Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a2ffbce7-88dd-4ca9-b245-116386cee788/0/3137382e3230382e3138392e302f32342d3234203d3e203631333137.roa
File: 3137382e3230382e3138392e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: 0KBZ3CqeFCBBmWgqHmRkcQRHBXS2Dp9y6LuTQUWXWNo=
Subject key identifier: 19:45:6B:6E:AB:3E:89:F8:79:29:58:39:D5:D3:C3:BB:A0:B6:6B:42
Certificate issuer: /CN=3a96802395455ca00679c41d5c056cae95d4b57d
Certificate serial: 0EE5CD7193FC1DA6AAD101F2F83CDBAA693F9FDA
Authority key identifier: 3A:96:80:23:95:45:5C:A0:06:79:C4:1D:5C:05:6C:AE:95:D4:B5:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpaAI5VFXKAGecQdXAVsrpXUtX0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a2ffbce7-88dd-4ca9-b245-116386cee788/0/3137382e3230382e3138392e302f32342d3234203d3e203631333137.roa
Signing time: Wed 22 Mar 2023 15:29:41 +0000
ROA not before: Wed 22 Mar 2023 15:24:41 +0000
ROA not after: Wed 20 Mar 2024 15:29:41 +0000
asID: 61317
IP address blocks: 178.208.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:e5:cd:71:93:fc:1d:a6:aa:d1:01:f2:f8:3c:db:aa:69:3f:9f:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a96802395455ca00679c41d5c056cae95d4b57d
Validity
Not Before: Mar 22 15:24:41 2023 GMT
Not After : Mar 20 15:29:41 2024 GMT
Subject: CN=19456B6EAB3E89F879295839D5D3C3BBA0B66B42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:84:c3:d0:7b:a6:d3:40:ad:0f:92:9d:e7:bb:
22:32:a9:ff:b9:29:e4:51:d7:41:1c:85:08:6e:fa:
d9:be:2c:ac:9c:b1:c1:9f:d2:db:f7:51:3c:8e:84:
bd:3f:19:15:32:73:48:6a:18:76:f9:3a:68:89:7d:
27:ec:a4:82:f8:97:72:6d:a8:49:05:c0:f7:a5:a0:
90:49:1b:0f:2e:c8:1d:ec:04:bf:7c:35:90:66:9c:
33:ec:dc:86:9f:1a:2e:1b:e7:61:e8:5e:ce:90:d0:
30:1b:54:a1:5d:66:d5:2e:1f:d0:d2:5c:f5:91:04:
76:1a:ea:a5:b3:c0:5a:f9:eb:f9:24:9c:08:aa:c2:
9c:8f:e9:8c:44:6f:3f:69:4b:ae:c5:48:2e:fb:6e:
26:ed:2e:df:f1:fc:e4:d5:36:fb:86:03:68:47:8a:
ac:8d:7d:ad:f5:f9:5b:44:6e:fb:e0:ce:1d:dd:e1:
89:23:24:06:95:5d:89:93:c1:bc:cf:68:08:2a:2f:
09:77:c7:b6:e1:b1:19:a7:eb:0d:84:68:3f:1b:69:
ee:24:ef:77:61:67:71:9b:98:3f:44:0d:1f:20:81:
e4:91:4e:7a:8d:c1:90:09:73:dd:47:60:83:0c:05:
77:ec:6b:35:c0:33:c1:0a:21:e4:1b:fb:b9:e6:49:
cb:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:45:6B:6E:AB:3E:89:F8:79:29:58:39:D5:D3:C3:BB:A0:B6:6B:42
X509v3 Authority Key Identifier:
keyid:3A:96:80:23:95:45:5C:A0:06:79:C4:1D:5C:05:6C:AE:95:D4:B5:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a2ffbce7-88dd-4ca9-b245-116386cee788/0/3A96802395455CA00679C41D5C056CAE95D4B57D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpaAI5VFXKAGecQdXAVsrpXUtX0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a2ffbce7-88dd-4ca9-b245-116386cee788/0/3137382e3230382e3138392e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.208.189.0/24
