Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/WaKPIaeAHyLomENsO0BEHkgUTXg.roa
File: WaKPIaeAHyLomENsO0BEHkgUTXg.roa (raw, json)
Hash identifier: Fg/yELSbcuqh4ZsO4Z1dll5yRgJKuHBSlaJzpiSPD8o=
Subject key identifier: 59:A2:8F:21:A7:80:1F:22:E8:98:43:6C:3B:40:44:1E:48:14:4D:78
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01856ED4F09E72CBAB889A74DF6BA1BD4118
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/WaKPIaeAHyLomENsO0BEHkgUTXg.roa
Signing time: Sun 01 Jan 2023 19:35:27 +0000
ROA not before: Sun 01 Jan 2023 19:35:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58229
IP address blocks: 37.16.85.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:f0:9e:72:cb:ab:88:9a:74:df:6b:a1:bd:41:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Jan 1 19:35:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59a28f21a7801f22e898436c3b40441e48144d78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:aa:5e:71:b3:1a:4d:3c:7d:c6:cf:81:1e:0f:
f5:2a:71:0f:db:ac:12:0a:99:e8:05:02:52:0e:36:
6c:57:57:17:08:f2:77:69:c2:83:9e:c8:d4:08:ac:
97:b9:db:4c:c2:43:b1:43:b0:3c:bd:8d:90:39:b5:
9d:12:64:f6:fc:8b:35:de:f8:84:7f:45:e1:40:16:
37:5d:17:05:2f:ab:ca:7b:dd:52:76:82:20:2a:28:
b9:ce:71:a7:99:ad:4f:ba:e4:dd:2e:f0:64:e5:1a:
06:4e:9a:b9:4a:27:7b:fe:8d:98:5a:b2:df:84:0a:
16:24:07:92:ca:d3:bb:c0:0f:de:77:27:b5:d8:04:
46:19:af:db:5e:47:03:94:b6:f8:4e:70:6e:04:fc:
bd:7c:9d:9c:04:2a:0b:ca:45:8a:2e:f5:e2:ec:20:
91:61:fa:c5:30:98:75:ec:43:61:09:47:26:17:f6:
da:64:44:2e:d6:b4:8f:e3:1b:d5:b1:ab:2f:89:64:
fa:53:f2:5a:43:5d:dc:b8:6c:de:fa:62:c5:b2:c8:
cf:2b:ea:cb:25:da:1a:7d:1a:f0:bb:b5:2d:33:c2:
a8:60:fc:24:1b:c9:49:c2:6e:f6:c7:9b:59:4c:57:
ab:cc:44:57:50:ea:31:cb:46:c1:d6:ec:33:a0:30:
a4:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:A2:8F:21:A7:80:1F:22:E8:98:43:6C:3B:40:44:1E:48:14:4D:78
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/WaKPIaeAHyLomENsO0BEHkgUTXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.16.85.0/24
Signature Algorithm: sha256WithRSAEncryption
01:c0:9f:97:02:70:c7:41:4c:03:85:07:40:5a:a0:43:aa:0a:
91:98:2f:cb:2f:0c:15:c5:0a:10:5e:1b:f9:17:01:2f:be:76:
9a:fe:1c:05:5d:d9:e0:83:b1:b4:92:fb:3a:7a:b1:87:9e:c0:
b9:dc:29:f9:85:2f:94:ce:84:96:7f:d8:ee:2a:62:ed:11:0d:
64:2e:90:e9:29:5a:73:9f:ed:11:39:c1:05:46:24:2a:ec:2a:
6c:85:b6:ae:91:24:d4:3e:37:c5:2d:e5:83:c5:df:d3:77:63:
16:59:e1:96:a8:8b:06:fd:dd:ca:d8:4b:66:76:6a:27:c4:6c:
6c:77:15:29:2f:8d:14:e4:2a:44:bd:8e:0f:f6:ab:07:a1:34:
f1:a4:67:fb:6b:1a:73:95:9c:ca:d6:25:e3:89:c9:34:ed:a0:
42:a7:e2:be:a0:4a:ac:27:1f:2f:d7:f3:a0:5b:e6:37:18:00:
24:df:50:eb:eb:62:d6:56:32:3e:dd:5a:53:54:6b:02:da:06:
03:22:b7:b2:57:85:43:53:00:ff:17:f5:5b:ab:53:51:47:43:
f3:50:23:15:f4:01:f1:c5:13:d9:5c:aa:bc:4d:94:a6:a0:a7:
b0:60:84:c9:80:a7:f2:e7:c3:76:a5:2e:14:2f:59:77:50:2f:
78:20:2d:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:31:27 2025 by rpki-client