Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3230322e3232312e302f32342d3234203d3e20313431303339.roa
File: 3138352e3230322e3232312e302f32342d3234203d3e20313431303339.roa (raw, json)
Hash identifier: yVXq7dnluXeHn9TR9ikb1NS4PrDHCt9Jsvv9Qax/qu0=
Subject key identifier: 22:12:B3:CB:B4:FF:F3:EE:2C:02:67:3B:42:5C:77:39:5B:27:C2:A8
Certificate issuer: /CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Certificate serial: 477BCD967BF34FECB1C4A1A070C1079BA49EAF31
Authority key identifier: BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3230322e3232312e302f32342d3234203d3e20313431303339.roa
Signing time: Mon 27 Mar 2023 08:27:26 +0000
ROA not before: Mon 27 Mar 2023 08:22:26 +0000
ROA not after: Mon 25 Mar 2024 08:27:26 +0000
asID: 141039
IP address blocks: 185.202.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:7b:cd:96:7b:f3:4f:ec:b1:c4:a1:a0:70:c1:07:9b:a4:9e:af:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Validity
Not Before: Mar 27 08:22:26 2023 GMT
Not After : Mar 25 08:27:26 2024 GMT
Subject: CN=2212B3CBB4FFF3EE2C02673B425C77395B27C2A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e8:91:be:f7:70:6b:7f:67:1e:49:00:b6:38:
3c:fe:85:23:22:d2:cb:50:2c:35:43:d5:a9:75:2b:
0e:93:ad:b9:9c:49:15:a5:f1:ca:11:1d:2e:98:6e:
bd:51:df:cc:30:31:62:56:f9:5c:11:40:a0:0c:96:
a2:f5:05:bb:e7:2b:7b:fa:d2:66:23:f7:5d:a0:e8:
0e:8b:64:04:ed:ed:65:b6:6e:9b:b9:df:83:74:5a:
b7:ae:4b:8b:42:fd:b7:ff:18:3e:48:ff:7b:60:a1:
28:b0:b3:2b:9c:12:c0:50:a0:a0:e5:0b:52:c9:70:
65:38:f4:42:12:42:d1:fd:0e:f9:80:da:e4:0c:15:
51:ca:da:c3:5f:c7:ba:7d:c8:dd:9e:5e:ad:0d:60:
05:db:a1:1f:d2:20:e7:33:9b:b3:93:27:a7:e3:e5:
a0:94:97:c2:20:74:21:49:c3:ef:5e:e3:62:89:6d:
55:3c:49:45:1d:d8:3b:db:d0:9d:17:91:5b:f5:ee:
bc:9c:d3:e6:f7:3d:0a:07:2a:61:4a:7b:dc:50:db:
3c:11:71:dd:fc:83:3d:80:23:19:6f:65:24:79:7a:
8d:ee:1d:bc:84:f0:01:11:ec:42:de:38:f3:25:e6:
21:27:a7:4d:54:ba:47:b2:d0:f6:c4:2f:7a:41:e8:
cf:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:12:B3:CB:B4:FF:F3:EE:2C:02:67:3B:42:5C:77:39:5B:27:C2:A8
X509v3 Authority Key Identifier:
keyid:BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/BB8A2C88C52554D49F6B790137C3BAB687B2F956.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3230322e3232312e302f32342d3234203d3e20313431303339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.221.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:88:30:cb:7c:62:84:15:88:38:b2:0d:b8:fe:4f:c5:d0:e6:
