Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/acd613-855e-4bde-82a8-7a019de9d271/1/wJK1Dc-5-1Pz-sOG3yC683fzesE.roa
File: wJK1Dc-5-1Pz-sOG3yC683fzesE.roa (raw, json)
Hash identifier: LMmIcUoY7WHFr8D7gw9Z5SxFkTQyLkAcJc9XKwm5Dmw=
Subject key identifier: C0:92:B5:0D:CF:B9:FB:53:F3:FA:C3:86:DF:20:BA:F3:77:F3:7A:C1
Certificate issuer: /CN=053fc6b5d253ef043f67d8aed30c6406e9e63e22
Certificate serial: 01856FF02BF6E87FEE70EFC398858FCE2B97
Authority key identifier: 05:3F:C6:B5:D2:53:EF:04:3F:67:D8:AE:D3:0C:64:06:E9:E6:3E:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BT_GtdJT7wQ_Z9iu0wxkBunmPiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/acd613-855e-4bde-82a8-7a019de9d271/1/wJK1Dc-5-1Pz-sOG3yC683fzesE.roa
Signing time: Mon 02 Jan 2023 00:44:48 +0000
ROA not before: Mon 02 Jan 2023 00:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48944
IP address blocks: 185.214.36.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f0:2b:f6:e8:7f:ee:70:ef:c3:98:85:8f:ce:2b:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=053fc6b5d253ef043f67d8aed30c6406e9e63e22
Validity
Not Before: Jan 2 00:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c092b50dcfb9fb53f3fac386df20baf377f37ac1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:df:0f:ab:83:fa:05:92:79:c2:1b:03:11:1c:
21:5a:b8:bd:88:4d:3c:4d:d6:3d:ef:99:8f:f9:1b:
8d:32:0a:31:28:98:62:6d:d4:1b:95:7d:14:65:4e:
20:f1:0a:1d:f5:7e:53:df:18:08:4e:44:57:74:dc:
4f:6e:2e:63:bc:b4:bf:af:3e:24:07:58:25:f9:af:
b4:56:3f:fe:ca:3a:c6:29:ff:7e:bc:1f:39:70:ff:
e4:bb:d9:1b:46:8c:fc:b4:dd:96:e9:8c:b6:c8:d7:
bf:85:03:5e:78:66:3a:af:8f:cd:3d:b9:ae:f7:b6:
c4:49:d7:29:99:23:75:01:41:8c:b6:d1:33:b1:54:
20:8b:b1:d1:3a:9a:c1:c4:91:63:9e:23:66:70:71:
05:c7:19:fb:2d:28:b7:a8:c4:d0:13:ef:61:0d:fe:
2b:9f:08:79:74:0f:40:c1:50:e5:82:a4:33:52:35:
3c:71:75:9c:f9:38:d0:ac:3e:06:d0:85:53:b1:f3:
8d:ad:2a:3d:20:24:72:c6:29:e1:5f:a6:87:86:15:
e5:79:99:98:1e:1d:ea:30:b8:ad:e6:b1:d9:08:2b:
20:3c:f1:50:62:98:8f:27:2b:5a:0d:ae:49:55:a6:
eb:e9:d5:7d:e7:38:68:3a:13:d5:14:df:aa:7b:9e:
7b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:92:B5:0D:CF:B9:FB:53:F3:FA:C3:86:DF:20:BA:F3:77:F3:7A:C1
X509v3 Authority Key Identifier:
keyid:05:3F:C6:B5:D2:53:EF:04:3F:67:D8:AE:D3:0C:64:06:E9:E6:3E:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BT_GtdJT7wQ_Z9iu0wxkBunmPiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/acd613-855e-4bde-82a8-7a019de9d271/1/wJK1Dc-5-1Pz-sOG3yC683fzesE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/acd613-855e-4bde-82a8-7a019de9d271/1/BT_GtdJT7wQ_Z9iu0wxkBunmPiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.36.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:11:d4:e6:15:e6:cc:71:10:db:9b:55:a4:b1:2d:cc:29:d5:
20:8a:b6:0d:dc:42:bc:ee:1f:a5:50:e1:36:7d:7c:9a:72:23:
9f:d7:98:ab:2d:c1:73:52:30:78:3f:83:44:8d:7d:2d:c0:eb:
3b:1d:3b:0a:6a:99:4a:62:ac:89:a5:81:a3:51:d0:e9:30:35:
ee:a9:3e:df:8a:86:90:b0:4b:f2:ec:c6:70:70:d5:a4:20:db:
53:23:1b:d5:2c:d8:85:2d:96:8c:86:f6:68:53:57:05:d1:0f:
56:6c:91:9c:60:9b:a8:31:ad:f2:27:bd:ce:c2:25:ea:ab:34:
23:f7:12:fe:a2:64:bd:54:26:3b:fc:73:5c:a2:a0:1a:cf:6c:
39:af:31:af:a8:1a:49:aa:d8:53:b8:27:8f:ca:99:39:bb:ee:
0b:04:be:05:10:42:1c:43:9c:73:b6:c0:d3:35:77:2a:21:b4:
19:68:8d:55:64:ec:fc:2c:b7:5f:53:8a:61:cf:bb:7b:0d:bd:
2d:11:cd:12:f0:1c:e0:fe:65:74:dd:38:7f:07:3a:cd:ba:d8:
bf:26:5f:d4:0c:15:9a:48:04:02:15:ca:45:41:4f:13:6e:b0:
43:d5:ac:25:f5:39:4c:23:c4:8b:41:6b:45:d5:ae:80:a6:9c:
60:78:58:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:44 2025 by rpki-client