Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d097597a-c01a-47ae-a01a-790a923ea522/0/3139342e35392e3232332e302f32342d3234203d3e20313939363134.roa
File: 3139342e35392e3232332e302f32342d3234203d3e20313939363134.roa (raw, json)
Hash identifier: Q+0iKwhBp/O3Grimftx+AJh5Fh988rR0IKES9qvuRp4=
Subject key identifier: 97:D3:F3:5B:07:9D:F1:3D:CF:35:13:98:7F:45:68:64:0E:59:71:B3
Certificate issuer: /CN=fd1dcaa8fb487991afbb8f182f73e457ccb1f884
Certificate serial: 21BDED360090C637EB6EB2E266E47EB36F9A5833
Authority key identifier: FD:1D:CA:A8:FB:48:79:91:AF:BB:8F:18:2F:73:E4:57:CC:B1:F8:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_R3KqPtIeZGvu48YL3PkV8yx-IQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d097597a-c01a-47ae-a01a-790a923ea522/0/3139342e35392e3232332e302f32342d3234203d3e20313939363134.roa
Signing time: Wed 29 Nov 2023 23:44:49 +0000
ROA not before: Wed 29 Nov 2023 23:39:49 +0000
ROA not after: Wed 27 Nov 2024 23:44:49 +0000
asID: 199614
IP address blocks: 194.59.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:bd:ed:36:00:90:c6:37:eb:6e:b2:e2:66:e4:7e:b3:6f:9a:58:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd1dcaa8fb487991afbb8f182f73e457ccb1f884
Validity
Not Before: Nov 29 23:39:49 2023 GMT
Not After : Nov 27 23:44:49 2024 GMT
Subject: CN=97D3F35B079DF13DCF3513987F4568640E5971B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:14:fa:fe:02:22:87:bd:45:b2:37:64:36:f4:
ab:14:1b:28:f2:18:2a:a1:2c:45:4f:00:e6:e1:b5:
54:43:33:46:9e:d7:5b:fc:9a:07:ae:48:b1:20:8b:
ee:e1:c5:dd:48:1b:04:9b:9f:1e:0a:65:87:3f:b1:
d2:b6:6d:20:17:d0:c3:f5:c1:87:84:fd:90:b6:4b:
47:c6:38:f6:87:c4:4f:b2:25:f0:86:fa:4b:d1:84:
36:b7:4a:cb:7d:17:18:fa:93:eb:fa:62:a9:c3:cb:
46:fe:b9:56:68:97:88:27:61:fc:1b:41:4a:29:c2:
ac:e8:26:43:75:78:0b:1f:50:e6:ac:61:b2:71:9c:
31:7a:4d:3f:57:c9:5b:ec:60:97:0a:39:78:09:85:
27:ae:f7:03:60:4f:a2:25:20:7f:7e:2e:98:2b:cd:
d9:0e:e2:c6:ef:f1:bf:8e:8e:ba:92:82:e1:57:45:
b9:02:5b:08:e5:da:11:5a:4e:db:5a:19:df:d6:49:
42:6d:73:36:73:b8:5c:32:a1:9c:e0:8f:6a:43:48:
49:b6:ae:31:54:10:19:24:65:ed:2f:0d:6f:8f:fb:
a9:fd:fc:d0:a2:ea:02:c5:4d:72:bc:41:c8:5c:bf:
9b:bb:76:7a:1d:38:21:1a:ac:fd:84:74:88:42:ec:
20:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:D3:F3:5B:07:9D:F1:3D:CF:35:13:98:7F:45:68:64:0E:59:71:B3
X509v3 Authority Key Identifier:
keyid:FD:1D:CA:A8:FB:48:79:91:AF:BB:8F:18:2F:73:E4:57:CC:B1:F8:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d097597a-c01a-47ae-a01a-790a923ea522/0/FD1DCAA8FB487991AFBB8F182F73E457CCB1F884.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_R3KqPtIeZGvu48YL3PkV8yx-IQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d097597a-c01a-47ae-a01a-790a923ea522/0/3139342e35392e3232332e302f32342d3234203d3e20313939363134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.223.0/24
Signature Algorithm: sha256WithRSAEncryption
73:86:0a:57:27:7f:94:40:d1:ce:51:d7:3a:09:99:d7:09:01:
71:53:83:b9:3d:ad:d5:cd:1f:fc:df:74:c7:0c:e0:a2:62:67:
7e:40:2e:94:81:2b:c4:e5:95:9e:f1:50:c1:7b:b6:35:4f:cc:
97:3f:57:62:7e:32:d1:fb:51:7c:3f:f3:d2:af:16:57:11:2d:
38:ff:5b:be:a7:19:72:1b:bb:ca:3d:85:89:7d:85:25:93:6b:
7a:0c:62:f8:73:2e:2f:d4:1e:39:d6:3b:8c:b6:2a:ca:bb:ca:
5b:64:41:a9:43:e3:d0:88:d6:58:3f:6d:d4:e8:d9:e7:c8:7b:
97:5b:d5:b3:fb:6d:1a:94:b1:3d:40:49:d6:33:24:e3:75:24:
c9:74:36:e6:5f:75:5a:bb:81:75:bb:21:0a:12:de:16:6e:d9:
fc:d1:39:96:a0:6d:df:41:a9:60:a5:fd:29:06:ec:28:bd:64:
cd:24:a3:98:df:49:e1:3b:fb:bc:66:54:e7:a5:ab:af:86:8f:
c8:3a:ac:43:bf:2a:ed:23:c5:47:5f:d9:b6:1b:89:40:36:9e:
47:07:45:cf:af:41:40:23:ab:7c:e1:e6:c8:e3:b2:04:05:47:
e3:55:9e:3c:86:f1:7f:90:07:4f:15:08:41:33:b0:0b:63:a5:
24:10:2c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:20 2024 by rpki-client on console-fra.rpki-client.org