Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7d8a42-7e82-4d18-8a3c-f543b9185932/1/wgwzL4nQgenDF7kaZKoRw4cHHm8.roa
File: wgwzL4nQgenDF7kaZKoRw4cHHm8.roa (raw, json)
Hash identifier: vTDmhwG3bRsI8jRBLFZnMhqGYznCGkqaPdqTjt9VZls=
Subject key identifier: C2:0C:33:2F:89:D0:81:E9:C3:17:B9:1A:64:AA:11:C3:87:07:1E:6F
Certificate issuer: /CN=1f0c8d80c3a34275f03e28ed79864cee26948dc7
Certificate serial: 0194228DDCCF8A0E0AD90754EB70E53BB9ED
Authority key identifier: 1F:0C:8D:80:C3:A3:42:75:F0:3E:28:ED:79:86:4C:EE:26:94:8D:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HwyNgMOjQnXwPijteYZM7iaUjcc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7d8a42-7e82-4d18-8a3c-f543b9185932/1/wgwzL4nQgenDF7kaZKoRw4cHHm8.roa
Signing time: Wed 01 Jan 2025 15:48:29 +0000
ROA not before: Wed 01 Jan 2025 15:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207367
IP address blocks: 185.65.142.0/24 maxlen: 24
2a10:300::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:dc:cf:8a:0e:0a:d9:07:54:eb:70:e5:3b:b9:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f0c8d80c3a34275f03e28ed79864cee26948dc7
Validity
Not Before: Jan 1 15:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c20c332f89d081e9c317b91a64aa11c387071e6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:35:b0:87:ed:3e:86:15:b4:78:a6:3c:0c:57:
3f:52:49:3b:c0:96:41:6e:b8:79:f1:f6:32:13:96:
e0:96:4e:a0:6c:cb:fd:7f:ae:8f:bc:fb:cf:55:4f:
06:b4:c3:44:c6:ba:fe:56:35:e0:fc:cd:f7:85:62:
b0:cc:5a:32:55:de:93:82:76:d9:17:b2:5c:26:dc:
30:c6:2b:1b:e9:7a:49:a1:6a:72:05:ef:4a:66:9e:
11:43:08:f1:d2:f5:8e:3c:60:3b:d7:c9:be:8a:93:
9a:b3:15:b2:b9:9c:7b:9d:91:03:6e:9c:3a:4c:c1:
e8:43:6f:e1:9e:91:d4:8b:a8:29:fa:7e:37:8a:c6:
89:c4:ff:27:ff:fe:69:84:9c:57:9f:1b:45:68:71:
89:12:f7:ab:1f:a5:60:cf:92:98:16:65:a9:0a:46:
1a:e0:33:73:08:36:69:9d:30:7c:fa:ff:86:77:ec:
c9:ad:e5:7e:58:7c:3a:30:38:f2:5f:8e:70:32:57:
1e:66:b3:bc:9d:2f:61:56:46:8b:fe:d9:6b:fb:0d:
35:3e:e1:0e:b2:be:28:64:07:3a:39:13:65:a6:ff:
6c:df:86:3e:dd:ab:27:22:a9:5f:e1:e0:fd:2a:50:
99:e7:8e:c9:fa:31:16:64:e3:db:09:bd:b2:b2:f9:
3c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:0C:33:2F:89:D0:81:E9:C3:17:B9:1A:64:AA:11:C3:87:07:1E:6F
X509v3 Authority Key Identifier:
keyid:1F:0C:8D:80:C3:A3:42:75:F0:3E:28:ED:79:86:4C:EE:26:94:8D:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HwyNgMOjQnXwPijteYZM7iaUjcc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7d8a42-7e82-4d18-8a3c-f543b9185932/1/wgwzL4nQgenDF7kaZKoRw4cHHm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7d8a42-7e82-4d18-8a3c-f543b9185932/1/HwyNgMOjQnXwPijteYZM7iaUjcc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.142.0/24
IPv6:
2a10:300::/29
Signature Algorithm: sha256WithRSAEncryption
4e:8d:73:98:84:b1:c8:c5:29:7c:9e:75:41:19:dc:1e:21:f8:
e3:73:30:83:e6:ad:22:ca:31:77:48:2e:7b:70:bf:ce:4e:5f:
ec:7e:8e:10:c4:7f:f9:db:db:59:e3:68:05:6f:5f:7d:49:85:
10:3e:42:a6:6b:22:b6:7d:51:e3:4a:61:b4:82:72:6f:7f:87:
42:bd:a1:95:d7:a0:a7:c3:e7:c5:39:ce:18:4d:02:11:91:bf:
ad:df:88:1c:a4:fb:61:fd:e5:39:07:d9:4b:39:8f:5c:7b:bc:
11:04:a7:d0:86:ec:69:88:a6:72:f6:14:dd:59:7b:2e:60:d3:
63:19:c5:d7:4d:d3:a2:a1:d2:49:e2:5e:fb:7d:7b:57:c4:2d:
f2:b5:25:37:9a:cf:72:7c:65:82:75:c2:02:73:c2:09:14:6b:
a4:aa:66:10:be:7e:95:f4:a6:23:8c:e8:dc:06:10:ff:18:97:
8f:78:46:20:93:a0:c0:4a:2c:a1:ab:19:01:57:b6:ca:90:0d:
51:fc:ee:1a:10:f7:ab:10:de:91:df:3a:8b:15:b4:5e:46:68:
f9:4b:c8:2c:0c:36:98:7a:a1:42:77:c9:3a:41:24:93:78:bd:
8e:58:2c:aa:3d:00:75:90:65:24:71:8f:b7:e8:56:49:49:63:
ca:2f:38:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:47 2025 by rpki-client on console.sobornost.net