Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS63023.roa
File: AS63023.roa (raw, json)
Hash identifier: dQF50wCU1dluSYgPbLBp2MylgiYPiVwMpg4PSKqnoxQ=
Subject key identifier: 8A:3F:29:55:22:20:A0:B8:52:83:44:10:C2:08:85:52:0A:C7:22:DC
Certificate issuer: /CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Certificate serial: 0323B66FD509291EE48B389596B22E0F4B590C7B
Authority key identifier: D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS63023.roa
Signing time: Sun 01 Jan 2023 23:59:17 +0000
ROA not before: Sun 01 Jan 2023 23:54:17 +0000
ROA not after: Sun 31 Dec 2023 23:59:17 +0000
asID: 63023
IP address blocks: 185.147.35.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:23:b6:6f:d5:09:29:1e:e4:8b:38:95:96:b2:2e:0f:4b:59:0c:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Validity
Not Before: Jan 1 23:54:17 2023 GMT
Not After : Dec 31 23:59:17 2023 GMT
Subject: CN=8A3F29552220A0B852834410C20885520AC722DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9c:46:09:66:f0:b1:1d:93:5f:aa:8b:fd:94:
b5:da:87:ea:fe:76:b6:8e:a3:cf:91:8c:2f:5d:99:
ab:aa:84:c5:d2:92:c6:ad:89:3b:3d:05:d1:c5:7b:
5c:60:a6:b5:3d:21:02:eb:96:fa:98:43:76:05:77:
59:7e:0a:9e:84:21:04:b6:a6:09:e1:50:2c:87:2e:
01:9c:c6:ef:bb:bd:dc:2d:ea:fa:ed:b0:e1:4b:c6:
3b:c7:5d:c8:27:79:03:73:74:b9:94:a3:fe:65:52:
8e:4f:b5:03:22:81:23:b9:7b:11:68:18:33:52:2c:
92:e7:51:89:6a:05:b9:1a:b6:93:39:57:b4:bf:2b:
56:83:b4:86:a7:7c:57:8f:91:77:79:c9:07:28:43:
b5:e3:c3:30:5b:d8:4f:1b:2f:04:07:cb:70:d8:cf:
fc:01:4e:8b:c5:3b:59:4b:81:c6:2a:d7:99:af:96:
93:c7:26:6b:63:c0:b2:e3:99:8a:a7:ef:03:2a:8c:
6b:0e:20:72:68:89:8d:5d:6e:dc:73:9a:88:d0:3b:
9f:38:a7:fc:1c:1c:5a:b4:45:53:f4:c6:61:b5:7c:
dc:f4:89:90:7f:d7:fe:e4:bf:de:9d:03:fb:ec:4e:
c1:5b:35:39:bf:24:d7:16:6a:e5:6c:e3:5d:06:a1:
cd:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:3F:29:55:22:20:A0:B8:52:83:44:10:C2:08:85:52:0A:C7:22:DC
X509v3 Authority Key Identifier:
keyid:D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/D12EA65DEE9873B5DCF3C6C0224FAEA6FCB8AEA6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS63023.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.147.35.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:9a:5f:06:a6:11:0c:19:d5:07:a5:f3:c9:09:34:e9:9d:b8:
44:42:e2:96:af:0e:81:09:27:10:77:29:ac:af:76:8d:54:e4:
ab:75:6c:bf:7c:55:43:25:84:9f:7a:90:20:fe:37:75:91:95:
82:dd:4f:ef:cf:aa:72:09:ad:97:80:96:69:89:07:72:bd:8a:
e7:d3:ca:23:e4:95:43:31:48:f0:c3:d4:d1:46:93:3b:5e:d5:
f7:a2:ce:64:e9:87:b5:67:19:c1:4b:c0:d1:2e:82:83:ab:1d:
3e:05:b4:b9:bd:a3:0f:06:84:8a:c5:53:67:7f:ef:18:12:39:
8e:3b:2a:a2:32:92:31:61:5d:08:d8:9f:43:e0:81:25:8f:d2:
ac:2c:72:8c:d8:08:3f:54:85:e8:b0:7b:05:8f:62:ec:0f:12:
4a:df:6b:db:f9:e3:4b:99:f0:1a:1d:fb:33:11:93:9a:71:0c:
ed:d3:71:04:96:4d:2e:fb:21:1a:13:8d:f8:41:6a:01:93:8c:
56:2b:eb:25:d9:78:3b:72:d2:fa:aa:bd:c2:15:ea:1e:9e:a4:
72:1e:1d:43:4a:fc:ce:51:77:f0:43:bf:c1:9a:51:3a:03:5b:
77:33:cb:c6:a1:e7:cc:69:92:ff:1f:46:b8:19:30:20:c9:d6:
ab:03:fb:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:21 2024 by rpki-client on console-fra.rpki-client.org