Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/0/38322e3131382e33312e302f32342d3234203d3e20313431313538.roa
File: 38322e3131382e33312e302f32342d3234203d3e20313431313538.roa (raw, json)
Hash identifier: 1GxlRPNGMubf5gzlQaSVeL0FIjdp3SHn6/fnEtT6kJk=
Subject key identifier: 52:88:32:13:5A:C7:72:5D:01:19:E5:59:37:4A:A5:3F:BA:4E:AB:B7
Certificate issuer: /CN=df6f1af9e919a9653268327b98814cafeb5c0a13
Certificate serial: 734B797A013543DCF8D17F3732EEB75F3235B874
Authority key identifier: DF:6F:1A:F9:E9:19:A9:65:32:68:32:7B:98:81:4C:AF:EB:5C:0A:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/328a-ekZqWUyaDJ7mIFMr-tcChM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/0/38322e3131382e33312e302f32342d3234203d3e20313431313538.roa
Signing time: Sat 29 Apr 2023 09:34:58 +0000
ROA not before: Sat 29 Apr 2023 09:29:58 +0000
ROA not after: Sat 27 Apr 2024 09:34:58 +0000
asID: 141158
IP address blocks: 82.118.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:4b:79:7a:01:35:43:dc:f8:d1:7f:37:32:ee:b7:5f:32:35:b8:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df6f1af9e919a9653268327b98814cafeb5c0a13
Validity
Not Before: Apr 29 09:29:58 2023 GMT
Not After : Apr 27 09:34:58 2024 GMT
Subject: CN=528832135AC7725D0119E559374AA53FBA4EABB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e7:b1:e3:66:dd:de:ea:2b:b0:5f:62:56:e6:
94:04:df:c3:8c:c8:78:7b:41:b7:b0:a6:60:df:54:
8c:d5:da:d6:fe:d7:1b:f6:36:eb:5f:4d:5e:1b:59:
d2:52:db:ce:90:e5:92:18:c5:a9:bd:3e:e3:56:dc:
b6:02:c7:8c:86:df:0b:50:ca:de:6f:77:04:0c:77:
3c:72:e0:b6:9a:e9:d8:49:fe:de:b4:f0:ee:85:7d:
0d:fd:e1:ef:33:fe:4d:ca:8e:9f:03:90:39:c1:ce:
1d:91:e8:9b:a2:72:5d:56:0b:47:e0:fc:06:2f:c3:
6c:d2:0e:c5:1e:52:6c:8c:e3:72:94:ef:5d:26:2c:
25:fa:1a:48:5f:d0:e5:6e:80:bf:cf:f2:9c:38:be:
46:49:ea:ab:29:da:67:44:36:01:1b:4b:09:88:ac:
c1:9a:bb:fd:6c:46:42:7e:02:6e:67:4a:ef:d8:ab:
71:79:2f:dd:1d:c2:86:7a:90:2b:6b:12:0c:59:15:
c9:14:03:90:b1:b6:08:a1:72:5f:c9:fb:41:0e:3e:
47:bf:2a:81:4e:b7:f6:5d:07:41:a1:92:85:8b:05:
fa:88:6e:35:6c:16:22:53:40:d2:0e:0d:39:1e:0d:
41:13:5a:11:5b:4f:11:d8:ed:de:86:f3:87:ac:a1:
d9:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:88:32:13:5A:C7:72:5D:01:19:E5:59:37:4A:A5:3F:BA:4E:AB:B7
X509v3 Authority Key Identifier:
keyid:DF:6F:1A:F9:E9:19:A9:65:32:68:32:7B:98:81:4C:AF:EB:5C:0A:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/0/DF6F1AF9E919A9653268327B98814CAFEB5C0A13.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/328a-ekZqWUyaDJ7mIFMr-tcChM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/0/38322e3131382e33312e302f32342d3234203d3e20313431313538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.31.0/24
Signature Algorithm: sha256WithRSAEncryption
07:9c:34:13:69:ef:8c:25:e7:c1:50:9e:1a:fd:31:01:c5:0d:
ef:35:38:8b:68:47:53:53:04:a9:76:fb:5f:2a:c0:eb:8d:6a:
58:44:36:c5:ef:3b:92:3a:9f:43:9c:29:c3:b6:af:87:78:00:
65:88:5b:f7:c9:e2:f0:df:df:46:b3:33:58:f4:82:fa:ac:a1:
4f:13:07:82:5a:79:44:49:da:d6:a3:47:89:a5:0e:69:27:30:
f9:5e:c8:3b:36:4a:24:78:f3:8a:42:6e:db:4d:92:7c:e5:10:
39:94:01:03:fa:88:07:a6:db:4e:6e:d1:62:cf:80:2d:ea:a6:
86:1f:fb:e3:56:b3:5c:2d:7a:fd:05:48:a5:25:0e:15:de:f3:
60:47:6b:fa:d5:78:8f:5d:7f:8a:b5:44:09:f3:44:39:0e:ed:
bc:2d:91:09:be:4e:59:a7:c6:05:e2:95:05:8b:42:18:fe:4c:
eb:89:c8:24:9d:8e:8c:98:cf:bc:1f:f2:2e:05:4f:da:b8:3e:
b7:4b:1d:83:d6:62:61:42:f5:ef:89:e3:85:d8:8d:fc:c6:10:
dd:28:cb:fb:15:f1:b0:10:a2:27:49:02:70:bb:5b:f2:4e:9d:
55:1e:fc:a7:79:fb:d0:1c:17:46:3d:3e:2d:32:a4:e4:b5:f2:
89:c9:cd:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org