Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f9235055-1904-44b4-998b-ff1c9e311c49/0/3138352e3233332e39362e302f32322d3234203d3e20323135393738.roa
File: 3138352e3233332e39362e302f32322d3234203d3e20323135393738.roa (raw, json)
Hash identifier: 8tWBCmRrJR9SJ+f7lOBKtc/Qnei4QZgBS1HQBE9FE70=
Subject key identifier: 75:B6:50:F2:75:C9:49:62:25:2F:4E:7E:99:3B:D1:9F:66:1C:38:17
Certificate issuer: /CN=f56b7c7537b799200f0c3f3c6832a698e9508a3a
Certificate serial: 218F6DBA04F6B7BF47712D32C285FDC853DD2E08
Authority key identifier: F5:6B:7C:75:37:B7:99:20:0F:0C:3F:3C:68:32:A6:98:E9:50:8A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Wt8dTe3mSAPDD88aDKmmOlQijo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f9235055-1904-44b4-998b-ff1c9e311c49/0/3138352e3233332e39362e302f32322d3234203d3e20323135393738.roa
Signing time: Tue 26 Dec 2023 16:34:39 +0000
ROA not before: Tue 26 Dec 2023 16:29:39 +0000
ROA not after: Tue 24 Dec 2024 16:34:39 +0000
asID: 215978
IP address blocks: 185.233.96.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:8f:6d:ba:04:f6:b7:bf:47:71:2d:32:c2:85:fd:c8:53:dd:2e:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f56b7c7537b799200f0c3f3c6832a698e9508a3a
Validity
Not Before: Dec 26 16:29:39 2023 GMT
Not After : Dec 24 16:34:39 2024 GMT
Subject: CN=75B650F275C94962252F4E7E993BD19F661C3817
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8f:7e:58:90:eb:0e:46:bb:bb:0a:cf:aa:d8:
7a:3e:f0:1d:5f:b8:07:1f:32:9c:f0:98:a2:0a:40:
08:47:30:2c:8a:57:3c:94:36:53:19:14:d6:43:f3:
b2:36:06:76:96:04:d6:c2:08:69:74:ab:06:72:28:
0d:58:cc:35:81:2f:54:3d:44:a7:22:7d:3b:3c:6c:
0e:b8:eb:b2:fc:c6:58:bb:2a:69:01:47:bd:f8:b3:
1a:f8:98:f6:f5:8c:db:3c:3a:28:b0:ad:dc:2d:ce:
46:03:c3:31:ba:eb:ca:5d:2b:8e:8a:e0:96:71:55:
01:d0:88:0f:92:7a:7b:22:87:e1:6a:72:b5:bf:e6:
df:5d:ca:52:d8:00:9e:c5:4c:5f:bf:5d:53:37:9e:
df:c4:e7:88:db:4d:c1:d5:1b:b8:7c:94:12:55:0a:
fc:8c:ea:53:73:8b:b6:96:fc:03:e6:27:dd:55:e0:
de:1a:1a:1b:69:f2:5b:92:24:94:a8:9e:eb:f5:70:
49:b5:f4:99:d0:b5:14:95:ac:52:44:98:97:4b:24:
0c:12:f4:06:6e:15:4f:58:5d:31:c2:fe:ad:3b:54:
6e:9a:35:68:fe:ef:9f:a6:df:c4:d0:d2:07:bd:d1:
39:15:de:1e:ef:55:49:85:98:14:86:01:18:2b:cd:
38:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:B6:50:F2:75:C9:49:62:25:2F:4E:7E:99:3B:D1:9F:66:1C:38:17
X509v3 Authority Key Identifier:
keyid:F5:6B:7C:75:37:B7:99:20:0F:0C:3F:3C:68:32:A6:98:E9:50:8A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f9235055-1904-44b4-998b-ff1c9e311c49/0/F56B7C7537B799200F0C3F3C6832A698E9508A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Wt8dTe3mSAPDD88aDKmmOlQijo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f9235055-1904-44b4-998b-ff1c9e311c49/0/3138352e3233332e39362e302f32322d3234203d3e20323135393738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.96.0/22
Signature Algorithm: sha256WithRSAEncryption
45:cb:41:ef:11:7d:f9:0b:fa:d4:ba:5b:19:4b:16:1c:72:63:
7f:f0:ba:68:25:c9:66:7d:01:f2:0e:e2:e5:de:c4:d5:84:f3:
0b:7b:83:06:5c:ba:59:33:a1:95:d2:46:75:db:c3:1c:45:b7:
13:98:8f:b7:4e:b5:64:b7:c0:10:0a:a7:71:bc:28:67:c5:65:
9b:9d:e8:01:47:50:0c:1c:ee:a1:0a:7e:20:cd:17:96:e0:3e:
97:f4:d4:d6:ff:92:4a:4b:6d:76:ab:68:bf:db:8d:83:b0:dd:
8b:73:a0:53:15:4f:06:24:a1:93:0d:64:50:c5:68:e8:a6:9a:
ba:05:85:c8:94:65:04:7b:7c:0c:5a:57:6a:9b:c1:3f:f6:4a:
8f:62:0a:b2:c8:fe:94:75:d2:bb:94:65:d6:39:b9:8a:21:b8:
5d:b7:10:76:00:09:32:58:86:0a:83:52:3a:5a:f2:0b:c9:1c:
41:87:78:0f:59:6c:6b:80:e0:b7:0a:87:66:11:8a:6e:89:00:
ab:6d:b3:67:6b:c9:56:cc:0b:c4:35:8e:67:73:a6:ca:9c:da:
cb:34:f8:30:a6:80:c6:b6:89:e6:09:c9:7f:3d:c6:12:8d:a3:
f5:59:26:cb:8c:9a:fc:ec:ab:83:96:a9:63:23:d4:a4:f5:41:
ba:01:fb:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:06:27 2025 by rpki-client