Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/GFjj4IZSre2H5JdcwKuMCbKPhYQ.roa
File: GFjj4IZSre2H5JdcwKuMCbKPhYQ.roa (raw, json)
Hash identifier: LvJFCdvDMm4XhfZfUbN3yPDV/kTvJKtqHGia6XcSo2k=
Subject key identifier: 18:58:E3:E0:86:52:AD:ED:87:E4:97:5C:C0:AB:8C:09:B2:8F:85:84
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 0431FFC6
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/GFjj4IZSre2H5JdcwKuMCbKPhYQ.roa
Signing time: Sun 24 Apr 2022 22:05:14 +0000
ROA not before: Sun 24 Apr 2022 22:05:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 271988
IP address blocks: 185.100.214.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70385606 (0x431ffc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Apr 24 22:05:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1858e3e08652aded87e4975cc0ab8c09b28f8584
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:40:f2:33:26:bd:83:f8:f5:bc:01:ef:93:bd:
99:b2:e0:6a:87:27:de:e1:0b:cd:40:2c:06:f2:f3:
66:e0:a1:72:14:58:4a:ce:f1:c6:21:45:0e:ff:ea:
b3:92:ce:d5:c9:06:56:70:d3:d5:46:d5:c7:38:73:
da:5d:cd:a0:75:98:08:38:1e:f9:93:24:0a:2f:4f:
1d:cc:5d:6d:72:74:8b:91:5f:82:b0:c9:fb:94:9e:
aa:93:b9:89:fe:87:b4:02:50:d9:0c:ad:dd:8f:8e:
70:65:d2:87:6b:05:f1:c0:8a:98:1d:65:d1:03:3c:
df:b3:38:88:40:ca:83:91:4c:6b:82:6b:a9:7a:ad:
97:fb:69:82:77:c7:20:08:71:61:01:48:31:cb:04:
fe:cb:3f:7b:d6:9b:b0:cc:93:13:84:33:b0:b6:f9:
28:b2:86:fa:8d:2a:3c:ce:33:0a:91:58:23:3c:73:
72:99:77:53:a4:ab:d6:9b:b8:54:87:d7:23:59:88:
27:71:96:77:7a:72:81:c4:04:a2:16:08:ff:a0:9e:
84:b0:f0:28:b0:2c:1a:fb:2a:3e:be:9a:76:1b:c8:
84:33:41:85:0f:5e:80:f6:86:8d:24:66:a4:e5:20:
42:a7:35:88:b1:9f:d9:a3:81:fb:80:89:56:52:1c:
63:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:58:E3:E0:86:52:AD:ED:87:E4:97:5C:C0:AB:8C:09:B2:8F:85:84
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/GFjj4IZSre2H5JdcwKuMCbKPhYQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.214.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:07:bc:e0:7c:ac:3d:96:d7:0e:c6:31:b1:72:ed:76:3f:79:
be:56:e3:e1:78:b0:e0:30:c8:a9:48:ef:f6:b7:d3:cb:79:a7:
b5:55:c0:a5:a4:f7:c1:73:aa:a5:ed:4e:22:28:44:7b:a8:65:
25:0d:08:bb:7b:c5:09:f4:e3:95:5e:ab:30:6b:8d:66:52:9c:
72:52:6a:0c:af:bb:8f:d3:03:b8:58:45:3e:7f:51:27:7e:5f:
f1:d2:4f:8b:9e:df:17:23:0a:bc:38:df:a5:f2:7c:7c:d1:b8:
08:0d:4e:b0:85:24:77:29:f4:76:76:2a:ee:26:39:db:e4:02:
b1:2f:df:f0:cd:35:69:40:8d:ca:d0:ad:cc:b5:81:83:ab:8e:
5c:8b:d1:60:1a:8c:41:26:56:00:d6:10:d3:1d:23:1e:0e:dc:
ab:2f:97:19:a2:f1:33:19:df:4e:75:1f:47:c3:11:a9:8c:f8:
64:28:a4:45:3c:60:68:93:f2:5c:8a:75:c9:1f:e0:84:43:34:
24:3e:dc:91:ee:7f:bf:1d:78:ed:85:a0:1d:5b:f9:39:03:58:
bc:54:28:9b:78:dd:e1:af:63:26:e9:ca:7f:5b:dc:f4:d0:35:
71:8b:52:3f:c8:c9:1b:42:bc:1a:3b:7e:01:47:77:8b:6b:18:
38:58:ee:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 23:16:28 2025 by rpki-client