Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/959e03-78fc-4589-acde-f9a43709d00b/1/WP71_y34vxzD5x7BOioebxCCHyo.roa
File: WP71_y34vxzD5x7BOioebxCCHyo.roa (raw, json)
Hash identifier: E5yzZO4QIaYJL7VozBk+Y+K8Kjs53pwyA0H4+gidJRs=
Subject key identifier: 58:FE:F5:FF:2D:F8:BF:1C:C3:E7:1E:C1:3A:2A:1E:6F:10:82:1F:2A
Certificate issuer: /CN=c6cfa94f6134e3960ea5f318846a30cf3e922dd7
Certificate serial: 01959429EB1886AB29BEF38340B84400D5AF
Authority key identifier: C6:CF:A9:4F:61:34:E3:96:0E:A5:F3:18:84:6A:30:CF:3E:92:2D:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xs-pT2E045YOpfMYhGowzz6SLdc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/959e03-78fc-4589-acde-f9a43709d00b/1/WP71_y34vxzD5x7BOioebxCCHyo.roa
Signing time: Fri 14 Mar 2025 10:18:49 +0000
ROA not before: Fri 14 Mar 2025 10:18:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58154
IP address blocks: 193.218.176.0/22 maxlen: 22
2a0e:6340::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:94:29:eb:18:86:ab:29:be:f3:83:40:b8:44:00:d5:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6cfa94f6134e3960ea5f318846a30cf3e922dd7
Validity
Not Before: Mar 14 10:18:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=58fef5ff2df8bf1cc3e71ec13a2a1e6f10821f2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:59:4f:49:ce:51:9a:21:87:9b:38:3d:6a:3c:
7b:96:2e:34:ef:d9:db:aa:88:19:f2:94:75:6f:97:
13:af:33:43:93:52:64:5f:9b:ff:2c:d5:be:2d:b5:
11:bb:38:69:1c:77:93:ee:9d:a7:b5:3a:06:83:6a:
fa:ac:8c:f3:60:a9:8b:34:47:cc:08:a0:47:71:d3:
22:91:c5:f3:97:c3:9c:15:ff:42:07:29:76:91:d1:
e8:ce:f4:d0:15:ba:ba:92:d6:17:13:14:ef:39:39:
16:7b:10:3d:a4:5c:09:a8:09:33:8d:c1:d7:75:30:
3d:45:86:d0:06:25:68:a8:70:a2:5b:0f:c2:25:c9:
81:52:e6:d0:39:41:b1:7b:fa:0e:a1:41:b0:71:31:
d0:d4:af:d9:bd:8b:ac:44:4d:e5:1a:38:b7:f8:d6:
17:3f:97:90:79:f8:86:44:2a:2b:4b:2f:39:b9:f0:
8b:a2:53:45:77:87:67:c7:a8:ae:ac:7d:b8:6f:be:
b8:3d:19:c6:04:ae:ac:d0:2f:6d:b5:ca:1f:c7:52:
ce:aa:7f:b5:53:81:9c:01:f8:89:2f:98:c1:0f:90:
d0:70:ab:a6:3d:8f:7d:ef:ae:3e:24:a5:66:d9:97:
bc:40:6c:01:d7:d4:e6:cf:23:0a:bb:ee:20:c3:c8:
a2:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:FE:F5:FF:2D:F8:BF:1C:C3:E7:1E:C1:3A:2A:1E:6F:10:82:1F:2A
X509v3 Authority Key Identifier:
keyid:C6:CF:A9:4F:61:34:E3:96:0E:A5:F3:18:84:6A:30:CF:3E:92:2D:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xs-pT2E045YOpfMYhGowzz6SLdc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/959e03-78fc-4589-acde-f9a43709d00b/1/WP71_y34vxzD5x7BOioebxCCHyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/959e03-78fc-4589-acde-f9a43709d00b/1/xs-pT2E045YOpfMYhGowzz6SLdc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.218.176.0/22
