Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/wO3tsxhBHrz8Aj5crte7_l58gm0.roa
File: wO3tsxhBHrz8Aj5crte7_l58gm0.roa (raw, json)
Hash identifier: QFJ7NdAyxFB5nByQrxnaD3py64YpEYIIDJSrocLG2AM=
Subject key identifier: C0:ED:ED:B3:18:41:1E:BC:FC:02:3E:5C:AE:D7:BB:FE:5E:7C:82:6D
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 01850EF0FE804172C0973F1552F6304E278B
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/wO3tsxhBHrz8Aj5crte7_l58gm0.roa
Signing time: Wed 14 Dec 2022 04:42:32 +0000
ROA not before: Wed 14 Dec 2022 04:42:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 185.100.214.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0e:f0:fe:80:41:72:c0:97:3f:15:52:f6:30:4e:27:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Dec 14 04:42:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0ededb318411ebcfc023e5caed7bbfe5e7c826d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:65:ee:85:d9:46:b2:4d:85:dd:9f:90:db:cf:
fb:02:94:c7:56:bd:df:8b:90:38:bc:08:21:95:be:
23:a0:79:4e:b7:77:06:65:7b:bf:1e:7c:69:b6:da:
fe:83:dd:ee:bf:c3:ae:b2:54:c0:66:c7:7d:6d:39:
2b:b9:c3:59:a0:bc:cd:8a:7b:e0:92:3d:29:b5:9b:
79:d1:1f:55:6f:a8:48:a2:d5:e9:4d:34:d6:66:9b:
24:d7:ae:9b:bb:cc:19:ff:c7:a3:01:77:34:f1:58:
66:5c:d4:d7:8f:20:8d:57:ea:08:9f:04:0d:9d:70:
ab:d2:c1:60:27:00:67:cf:19:bc:8d:3b:a6:1a:28:
c7:99:31:2b:49:38:07:cb:bc:4f:a7:36:ad:27:96:
79:94:e3:9d:e6:c6:f2:1f:0e:a5:1a:c3:2b:b4:a4:
7e:62:c8:19:15:cb:41:16:0c:70:db:65:c0:00:18:
da:f5:1d:cc:3c:6a:ff:a1:6e:9f:bd:1f:0e:ec:04:
53:89:8d:cd:0b:54:98:e6:d5:17:38:0a:fe:79:37:
68:af:a5:c2:2b:2b:10:83:99:e6:8a:99:d3:fa:65:
19:b6:5a:79:c6:55:71:04:32:27:d1:26:d8:05:ac:
aa:5f:a2:e2:14:c5:59:1f:c6:f0:8e:61:c1:63:4f:
be:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:ED:ED:B3:18:41:1E:BC:FC:02:3E:5C:AE:D7:BB:FE:5E:7C:82:6D
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/wO3tsxhBHrz8Aj5crte7_l58gm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.214.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:b1:07:55:92:db:50:a3:9f:c5:db:bb:44:64:60:9d:b2:75:
2d:62:b8:9b:0d:49:84:b8:40:f9:c3:f8:34:2e:5f:0a:79:25:
a0:d9:6b:52:78:34:c4:e3:72:33:ed:b2:8e:51:fa:f2:ef:8e:
15:79:d6:ee:a1:aa:d6:fc:41:16:1b:dd:df:78:52:87:75:01:
3f:0c:d9:db:75:69:28:13:e8:5a:dc:35:88:a9:bc:6b:ee:99:
c9:40:b2:90:07:72:69:72:7a:bf:2e:87:7c:37:a2:eb:cc:4e:
db:db:be:37:20:87:43:a7:7e:bc:8c:44:42:5e:0d:a7:dc:fc:
62:6c:10:85:12:89:ba:90:c5:55:0f:60:ac:f1:57:f1:90:b5:
53:8c:05:20:b6:1a:6f:ce:10:16:d5:3b:4a:ca:f6:ce:b0:d1:
74:bc:63:ca:bb:49:0b:ff:ea:a6:92:b3:d4:80:1f:b1:03:ae:
b7:be:b0:42:29:57:26:ab:cd:ee:5b:91:b5:ce:01:75:8b:e8:
8a:f0:60:f2:51:db:a9:70:fa:d4:fe:e1:8e:ac:84:96:a2:67:
67:27:0e:07:c1:77:ce:d3:d2:73:77:63:dd:ec:be:e1:03:44:
e3:f6:4e:e5:ba:6e:c4:c0:a2:4c:4d:03:e7:ca:01:e2:45:ab:
d7:69:c9:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 09:26:40 2025 by rpki-client