Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b17479d1-95d8-4a14-8ee2-de100c66774c/0/3138352e3232392e3232312e302f32342d3234203d3e20383334.roa
File: 3138352e3232392e3232312e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: F4xkHrSbKL4hpnLPjUQT8BOODzecNrE6T6GFw47CjW8=
Subject key identifier: ED:F5:4B:5E:0F:CC:9A:AD:B4:35:13:12:53:73:83:6A:79:D1:12:2A
Certificate issuer: /CN=bad36cdaf43498a668b553f581ccd281ac1a8cd7
Certificate serial: 0A522FA73B58A4B98A8DB45FBC769CCCC4CDE5E1
Authority key identifier: BA:D3:6C:DA:F4:34:98:A6:68:B5:53:F5:81:CC:D2:81:AC:1A:8C:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/utNs2vQ0mKZotVP1gczSgawajNc.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b17479d1-95d8-4a14-8ee2-de100c66774c/0/3138352e3232392e3232312e302f32342d3234203d3e20383334.roa
Signing time: Fri 15 Sep 2023 00:00:12 +0000
ROA not before: Thu 14 Sep 2023 23:55:12 +0000
ROA not after: Fri 13 Sep 2024 00:00:12 +0000
asID: 834
IP address blocks: 185.229.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:52:2f:a7:3b:58:a4:b9:8a:8d:b4:5f:bc:76:9c:cc:c4:cd:e5:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bad36cdaf43498a668b553f581ccd281ac1a8cd7
Validity
Not Before: Sep 14 23:55:12 2023 GMT
Not After : Sep 13 00:00:12 2024 GMT
Subject: CN=EDF54B5E0FCC9AADB43513125373836A79D1122A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:ef:a6:7d:57:06:95:a7:67:04:fd:a7:10:d9:
52:7e:f8:fd:88:79:d9:ab:cb:e0:86:3a:a9:91:31:
7d:aa:20:93:e0:7e:4f:29:18:75:28:4a:12:64:d8:
a9:fb:99:13:57:ee:54:d3:1e:65:6c:e1:7b:c6:26:
12:de:9f:fa:97:fa:75:9d:fb:c4:97:bb:5d:ff:e7:
4d:4c:87:0b:2e:3f:0b:70:da:42:e3:2a:34:d9:8f:
b9:6e:8d:f1:60:ee:c4:89:0e:64:1d:4c:7d:c2:7d:
e3:04:de:68:65:ff:bc:47:f8:29:bd:c2:b3:ac:2e:
d7:3c:9b:d1:9d:d2:80:e0:47:d0:03:3c:b6:65:eb:
7e:00:53:2d:ab:87:5a:25:c3:2c:c1:eb:c2:d2:88:
6a:11:bb:30:e4:d1:b5:2c:ea:80:83:60:ed:f7:ff:
cb:ab:64:bc:94:2b:96:25:92:c0:40:fa:3a:3e:e2:
16:58:4a:fc:89:65:a7:5b:a8:23:d9:a7:b5:69:ce:
bf:f2:f9:90:c2:6c:e9:0f:dd:37:dd:db:3c:dc:5c:
2d:29:2b:f9:17:a9:62:41:5b:07:3e:92:89:f9:e8:
fc:0e:36:62:e5:4c:a2:c5:1f:ac:a4:c6:7b:41:5d:
7f:41:ca:bb:3e:a3:97:ef:4d:e2:26:1e:93:bd:ef:
12:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:F5:4B:5E:0F:CC:9A:AD:B4:35:13:12:53:73:83:6A:79:D1:12:2A
X509v3 Authority Key Identifier:
keyid:BA:D3:6C:DA:F4:34:98:A6:68:B5:53:F5:81:CC:D2:81:AC:1A:8C:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b17479d1-95d8-4a14-8ee2-de100c66774c/0/BAD36CDAF43498A668B553F581CCD281AC1A8CD7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/utNs2vQ0mKZotVP1gczSgawajNc.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b17479d1-95d8-4a14-8ee2-de100c66774c/0/3138352e3232392e3232312e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.221.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:e0:a0:78:e1:12:52:ef:0c:53:7a:06:fe:2d:bf:42:b0:66:
7c:3e:41:e9:fc:ce:f0:ff:83:67:13:97:f2:33:1e:55:e2:f9:
46:6a:8c:a5:1f:81:77:ca:35:2f:e9:75:16:b2:22:31:0f:f9:
ea:51:24:d9:64:04:11:5b:ca:e0:62:58:41:a0:9d:74:da:2b:
49:cc:bf:6f:0c:56:3d:26:13:ab:bc:58:89:c7:d0:59:c4:9c:
9d:52:f3:a1:18:61:b8:7e:d5:4a:f2:2f:bf:7c:14:02:40:be:
67:ae:3b:d2:23:10:93:73:be:66:43:8f:a4:f5:ed:62:96:28:
e1:cb:3e:e4:b2:b6:b2:da:c6:2d:e6:7e:14:f8:0d:82:b7:09:
02:30:1d:f0:bd:a0:a4:3f:c3:76:28:7d:d1:d1:ab:0d:79:63:
7c:1e:55:ee:1d:2e:30:88:45:45:48:55:8e:ab:3e:39:6d:8f:
cb:f1:e0:92:46:9b:9b:24:fd:bc:d1:b6:25:61:ca:bb:5d:82:
1e:c2:a2:84:99:fc:0e:06:69:55:af:b2:98:1d:9e:24:aa:4a:
a2:99:a6:6a:9f:80:26:ae:65:7d:2c:da:83:bd:7d:98:df:9e:
8f:61:f8:24:f1:a2:96:93:6c:23:09:14:5e:5b:cc:c0:0f:2c:
de:08:75:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 25 21:34:03 2024 by rpki-client on console-ams.rpki-client.org