Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/e6e15c-12b0-40be-8bc1-5708f580e36a/1/WG1KaYBil4vEXHxcooJOyBDWYD4.roa
File: WG1KaYBil4vEXHxcooJOyBDWYD4.roa (raw, json)
Hash identifier: KHIxCFkGSHSfCiqYXlIC0/8nqViYZ1Y0FqW8AdTQIkI=
Subject key identifier: 58:6D:4A:69:80:62:97:8B:C4:5C:7C:5C:A2:82:4E:C8:10:D6:60:3E
Certificate issuer: /CN=0a73778fb1bec28c9982652aede86a004c2682f1
Certificate serial: 019420D5F852F32657F12CA3177ED18267CE
Authority key identifier: 0A:73:77:8F:B1:BE:C2:8C:99:82:65:2A:ED:E8:6A:00:4C:26:82:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnN3j7G-woyZgmUq7ehqAEwmgvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/e6e15c-12b0-40be-8bc1-5708f580e36a/1/WG1KaYBil4vEXHxcooJOyBDWYD4.roa
Signing time: Wed 01 Jan 2025 07:48:01 +0000
ROA not before: Wed 01 Jan 2025 07:48:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202192
IP address blocks: 185.30.28.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:f8:52:f3:26:57:f1:2c:a3:17:7e:d1:82:67:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a73778fb1bec28c9982652aede86a004c2682f1
Validity
Not Before: Jan 1 07:48:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=586d4a698062978bc45c7c5ca2824ec810d6603e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:99:d0:75:20:04:7c:02:a9:95:1e:42:db:9e:
07:20:35:be:cc:a4:e3:3a:3f:59:77:90:b1:87:ff:
99:1c:cc:f9:d0:07:fc:e5:83:37:d4:6b:eb:1b:6a:
e2:73:ac:d9:d7:44:4e:1e:ab:f2:3e:9a:f5:c9:68:
7a:41:e0:e7:93:a9:bb:40:5e:05:8d:98:56:ce:e2:
5f:18:80:90:4f:23:cd:d9:b4:fb:25:eb:4c:d3:e5:
e5:84:8e:3e:d5:e5:6b:3b:ee:94:1b:7c:b6:a8:cc:
b5:9d:d7:ba:3c:fb:bf:a5:7f:90:09:94:48:b3:ce:
ca:55:80:e5:cb:93:3a:07:27:a8:97:44:30:4c:77:
0a:69:b6:36:69:2a:6f:13:59:7d:ba:34:e3:29:fd:
40:10:70:e0:ea:d7:62:fd:33:8a:0b:d0:69:1c:da:
66:dd:b4:26:4f:3f:c2:5d:e9:68:d1:cf:7c:ec:9a:
66:fd:0a:15:58:d9:5a:d4:e3:f9:10:72:b8:3d:55:
28:bc:c4:3f:f8:83:fb:3d:f7:01:d2:d2:0f:75:9b:
8f:df:d8:82:60:8a:e7:49:21:0a:dd:8e:85:df:80:
c8:ab:68:2f:f6:fc:89:76:13:e2:78:21:cd:df:5d:
18:e5:4b:5a:40:e6:37:3c:43:8e:97:7a:3f:ee:91:
b7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:6D:4A:69:80:62:97:8B:C4:5C:7C:5C:A2:82:4E:C8:10:D6:60:3E
X509v3 Authority Key Identifier:
keyid:0A:73:77:8F:B1:BE:C2:8C:99:82:65:2A:ED:E8:6A:00:4C:26:82:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnN3j7G-woyZgmUq7ehqAEwmgvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/e6e15c-12b0-40be-8bc1-5708f580e36a/1/WG1KaYBil4vEXHxcooJOyBDWYD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/e6e15c-12b0-40be-8bc1-5708f580e36a/1/CnN3j7G-woyZgmUq7ehqAEwmgvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.30.28.0/22
Signature Algorithm: sha256WithRSAEncryption
54:c6:68:cf:13:83:4a:c1:87:3a:d8:79:82:46:04:fa:17:73:
0f:c0:eb:64:d2:17:2a:f9:77:cb:ea:d4:15:d7:a5:15:b3:70:
6e:f1:45:42:4d:90:09:a6:67:03:af:78:37:06:90:7b:63:44:
d0:67:1f:d4:cb:e2:a8:5c:b1:ba:ef:99:03:53:2b:21:d3:0c:
57:04:cd:99:df:97:63:bc:7f:28:2b:b4:8b:05:78:03:6e:dc:
cd:fb:73:7c:1f:f9:f2:ea:db:41:8e:50:2f:16:5d:8d:aa:63:
ca:d7:53:de:e2:15:f2:3d:21:1a:e6:07:b1:7d:37:ed:83:3c:
26:f8:bf:be:75:12:2f:71:71:33:4d:0c:1a:89:76:c4:a4:fb:
93:0c:fe:4c:0c:9a:f2:79:45:69:78:c9:bb:89:1c:31:1c:11:
1f:9f:5c:58:be:af:05:f3:c1:95:25:68:95:d6:d8:79:62:ad:
92:75:9e:5c:fe:04:fd:31:d5:4f:8d:b7:3a:01:c0:df:03:8e:
67:71:64:00:ae:10:60:1c:c9:30:88:7d:38:a9:57:4b:a7:46:
98:99:27:43:ba:c5:bc:c8:e0:20:2c:91:a3:82:82:8d:4c:01:
dd:b2:67:97:1f:16:d1:8a:7f:8e:ad:14:97:83:7c:0b:6e:64:
ee:04:49:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:06:49 2025 by rpki-client