36.0/24
Signature Algorithm: sha256WithRSAEncryption
49:38:50:2e:03:ea:f2:11:e0:a4:02:24:75:c3:b8:da:a0:dd:
f1:fb:2c:d3:88:24:5c:d1:33:2a:75:e2:93:09:d1:a8:62:62:
47:dc:32:95:b3:57:df:8b:2d:24:46:f8:f8:87:b2:67:06:f3:
79:7a:ce:15:52:b5:c1:fa:64:89:b6:9a:82:a9:30:dc:0b:c9:
b6:73:fc:0b:79:09:33:e8:28:17:fa:3c:b3:d9:7d:99:c2:32:
56:93:ee:27:5d:64:77:6a:b1:ce:50:75:04:ce:59:f8:de:af:
9c:62:03:9b:eb:79:03:f7:f4:bc:58:7c:31:b7:7c:05:4c:58:
27:ca:db:9b:67:50:c7:29:b9:44:c7:54:1f:1b:c5:de:dd:05:
6f:ee:2f:55:d0:90:8b:e2:b7:d6:b1:99:c3:4e:da:01:4a:a3:
12:fe:e0:9f:95:11:e0:c7:a6:2c:e4:9e:d4:10:d3:84:9c:09:
dc:77:f0:df:10:39:a3:c0:46:39:25:ac:c6:b8:6c:9e:88:5d:
46:af:53:60:77:8e:2a:88:41:6e:d9:7c:ae:e3:e2:3a:59:60:
f3:10:6b:78:c4:6f:26:e7:e8:02:b9:7a:6d:e2:5c:cc:49:7a:
35:cd:80:e2:ab:00:3f:8f:63:0f:f3:ed:bf:ab:03:99:f7:83:
f4:65:69:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:38:47 2025 by rpki-client