Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/2/32332e3136342e3135332e302f32342d3234203d3e20323135303531.roa
File: 32332e3136342e3135332e302f32342d3234203d3e20323135303531.roa (raw, json)
Hash identifier: NPCwRU8D/Gr8ZmzqciOveMkxWi02ryROXujRVYi163Q=
Subject key identifier: 92:E1:FA:6D:BC:CD:CE:56:46:4C:79:8C:8E:83:E8:D1:53:F2:7E:23
Certificate issuer: /CN=d90d8aba2a20be938d311f64dbe5a93065e1d30b29cf0a83df
Certificate serial: 08E55785B965A42EF8223702D8A8194363098F20
Authority key identifier: 1A:E9:05:CA:D2:46:1E:1C:76:66:49:9F:2F:7D:68:BA:DF:E7:81:BB
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a20be938d311f64dbe5a93065e1d30b29cf0a83df.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/2/32332e3136342e3135332e302f32342d3234203d3e20323135303531.roa
Signing time: Wed 01 May 2024 18:56:28 +0000
ROA not before: Wed 01 May 2024 18:51:28 +0000
ROA not after: Wed 30 Apr 2025 18:56:28 +0000
asID: 215051
IP address blocks: 23.164.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:e5:57:85:b9:65:a4:2e:f8:22:37:02:d8:a8:19:43:63:09:8f:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d90d8aba2a20be938d311f64dbe5a93065e1d30b29cf0a83df
Validity
Not Before: May 1 18:51:28 2024 GMT
Not After : Apr 30 18:56:28 2025 GMT
Subject: CN=92E1FA6DBCCDCE56464C798C8E83E8D153F27E23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c8:aa:b4:4b:3a:5d:a1:5a:ef:83:17:da:a3:
6e:4a:c6:0b:3f:89:2c:ad:c8:b8:d6:d1:21:fc:62:
4c:74:8c:2e:0d:5e:3b:db:b7:b4:57:62:f5:26:6c:
21:79:f2:a4:46:d5:87:26:df:6d:66:31:6f:1d:04:
f0:75:00:db:77:b5:26:da:c8:f0:3d:27:1a:f8:8f:
73:26:d1:5a:2b:0f:e7:40:6e:72:9e:0b:3a:da:f5:
61:20:87:68:cc:6c:95:6a:05:37:d6:83:e9:5d:01:
b7:04:e0:e7:12:2b:59:ff:25:ee:ed:32:e3:79:6d:
55:ae:ee:a3:7c:f4:a4:1f:bf:6e:01:d8:8d:b4:37:
fe:32:78:56:10:fc:e6:43:9d:87:66:ac:09:09:cd:
e7:88:8e:34:ff:d0:86:97:86:cb:b5:b1:07:82:dd:
dc:30:0b:b0:a2:2e:5d:2f:0c:68:a5:46:c9:51:8e:
b7:54:94:79:c6:3a:e0:0a:6c:1a:5f:6d:c2:4a:d3:
d4:31:3c:fb:4e:89:68:75:0d:33:68:3e:98:c0:df:
90:8b:c1:3b:a4:40:1b:e6:92:e7:c0:41:6b:5c:8e:
1f:70:d5:54:8e:cb:83:a1:2f:2d:65:72:18:22:7f:
4e:2a:75:b8:d8:92:f6:d5:5e:c3:6c:86:66:d9:1d:
4e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:E1:FA:6D:BC:CD:CE:56:46:4C:79:8C:8E:83:E8:D1:53:F2:7E:23
X509v3 Authority Key Identifier:
keyid:1A:E9:05:CA:D2:46:1E:1C:76:66:49:9F:2F:7D:68:BA:DF:E7:81:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/2/1AE905CAD2461E1C7666499F2F7D68BADFE781BB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a20be938d311f64dbe5a93065e1d30b29cf0a83df.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/2/32332e3136342e3135332e302f32342d3234203d3e20323135303531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.164.153.0/24
Signature Algorithm: sha256WithRSAEncryption
62:59:1c:f2:d3:32:51:11:ae:c6:72:b8:10:4a:3f:d7:db:ad:
79:c3:c8:d2:38:6a:c6:af:57:bb:ef:85:0d:d0:c6:29:5b:7b:
b1:3c:89:b2:77:a5:55:0c:8e:73:f7:b4:5b:b1:89:ac:52:e4:
5d:74:50:68:00:78:dc:d2:41:1a:1a:dd:79:c2:88:03:b4:ed:
27:e8:bf:df:ac:9d:cc:f5:94:b4:81:11:0b:a1:24:11:da:f5:
d3:fe:1e:18:54:91:f0:69:62:3f:bb:7c:21:1d:d0:33:7b:7c:
2c:a2:01:06:f4:65:25:32:a8:39:d3:ed:fe:41:e1:18:58:fe:
1e:9b:20:3f:98:ca:92:c3:d4:79:27:16:f8:3d:7a:89:c6:42:
8d:6a:2a:ce:c9:b2:ba:6b:6a:c1:56:f1:49:fd:b8:fc:5d:ea:
ed:e6:f6:27:05:5e:d5:7a:3e:42:fe:45:bb:a0:d4:e6:51:a8:
e4:71:de:36:12:4d:5e:fa:d4:6b:d4:11:c5:94:83:7e:3f:8d:
8f:03:10:6d:10:e9:b1:07:da:e5:42:28:f2:38:06:65:12:75:
17:51:c0:e3:3a:c5:c6:31:a2:62:3c:86:d7:ca:b0:d4:6d:4d:
c9:b0:43:5a:a3:37:21:67:47:9d:1b:98:d0:1a:95:83:a6:1f:
99:6b:e3:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:53 2024 by rpki-client on console-ams.rpki-client.org