Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a2ffbce7-88dd-4ca9-b245-116386cee788/0/33312e362e34302e302f32342d3234203d3e203631333137.roa
File: 33312e362e34302e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: SBzZ1iy9CEnDf+RiMMrFiS6W3ulqn8uxS9ePMTL4vmw=
Subject key identifier: 3A:6C:F7:F9:7D:B7:A7:E9:BC:E6:95:D9:7B:DD:BB:C5:A6:15:95:B5
Certificate issuer: /CN=3a96802395455ca00679c41d5c056cae95d4b57d
Certificate serial: 3CCBA52A3623C211BDB7E8ED199CB01F52E2CFA9
Authority key identifier: 3A:96:80:23:95:45:5C:A0:06:79:C4:1D:5C:05:6C:AE:95:D4:B5:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpaAI5VFXKAGecQdXAVsrpXUtX0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a2ffbce7-88dd-4ca9-b245-116386cee788/0/33312e362e34302e302f32342d3234203d3e203631333137.roa
Signing time: Wed 22 Mar 2023 15:29:45 +0000
ROA not before: Wed 22 Mar 2023 15:24:45 +0000
ROA not after: Wed 20 Mar 2024 15:29:45 +0000
asID: 61317
IP address blocks: 31.6.40.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:cb:a5:2a:36:23:c2:11:bd:b7:e8:ed:19:9c:b0:1f:52:e2:cf:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a96802395455ca00679c41d5c056cae95d4b57d
Validity
Not Before: Mar 22 15:24:45 2023 GMT
Not After : Mar 20 15:29:45 2024 GMT
Subject: CN=3A6CF7F97DB7A7E9BCE695D97BDDBBC5A61595B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ed:26:b4:32:6b:5c:c1:06:72:f3:c7:2f:6a:
9f:bc:d9:9a:ce:f3:76:bf:8f:7f:ce:a5:ae:b6:39:
ef:a3:f7:2e:f7:e3:83:5e:0d:3d:c6:96:3d:46:1e:
d7:18:4a:e5:0d:54:36:26:88:74:a6:66:7b:6d:dc:
35:3a:4b:06:12:03:94:88:13:07:f4:a4:05:52:9d:
b6:1c:58:28:64:e5:b4:5b:d9:ed:de:a3:96:df:84:
e2:74:83:22:42:81:2a:87:51:0e:f0:ab:b1:2f:4f:
3e:17:3b:51:96:50:93:9b:51:4d:7d:bc:52:87:80:
eb:3c:7c:9c:d3:f5:c6:6c:eb:d0:c7:79:0f:4a:9f:
53:32:83:22:90:8c:5d:e6:e2:88:1c:44:b6:75:5a:
8e:cf:97:32:72:39:42:eb:d0:ec:72:c3:24:e2:0a:
23:2e:74:21:ca:3c:f2:cd:f0:cb:06:36:ed:bb:76:
8c:29:9b:c8:e6:71:eb:a7:f6:04:2c:e1:50:35:15:
d3:98:7c:30:dc:4a:d8:54:c4:bf:9b:22:8c:37:b5:
92:93:66:9f:5a:7f:43:ce:a9:b2:0a:a5:fe:79:49:
be:ce:4c:9e:4b:3f:2d:02:64:af:ba:f0:26:07:5f:
b5:2a:c0:61:ef:e6:3b:88:17:5a:c2:26:cf:b2:50:
34:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:6C:F7:F9:7D:B7:A7:E9:BC:E6:95:D9:7B:DD:BB:C5:A6:15:95:B5
X509v3 Authority Key Identifier:
keyid:3A:96:80:23:95:45:5C:A0:06:79:C4:1D:5C:05:6C:AE:95:D4:B5:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a2ffbce7-88dd-4ca9-b245-116386cee788/0/3A96802395455CA00679C41D5C056CAE95D4B57D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpaAI5VFXKAGecQdXAVsrpXUtX0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a2ffbce7-88dd-4ca9-b245-116386cee788/0/33312e362e34302e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.40.0/24
Signature Algorithm: sha256WithRSAEncryption
18:ec:ff:7f:62:02:70:a3:53:58:35:a2:79:c9:97:6b:93:90:
f6:75:69:13:7d:2d:4a:91:38:dc:6f:b6:87:cd:04:d7:90:2d:
9b:ea:e5:48:ed:33:d9:25:33:79:a9:f8:67:b6:bd:db:0f:5b:
73:6f:a3:d2:38:84:95:3e:aa:33:ed:52:5c:6d:de:0f:08:0a:
91:24:82:2a:6d:14:6e:15:db:44:68:4d:c6:db:6a:5f:d1:8a:
e7:55:6c:52:cb:76:da:6a:dc:e2:29:04:02:99:34:4d:ca:2b:
6e:24:aa:30:b8:c6:e3:62:3d:7d:e8:00:5d:4a:6f:86:ea:16:
de:57:eb:4e:da:6a:e0:6a:ea:62:9d:f1:8b:df:11:35:71:e2:
6f:b9:a0:82:0f:f5:c8:fb:a6:c6:e6:2a:91:a2:32:0a:1e:12:
c1:a0:ee:3b:fc:1e:02:66:03:89:17:2f:72:0c:06:0b:b7:46:
14:17:fe:c8:3f:0a:9a:54:79:0e:55:99:e9:18:32:d0:9f:19:
ba:38:58:ad:3c:45:45:66:24:0a:cf:1c:12:d2:92:47:cc:49:
f3:f1:66:4e:b6:cd:6c:9d:26:a5:ee:0e:55:ac:37:3b:a1:fc:
ac:a1:4a:4d:84:a4:d4:74:3d:fa:36:60:4d:99:3b:b3:f5:f7:
41:88:85:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 13 09:29:50 2023 by rpki-client on console-fra.rpki-client.org