Route Origin Authorization

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a84b548c-275a-476e-bfbe-540e73e62383/0/3139332e33362e3130352e302f32342d3234203d3e20323130303336.roa
File:                     3139332e33362e3130352e302f32342d3234203d3e20323130303336.roa (raw, json)
Hash identifier:          UgwBQxrg9IZR0tU2A8AY1Wenj1y0FXluIB4cA2fTaP0=
Subject key identifier:   72:45:31:B5:8F:34:F1:40:48:9D:69:87:4E:D9:2C:5E:E3:EC:2F:D9
Certificate issuer:       /CN=87d48146623246673056151f64abb8d1ee6b7727
Certificate serial:       27CD0B046E402E7D5DFB42B8B17222CF96A8F052
Authority key identifier: 87:D4:81:46:62:32:46:67:30:56:15:1F:64:AB:B8:D1:EE:6B:77:27
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/h9SBRmIyRmcwVhUfZKu40e5rdyc.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/a84b548c-275a-476e-bfbe-540e73e62383/0/3139332e33362e3130352e302f32342d3234203d3e20323130303336.roa
Signing time:             Mon 15 Jan 2024 15:37:27 +0000
ROA not before:           Mon 15 Jan 2024 15:32:27 +0000
ROA not after:            Mon 13 Jan 2025 15:37:27 +0000
asID:                     210036
IP address blocks:        193.36.105.0/24 maxlen: 24

Validation:               Failed, unable to get certificate CRL

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            27:cd:0b:04:6e:40:2e:7d:5d:fb:42:b8:b1:72:22:cf:96:a8:f0:52
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=87d48146623246673056151f64abb8d1ee6b7727
        Validity
            Not Before: Jan 15 15:32:27 2024 GMT
            Not After : Jan 13 15:37:27 2025 GMT
        Subject: CN=724531B58F34F140489D69874ED92C5EE3EC2FD9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:60:17:a8:f4:9b:f6:3c:ba:83:cb:24:30:a3:
                    26:1c:f9:80:35:bc:aa:c3:5f:2a:2d:17:4a:c8:c6:
                    89:8e:1e:7e:60:ab:a9:84:5d:ad:b1:56:96:73:5c:
                    43:53:e0:cd:f9:bd:36:ca:9e:3c:6b:2c:43:f9:04:
                    65:c7:8c:bf:5f:98:f4:da:a5:49:3a:71:14:54:c5:
                    82:66:fe:0a:4d:1d:a9:99:28:12:e3:5d:e3:18:57:
                    bf:21:d5:72:f9:3b:19:cb:ab:80:14:12:a3:ec:90:
                    f8:30:cd:a1:ec:3f:b0:a7:cc:49:80:7f:df:d1:5c:
                    83:7e:51:78:f7:a2:96:6d:1d:f1:69:62:f5:75:5e:
                    0b:4f:24:a8:58:3d:02:31:74:63:66:e6:1d:c9:53:
                    3a:d5:cd:cc:7e:4d:65:fa:d8:1e:bf:79:7b:b7:51:
                    05:62:88:bd:1c:60:bf:a9:17:0b:3f:31:81:df:62:
                    02:34:7f:6f:43:a3:02:d0:75:01:4a:fd:29:ab:27:
                    25:75:26:c1:e4:d1:f8:bd:62:a1:5e:4d:a1:b2:0a:
                    3d:f8:46:51:96:e8:e8:63:8e:6e:f3:2c:79:c7:ab:
                    29:f6:e0:dd:3f:b7:98:49:57:d1:d0:3f:c2:f8:dc:
                    42:fa:a5:5d:54:bb:8c:bf:b6:c6:c1:4b:20:27:cd:
                    88:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                72:45:31:B5:8F:34:F1:40:48:9D:69:87:4E:D9:2C:5E:E3:EC:2F:D9
            X509v3 Authority Key Identifier:
                keyid:87:D4:81:46:62:32:46:67:30:56:15:1F:64:AB:B8:D1:EE:6B:77:27

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/a84b548c-275a-476e-bfbe-540e73e62383/0/87D48146623246673056151F64ABB8D1EE6B7727.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9SBRmIyRmcwVhUfZKu40e5rdyc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a84b548c-275a-476e-bfbe-540e73e62383/0/3139332e33362e3130352e302f32342d3234203d3e20323130303336.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  193.36.105.0/24

    Signature Algorithm: sha256WithRSAEncryption
         82:2b:cc:81:62:30:6a:69:fe:f5:1f:42:0c:d9:c0:c7:8d:bd:
         11:60:89:66:05:9f:d7:cc:5e:06:cb:3c:03:ce:3f:24:23:d8:
         22:83:fa:39:69:e0:5e:94:ba:8d:a3:fc:41:2f:a8:bc:49:79:
         3a:99:4b:bb:cd:32:41:84:26:5f:06:bd:06:4e:53:13:3f:ee:
         fa:f9:d8:72:d5:eb:ed:01:5b:b3:84:3a:16:2f:a0:01:54:d4:
         38:75:ec:b0:1d:fe:c8:02:9d:b9:0c:a2:c0:70:00:89:6a:c0:
         2d:97:ab:86:49:90:8e:1e:06:02:e7:a2:48:c4:17:ba:64:25:
         e5:4c:90:47:0c:91:26:1d:89:f0:60:eb:cb:96:31:f9:dc:ab:
         96:cf:9e:ca:f7:f8:4e:5f:e8:9e:9b:a7:62:db:7d:3d:17:d4:
         9d:dd:8f:88:0d:9b:34:6f:49:4b:a1:9a:5f:2d:50:f7:33:f3:
         98:6e:7b:a5:fc:55:b7:86:3c:7f:7e:3a:f8:f9:96:cc:f5:fa:
         6a:de:06:85:64:86:c6:4f:d0:43:96:c7:a5:1f:9e:10:52:2d:
         77:1a:bc:3c:97:da:19:a6:4a:0c:f8:e7:0e:02:e3:2a:20:fb:
         94:ea:e0:88:82:b8:83:29:b9:57:e6:80:99:49:c1:aa:16:98:
         ae:14:db:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 16 10:03:40 2024 by rpki-client on console-ams.rpki-client.org