Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/5d1d57-fdea-4526-ae64-82a48dfe61bd/1/WNLarwn5cpLDlNKLeXWCZdgLSuM.roa
File: WNLarwn5cpLDlNKLeXWCZdgLSuM.roa (raw, json)
Hash identifier: HzjS8yPvsvfs1KIVq9usEDik6/r1BxjEv0zGDPpToIA=
Subject key identifier: 58:D2:DA:AF:09:F9:72:92:C3:94:D2:8B:79:75:82:65:D8:0B:4A:E3
Certificate issuer: /CN=a1b7fffa0278ed8655ebe6482a876dfc7c9de1bc
Certificate serial: 018718E1D8FDE65DF47718CE134047B65606
Authority key identifier: A1:B7:FF:FA:02:78:ED:86:55:EB:E6:48:2A:87:6D:FC:7C:9D:E1:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obf_-gJ47YZV6-ZIKodt_Hyd4bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/5d1d57-fdea-4526-ae64-82a48dfe61bd/1/WNLarwn5cpLDlNKLeXWCZdgLSuM.roa
Signing time: Sat 25 Mar 2023 13:07:46 +0000
ROA not before: Sat 25 Mar 2023 13:07:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 79.99.28.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:18:e1:d8:fd:e6:5d:f4:77:18:ce:13:40:47:b6:56:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1b7fffa0278ed8655ebe6482a876dfc7c9de1bc
Validity
Not Before: Mar 25 13:07:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58d2daaf09f97292c394d28b79758265d80b4ae3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1b:15:e0:54:0c:0e:7e:03:23:15:42:67:86:
96:9e:d4:c2:47:ee:74:e9:f1:02:07:97:38:b0:d8:
7e:7b:06:0e:eb:fd:ee:e8:32:46:97:99:32:8a:85:
d2:bc:58:64:d8:7b:22:a6:67:a7:e5:e2:17:42:c7:
15:52:39:21:f5:d5:19:44:25:ea:1f:87:d3:03:5f:
8e:19:57:d5:aa:a2:15:6b:ac:31:3a:95:76:21:98:
7c:93:45:4c:4e:52:63:f7:59:ef:42:0c:08:17:e9:
3c:26:65:d7:41:36:aa:cf:af:3d:62:4e:d2:bd:42:
ac:7e:6d:fb:92:ea:02:6e:27:70:af:4a:97:c4:ca:
dd:d5:a6:6b:c6:3f:76:ed:f9:ce:2c:d8:34:2e:2b:
c9:d2:40:0c:d0:4e:1b:27:8c:c6:ab:b3:0d:77:ec:
5d:4f:67:03:a4:e8:9c:3c:63:fc:55:86:db:88:00:
e2:6b:9b:4c:40:81:15:31:24:f2:08:84:a3:9c:b3:
b4:0e:ee:01:44:56:29:96:f6:ed:b0:35:0e:82:05:
81:dc:5e:18:32:31:d7:a2:2c:1a:29:c3:2b:d3:de:
5d:25:33:37:9c:62:c1:0e:cd:d1:82:9f:95:6f:50:
29:b2:23:ed:e9:74:d4:c0:82:37:98:ed:ed:6e:61:
49:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:D2:DA:AF:09:F9:72:92:C3:94:D2:8B:79:75:82:65:D8:0B:4A:E3
X509v3 Authority Key Identifier:
keyid:A1:B7:FF:FA:02:78:ED:86:55:EB:E6:48:2A:87:6D:FC:7C:9D:E1:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obf_-gJ47YZV6-ZIKodt_Hyd4bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/5d1d57-fdea-4526-ae64-82a48dfe61bd/1/WNLarwn5cpLDlNKLeXWCZdgLSuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/5d1d57-fdea-4526-ae64-82a48dfe61bd/1/obf_-gJ47YZV6-ZIKodt_Hyd4bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.99.28.0/22
Signature Algorithm: sha256WithRSAEncryption
b8:20:2b:79:12:6b:1e:d5:c1:b7:fc:a4:ae:c6:20:40:30:78:
ea:4f:0f:a6:35:a4:d7:27:a3:60:d0:14:7e:06:a7:4d:53:17:
ca:91:83:b5:2f:99:b7:36:89:29:2a:eb:49:e3:32:86:f6:53:
6b:57:38:61:f6:31:77:9b:75:5f:19:b0:8d:b5:fc:4b:65:dc:
e9:fd:24:dc:b1:41:4b:93:3e:9a:03:4c:cf:a1:d1:2b:38:88:
f9:cc:e9:d9:25:a4:78:2b:b2:b0:fa:50:61:03:fa:9c:bb:70:
15:a3:32:0a:87:ee:b8:d8:2b:6e:78:e0:67:98:da:d4:12:f5:
5f:ef:b7:16:e5:12:98:f3:2e:d3:ed:67:e4:b4:98:8a:79:31:
a4:c4:ac:13:46:0d:12:73:a2:bd:c3:71:0f:e7:c4:95:e4:d1:
66:e0:7c:0b:38:89:50:b8:06:2b:88:ad:65:ce:0e:5d:fc:0b:
78:db:65:dc:6d:d6:cd:d1:cc:65:d2:ca:11:f1:6e:d0:e1:ac:
6a:e7:26:22:8a:8b:5c:8b:32:a5:28:5b:06:c1:4f:52:03:1e:
c9:2f:40:84:2c:fc:c9:b4:02:56:c2:40:17:bc:cd:59:44:d0:
88:a9:9a:a6:71:fa:f2:47:59:2a:b1:9a:90:f3:c6:44:48:79:
8a:73:83:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 07:00:32 2025 by rpki-client