Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b17479d1-95d8-4a14-8ee2-de100c66774c/0/3138352e3231362e3130352e302f32342d3234203d3e20383334.roa
File: 3138352e3231362e3130352e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: uSIwo4ardQC+BfHfCa9rLFVZ3GmdJzmnZoje/U8P868=
Subject key identifier: 58:DE:AC:DF:66:AC:A9:AD:81:A7:57:FE:9B:32:96:DC:52:1D:F5:70
Certificate issuer: /CN=bad36cdaf43498a668b553f581ccd281ac1a8cd7
Certificate serial: 4DF877655C647640472DE7234DEE39F729A45363
Authority key identifier: BA:D3:6C:DA:F4:34:98:A6:68:B5:53:F5:81:CC:D2:81:AC:1A:8C:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/utNs2vQ0mKZotVP1gczSgawajNc.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b17479d1-95d8-4a14-8ee2-de100c66774c/0/3138352e3231362e3130352e302f32342d3234203d3e20383334.roa
Signing time: Tue 21 Nov 2023 10:15:05 +0000
ROA not before: Tue 21 Nov 2023 10:10:05 +0000
ROA not after: Tue 19 Nov 2024 10:15:05 +0000
asID: 834
IP address blocks: 185.216.105.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:f8:77:65:5c:64:76:40:47:2d:e7:23:4d:ee:39:f7:29:a4:53:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bad36cdaf43498a668b553f581ccd281ac1a8cd7
Validity
Not Before: Nov 21 10:10:05 2023 GMT
Not After : Nov 19 10:15:05 2024 GMT
Subject: CN=58DEACDF66ACA9AD81A757FE9B3296DC521DF570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d7:c7:e2:90:61:1d:e6:05:ba:4f:81:d2:d2:
a5:55:7e:9f:d1:d7:ab:b6:07:15:bb:aa:63:e0:4b:
d2:df:d8:df:7b:1e:e4:1c:e8:8a:a1:53:d0:50:32:
84:ae:b6:31:bc:84:37:fd:a2:20:a6:e5:fc:9c:26:
56:6c:07:70:0f:4e:1c:2a:80:b6:e0:be:73:c5:3a:
10:c4:25:43:ff:16:ea:58:4c:42:f3:36:56:f2:fe:
5c:8a:05:f7:63:00:c3:57:cc:3c:17:bd:31:77:aa:
b6:89:6f:43:1e:21:68:b5:44:41:16:d1:92:70:46:
2f:82:cc:3b:06:d0:71:1d:87:f3:96:b2:5e:2c:c4:
39:0d:cc:f7:1b:26:54:68:54:73:67:28:3f:5c:da:
67:fe:e1:ef:a3:ec:1e:7d:3c:97:66:87:95:b7:f7:
ff:53:13:fe:07:94:23:c9:68:f0:57:56:06:ff:ed:
ad:10:9b:62:6c:80:a2:7d:7b:57:64:c1:1c:0d:81:
48:8e:09:a4:e3:af:02:39:63:43:4d:75:36:92:12:
03:c6:1a:7d:c3:eb:82:e5:3a:58:6d:bd:d2:9d:ab:
84:bf:15:9f:b3:f2:e9:3d:bd:85:31:3c:95:1a:2e:
ea:8f:f9:5a:f2:0d:bb:c7:79:ec:7f:64:26:74:19:
10:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:DE:AC:DF:66:AC:A9:AD:81:A7:57:FE:9B:32:96:DC:52:1D:F5:70
X509v3 Authority Key Identifier:
keyid:BA:D3:6C:DA:F4:34:98:A6:68:B5:53:F5:81:CC:D2:81:AC:1A:8C:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b17479d1-95d8-4a14-8ee2-de100c66774c/0/BAD36CDAF43498A668B553F581CCD281AC1A8CD7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/utNs2vQ0mKZotVP1gczSgawajNc.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b17479d1-95d8-4a14-8ee2-de100c66774c/0/3138352e3231362e3130352e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.105.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:db:64:7f:c3:41:16:48:b2:02:42:9c:11:60:a6:02:4f:9f:
d7:b1:34:27:f8:26:ed:28:ee:34:43:9e:ea:ef:ee:90:f7:cd:
c0:72:bf:6a:31:19:a5:ea:50:22:62:53:f8:5c:15:7b:bd:e2:
6b:36:16:68:e4:03:d7:ea:69:1a:15:55:51:b3:48:3f:b4:9e:
58:ef:c4:68:55:89:5b:5c:80:cc:a4:cf:ff:72:7c:66:23:ff:
0a:1b:81:63:53:dd:d8:aa:39:de:aa:03:a1:73:e6:82:ab:04:
2d:0f:0e:32:7d:60:50:40:e1:66:35:d0:ae:c5:30:8c:35:f1:
d3:07:bc:7b:d2:46:4c:bf:1d:df:4b:60:a0:13:c9:01:03:bd:
e8:22:03:28:a6:d2:68:5b:60:90:aa:a9:b8:6c:8f:4f:d6:3e:
0f:1c:40:f3:df:14:d2:6c:b6:6f:93:6c:6c:c4:f3:54:83:b2:
a4:b4:45:e1:5b:fa:3f:52:d0:ad:df:16:1a:10:ab:df:e3:29:
58:cc:42:c7:61:08:3b:e6:e7:0c:75:89:50:7e:8a:18:04:98:
3a:55:a5:61:e6:83:4c:8b:18:da:be:53:b7:0b:94:a0:80:5e:
24:92:db:62:b2:f9:c3:a9:ed:81:9e:fe:ee:66:0e:24:da:15:
03:90:c4:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 25 21:34:03 2024 by rpki-client on console-ams.rpki-client.org