IPv6:
2a0e:6340::/29
Signature Algorithm: sha256WithRSAEncryption
72:c5:35:e2:aa:db:12:6e:68:03:94:6c:4a:97:61:f1:41:9b:
ae:a8:2d:e0:ca:bd:5e:d6:e8:97:94:ea:e3:56:5e:40:e2:4c:
67:a7:16:c5:01:3b:07:81:24:b7:e5:d8:71:60:46:85:5a:b0:
25:7f:21:73:c8:b0:c7:17:3a:84:ac:26:a9:31:83:9e:8e:d2:
46:3a:4e:5f:67:77:7f:1c:58:42:cc:27:98:31:fc:d9:bc:ab:
37:1b:4f:48:dd:48:ee:b8:47:d6:4a:fb:2e:f1:bb:88:a5:39:
3a:bb:f7:f7:37:62:28:a5:6e:e4:95:65:1f:d3:8d:6b:00:44:
60:ef:67:c8:9a:16:46:8c:4a:a5:e0:40:a5:8a:fc:e1:5e:ea:
0e:94:00:4b:e0:b3:7b:42:74:c0:84:95:e5:b0:88:cb:e6:fa:
18:33:f3:f7:2a:8a:e3:3f:d3:ef:97:05:81:81:9f:24:f5:73:
8f:86:8d:75:da:79:0b:bf:e2:03:84:85:7c:8c:e4:3a:ed:95:
f9:23:d8:08:46:3b:a6:e9:7d:4e:58:0d:85:d8:0b:1e:cd:5d:
7c:95:f7:68:ea:27:4f:10:b7:e2:69:b9:13:45:ce:27:a8:eb:
5d:25:bc:7d:c3:96:53:cf:df:38:17:b2:c4:31:5b:a0:80:a3:
30:59:3f:b0
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZWUKesYhqspvvODQLhEANWvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2Y2ZhOTRmNjEzNGUzOTYwZWE1ZjMxODg0NmEzMGNmM2U5
MjJkZDcwHhcNMjUwMzE0MTAxODQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OGZlZjVmZjJkZjhiZjFjYzNlNzFlYzEzYTJhMWU2ZjEwODIxZjJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzllPSc5RmiGHmzg9ajx7li4079nb
qogZ8pR1b5cTrzNDk1JkX5v/LNW+LbURuzhpHHeT7p2ntToGg2r6rIzzYKmLNEfM
CKBHcdMikcXzl8OcFf9CByl2kdHozvTQFbq6ktYXExTvOTkWexA9pFwJqAkzjcHX
dTA9RYbQBiVoqHCiWw/CJcmBUubQOUGxe/oOoUGwcTHQ1K/ZvYusRE3lGji3+NYX
P5eQefiGRCorSy85ufCLolNFd4dnx6iurH24b764PRnGBK6s0C9ttcofx1LOqn+1
U4GcAfiJL5jBD5DQcKumPY99764+JKVm2Ze8QGwB19TmzyMKu+4gw8iiYwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFFj+9f8t+L8cw+cewToqHm8Qgh8qMB8GA1UdIwQY
MBaAFMbPqU9hNOOWDqXzGIRqMM8+ki3XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveHMtcFQyRTA0NVlPcGZNWWhHb3d6ejZTTGRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi85NTllMDMtNzhmYy00NTg5LWFjZGUt
ZjlhNDM3MDlkMDBiLzEvV1A3MV95MzR2eHpENXg3Qk9pb2VieENDSHlvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi85NTllMDMtNzhmYy00NTg5LWFjZGUtZjlhNDM3MDlkMDBi
LzEveHMtcFQyRTA0NVlPcGZNWWhHb3d6ejZTTGRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCwdqwMA0E
AgACMAcDBQMqDmNAMA0GCSqGSIb3DQEBCwUAA4IBAQByxTXiqtsSbmgDlGxKl2Hx
QZuuqC3gyr1e1uiXlOrjVl5A4kxnpxbFATsHgSS35dhxYEaFWrAlfyFzyLDHFzqE
rCapMYOejtJGOk5fZ3d/HFhCzCeYMfzZvKs3G09I3UjuuEfWSvsu8buIpTk6u/f3
N2IopW7klWUf041rAERg72fImhZGjEql4EClivzhXuoOlABL4LN7QnTAhJXlsIjL
5voYM/P3KorjP9PvlwWBgZ8k9XOPho112nkLv+IDhIV8jOQ67ZX5I9gIRjum6X1O
WA2F2AsezV18lfdo6idPELfiabkTRc4nqOtdJbx9w5ZTz984F7LEMVuggKMwWT+w
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:17 2025 by rpki-client on console.sobornost.net