72:1a:9f:7c:f0:45:33:f3:98:2a:03:09:06:b4:ce:a6:3d:f6:
29:eb:07:aa:f1:4c:6a:e3:8a:01:84:48:7f:bf:ff:eb:40:b7:
64:7e:ce:d5:60:c1:46:0e:87:46:6d:7a:99:bf:b7:2e:c0:ea:
e2:78:6f:29:d8:cf:ef:3b:af:0c:31:1e:af:35:ff:ba:0d:e4:
b9:a0:67:0d:c4:e7:c9:a9:0d:5d:42:10:59:6c:d8:d9:f8:78:
2a:60:1c:b0:5c:ba:a3:b0:f2:e3:57:38:3b:e1:ef:df:6a:36:
a4:7e:14:2a:ff:0f:6d:39:ef:ce:a2:b8:a0:19:af:a2:be:e8:
4e:84:e7:75:77:13:e3:58:6e:e2:86:5c:fa:b9:8a:50:e0:50:
8d:04:92:38:10:95:c3:37:26:8a:29:2b:69:44:f6:0a:93:ac:
af:93:2e:df:59:cb:40:53:42:01:7f:66:3b:87:26:11:2b:29:
49:59:94:c0:91:4f:45:09:0c:8e:f9:23:af:9c:95:66:65:ee:
7a:7e:0f:52:d7:cc:b6:fd:ac:5c:82:17:c1:db:0d:d0:8b:bb:
9c:f9:69:52:c7:7b:8e:85:bb:4b:8a:23:5e:62:f1:5d:d4:a4:
30:08:18:73
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgIUR3vNlnvzT+yxxKGgcMEHm6SerzEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYmI4YTJjODhjNTI1NTRkNDlmNmI3OTAxMzdjM2JhYjY4
N2IyZjk1NjAeFw0yMzAzMjcwODIyMjZaFw0yNDAzMjUwODI3MjZaMDMxMTAvBgNV
BAMTKDIyMTJCM0NCQjRGRkYzRUUyQzAyNjczQjQyNUM3NzM5NUIyN0MyQTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH6JG+93Brf2ceSQC2ODz+hSMi
0stQLDVD1al1Kw6TrbmcSRWl8coRHS6Ybr1R38wwMWJW+VwRQKAMlqL1BbvnK3v6
0mYj912g6A6LZATt7WW2bpu534N0WreuS4tC/bf/GD5I/3tgoSiwsyucEsBQoKDl
C1LJcGU49EISQtH9DvmA2uQMFVHK2sNfx7p9yN2eXq0NYAXboR/SIOczm7OTJ6fj
5aCUl8IgdCFJw+9e42KJbVU8SUUd2Dvb0J0XkVv17ryc0+b3PQoHKmFKe9xQ2zwR
cd38gz2AIxlvZSR5eo3uHbyE8AER7ELeOPMl5iEnp01Uukey0PbEL3pB6M9LAgMB
AAGjggJBMIICPTAdBgNVHQ4EFgQUIhKzy7T/8+4sAmc7Qlx3OVsnwqgwHwYDVR0j
BBgwFoAUu4osiMUlVNSfa3kBN8O6toey+VYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzYvQkI4QTJDODhDNTI1NTRENDlGNkI3OTAxMzdDM0JBQjY4N0IyRjk1Ni5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3U0b3NpTVVsVk5TZmEza0JOOE82dG9l
eS1WWS5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzYvMzEzODM1MmUzMjMwMzIyZTMy
MzIzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzQzMTMwMzMzOS5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEALnK3TANBgkqhkiG9w0BAQsFAAOCAQEArYgwy3xihBWIOLINuP5PxdDmchqf
fPBFM/OYKgMJBrTOpj32KesHqvFMauOKAYRIf7//60C3ZH7O1WDBRg6HRm16mb+3
LsDq4nhvKdjP7zuvDDEerzX/ug3kuaBnDcTnyakNXUIQWWzY2fh4KmAcsFy6o7Dy
41c4O+Hv32o2pH4UKv8PbTnvzqK4oBmvor7oToTndXcT41hu4oZc+rmKUOBQjQSS
OBCVwzcmiikraUT2CpOsr5Mu31nLQFNCAX9mO4cmESspSVmUwJFPRQkMjvkjr5yV
ZmXuen4PUtfMtv2sXIIXwdsN0Iu7nPlpUsd7joW7S4ojXmLxXdSkMAgYcw==
-----END CERTIFICATE-----
Generated at Fri Oct 20 12:57:18 2023 by rpki-client on console-fra.rpki-client.org