Signature Algorithm: sha256WithRSAEncryption
44:72:ef:6e:41:7d:f4:ca:48:e3:f4:dc:0b:d3:e8:af:e7:11:
86:a7:d1:d7:16:8e:03:ac:c3:5d:54:df:b7:b3:d4:5d:b2:65:
69:de:17:13:87:3e:2f:f6:6e:db:5b:5d:17:bc:75:54:b5:fe:
6b:8a:46:82:08:d1:07:b8:32:38:a4:b6:66:ca:35:b2:e5:93:
86:d0:a5:65:a2:e5:a0:11:89:30:40:9a:64:dc:66:3a:71:c6:
8f:f7:06:d9:5d:86:8f:b7:4a:60:0f:c4:e8:ee:51:fc:af:7f:
8c:8b:43:97:7b:29:bf:bc:69:57:61:43:40:32:6a:46:ee:06:
84:79:47:be:97:d7:1b:e4:a2:89:46:2a:bd:dc:fb:8b:62:f5:
56:cc:34:0d:44:c0:de:90:ef:54:3e:c6:8d:e3:a9:de:fc:b5:
ef:10:33:e7:70:8f:1a:76:3f:e3:21:f0:a0:52:22:33:23:a4:
dd:b7:c6:b0:0d:2b:ab:89:bb:6b:6d:f2:db:84:70:7a:22:c8:
8f:5f:bc:de:f9:cf:d2:53:70:0e:0e:15:5f:6b:a9:c7:fd:ea:
56:d4:a7:7a:31:3c:ac:fe:9e:b0:af:86:03:2a:52:ee:a2:71:
ea:d4:cd:90:91:00:d3:d3:b7:9f:c5:a4:8b:2e:00:64:66:c0:
18:e9:33:c3
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUDuXNcZP8Haaq0QHy+Dzbqmk/n9owDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoM2E5NjgwMjM5NTQ1NWNhMDA2NzljNDFkNWMwNTZjYWU5
NWQ0YjU3ZDAeFw0yMzAzMjIxNTI0NDFaFw0yNDAzMjAxNTI5NDFaMDMxMTAvBgNV
BAMTKDE5NDU2QjZFQUIzRTg5Rjg3OTI5NTgzOUQ1RDNDM0JCQTBCNjZCNDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+hMPQe6bTQK0Pkp3nuyIyqf+5
KeRR10EchQhu+tm+LKycscGf0tv3UTyOhL0/GRUyc0hqGHb5OmiJfSfspIL4l3Jt
qEkFwPeloJBJGw8uyB3sBL98NZBmnDPs3IafGi4b52HoXs6Q0DAbVKFdZtUuH9DS
XPWRBHYa6qWzwFr56/kknAiqwpyP6YxEbz9pS67FSC77bibtLt/x/OTVNvuGA2hH
iqyNfa31+VtEbvvgzh3d4YkjJAaVXYmTwbzPaAgqLwl3x7bhsRmn6w2EaD8bae4k
73dhZ3GbmD9EDR8ggeSRTnqNwZAJc91HYIMMBXfsazXAM8EKIeQb+7nmScvfAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUGUVrbqs+ifh5KVg51dPDu6C2a0IwHwYDVR0j
BBgwFoAUOpaAI5VFXKAGecQdXAVsrpXUtX0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTJmZmJjZTctODhkZC00Y2E5LWIyNDUtMTE2Mzg2Y2Vl
Nzg4LzAvM0E5NjgwMjM5NTQ1NUNBMDA2NzlDNDFENUMwNTZDQUU5NUQ0QjU3RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL09wYUFJNVZGWEtBR2VjUWRYQVZzcnBY
VXRYMC5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYTJmZmJjZTct
ODhkZC00Y2E5LWIyNDUtMTE2Mzg2Y2VlNzg4LzAvMzEzNzM4MmUzMjMwMzgyZTMx
MzgzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM2MzEzMzMxMzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BACy0L0wDQYJKoZIhvcNAQELBQADggEBAERy725BffTKSOP03AvT6K/nEYan0dcW
jgOsw11U37ez1F2yZWneFxOHPi/2bttbXRe8dVS1/muKRoII0Qe4MjiktmbKNbLl
k4bQpWWi5aARiTBAmmTcZjpxxo/3Btldho+3SmAPxOjuUfyvf4yLQ5d7Kb+8aVdh
Q0AyakbuBoR5R76X1xvkoolGKr3c+4ti9VbMNA1EwN6Q71Q+xo3jqd78te8QM+dw
jxp2P+Mh8KBSIjMjpN23xrANK6uJu2tt8tuEcHoiyI9fvN75z9JTcA4OFV9rqcf9
6lbUp3oxPKz+nrCvhgMqUu6icerUzZCRANPTt5/FpIsuAGRmwBjpM8M=
-----END CERTIFICATE-----
Generated at Wed Sep 13 09:30:19 2023 by rpki-client on console-ams.rpki-client.org