Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/108/322e35392e3135362e302f32342d3332203d3e203531313637.roa
File: 322e35392e3135362e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: hoTwwRwA26gvdbJIv5A6OrWJKgKLtoJP62Kk99B6ioA=
Subject key identifier: 03:ED:05:4A:C8:D5:8D:D1:09:E8:2D:9D:73:53:29:CC:90:89:F7:C6
Certificate issuer: /CN=dd2a9a475e7b97e1befcfce473c72a08eb471c1a
Certificate serial: 1D2684AB2659D4E8936F890FF1143254EA177901
Authority key identifier: DD:2A:9A:47:5E:7B:97:E1:BE:FC:FC:E4:73:C7:2A:08:EB:47:1C:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3SqaR157l-G-_Pzkc8cqCOtHHBo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/108/322e35392e3135362e302f32342d3332203d3e203531313637.roa
Signing time: Mon 27 Mar 2023 08:27:45 +0000
ROA not before: Mon 27 Mar 2023 08:22:45 +0000
ROA not after: Mon 25 Mar 2024 08:27:45 +0000
asID: 51167
IP address blocks: 2.59.156.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:26:84:ab:26:59:d4:e8:93:6f:89:0f:f1:14:32:54:ea:17:79:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd2a9a475e7b97e1befcfce473c72a08eb471c1a
Validity
Not Before: Mar 27 08:22:45 2023 GMT
Not After : Mar 25 08:27:45 2024 GMT
Subject: CN=03ED054AC8D58DD109E82D9D735329CC9089F7C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:13:e8:5f:5d:af:9f:ab:52:63:75:0c:db:a3:
c8:2d:85:b8:9d:dc:5c:b1:75:2b:4e:6a:27:cc:1d:
5f:d2:c8:86:f5:84:d4:7a:0d:3b:20:50:d2:12:76:
eb:d5:17:99:e7:98:87:02:e1:52:84:b5:7a:07:53:
a8:8a:17:14:a9:0d:48:1b:15:e1:7c:b0:14:e7:1e:
aa:d9:ae:5b:4a:b5:5a:7c:2a:8f:77:0a:7e:9a:bc:
f4:d3:ef:1a:e2:e7:09:40:c4:72:53:82:4f:ac:6f:
8a:5b:64:aa:69:01:e8:b7:d0:c9:0e:f6:45:52:93:
4a:9c:15:60:b1:5e:57:9f:e2:ab:d3:45:9e:ed:4b:
3b:86:4e:f1:09:73:ad:4f:59:ea:57:63:af:ba:a6:
6d:e1:42:04:91:5f:eb:15:d4:69:42:26:99:05:b7:
e7:b0:ed:bd:ae:bb:de:6d:5f:1c:fc:ac:20:d8:47:
e5:c9:68:f9:ea:34:6b:cb:23:a7:c7:5e:34:5c:8f:
69:87:a7:53:af:55:7f:5e:b9:77:d6:87:1d:1b:9a:
a0:9c:a9:ae:8c:cc:f5:c2:f1:39:78:51:bf:b2:49:
30:2f:64:7e:26:be:d6:88:d0:4b:f7:1f:12:87:0e:
7a:77:ec:61:39:40:47:3a:2f:a6:97:65:27:33:d5:
2f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:ED:05:4A:C8:D5:8D:D1:09:E8:2D:9D:73:53:29:CC:90:89:F7:C6
X509v3 Authority Key Identifier:
keyid:DD:2A:9A:47:5E:7B:97:E1:BE:FC:FC:E4:73:C7:2A:08:EB:47:1C:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/108/DD2A9A475E7B97E1BEFCFCE473C72A08EB471C1A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3SqaR157l-G-_Pzkc8cqCOtHHBo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/108/322e35392e3135362e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.156.0/24
Signature Algorithm: sha256WithRSAEncryption
85:27:87:88:ba:5c:64:f2:82:b7:b5:5f:c8:54:03:0c:27:e6:
29:0e:b2:15:07:f0:9e:e6:58:fc:e1:b3:fd:0c:8b:9e:d4:2b:
dc:37:c6:be:ef:60:81:d6:45:ba:1d:6b:64:97:73:e1:51:a3:
d3:38:47:d3:2c:6b:b6:99:f5:6d:01:58:4c:1d:47:80:88:65:
a7:b0:f4:b2:db:d4:13:1e:51:6c:10:a6:99:03:ba:29:6c:b4:
04:83:18:d5:7e:eb:51:f9:12:6e:fa:be:53:c4:a7:12:62:6a:
ce:82:24:91:26:24:41:3a:95:c1:ac:85:1c:e7:6b:15:30:6f:
31:7f:c6:c6:d8:44:a7:1f:80:5f:4f:d4:f0:0d:e6:ac:bd:24:
30:90:9d:eb:27:fd:9f:dc:b7:40:b8:bb:20:57:a9:a3:65:13:
6b:c8:87:bf:81:20:05:61:25:7f:76:dd:11:83:1d:56:ad:c1:
a4:6a:75:49:dc:1b:72:f1:53:d8:11:51:2a:f6:30:f1:37:1e:
53:b0:3e:8d:0a:a3:6f:43:33:d1:c8:42:8d:e5:3a:ef:2d:9e:
86:8f:cf:77:90:be:a3:3f:f8:ab:b0:75:bf:22:d2:ef:49:c2:
30:3d:55:d6:bf:c0:60:8c:99:9c:41:12:ba:5c:d5:6f:b6:1f:
7b:cf:d6:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:10 2024 by rpki-client on console-ams.rpki-client.org