Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3230332e3231362e302f32342d3234203d3e20313336373837.roa
File: 3138352e3230332e3231362e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: oFnrJeFojuZS06BdVZHu25LRbGEy963UapuRmgCzjzg=
Subject key identifier: 04:5B:FF:AD:CA:36:E8:14:70:5F:E8:98:05:DD:9B:0E:D7:0D:5E:58
Certificate issuer: /CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Certificate serial: 0F82D2A8E0D0E7CFEE7A02E3165A1E1D9618F1A6
Authority key identifier: BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3230332e3231362e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 27 Mar 2023 08:27:21 +0000
ROA not before: Mon 27 Mar 2023 08:22:21 +0000
ROA not after: Mon 25 Mar 2024 08:27:21 +0000
asID: 136787
IP address blocks: 185.203.216.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:82:d2:a8:e0:d0:e7:cf:ee:7a:02:e3:16:5a:1e:1d:96:18:f1:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Validity
Not Before: Mar 27 08:22:21 2023 GMT
Not After : Mar 25 08:27:21 2024 GMT
Subject: CN=045BFFADCA36E814705FE89805DD9B0ED70D5E58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:94:7a:48:c4:9a:3c:8c:23:4b:a8:db:96:cc:
9d:ac:f6:89:26:9d:46:d0:94:56:0c:d0:58:9d:05:
11:25:dd:33:f8:d8:9e:4b:bb:e5:20:d5:a6:07:7b:
13:97:8d:0c:53:3d:ed:6b:07:45:c1:a2:94:de:49:
d4:5a:81:fd:cb:7e:2d:72:00:f3:b6:43:76:26:24:
c5:f6:dd:a6:cc:06:f8:7e:c2:7a:80:e3:bb:ba:cb:
84:34:fd:25:bc:e5:3a:db:85:b5:f3:13:be:27:c6:
0c:04:c6:39:9c:bc:57:f9:da:a3:92:10:02:a6:e4:
19:ff:fe:2e:64:fa:15:f8:72:92:dd:18:75:b6:d2:
c3:18:2e:bd:8d:08:9e:4a:08:47:11:57:95:02:e2:
a2:b1:ca:c5:b2:e2:ce:9d:9e:f6:e1:75:21:30:be:
20:cd:ac:1f:71:4b:af:5f:a8:ab:59:e2:b9:31:d7:
b9:22:2a:bd:b8:62:59:ca:05:08:66:e9:8b:d7:25:
cb:25:c0:cb:ac:6f:e8:03:d0:d9:dd:38:2f:ef:17:
24:63:56:a2:1d:a9:ab:1f:6d:a4:de:4b:a5:dd:a5:
f4:88:09:b6:67:32:4b:49:57:7f:92:57:a9:1e:f0:
13:b4:ce:d1:38:a6:dc:83:39:77:f2:07:89:f5:a9:
bf:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:5B:FF:AD:CA:36:E8:14:70:5F:E8:98:05:DD:9B:0E:D7:0D:5E:58
X509v3 Authority Key Identifier:
keyid:BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/BB8A2C88C52554D49F6B790137C3BAB687B2F956.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3230332e3231362e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.216.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:48:d0:4a:ba:ad:f2:48:45:10:db:63:21:2a:72:11:54:6f:
fd:fc:8d:7e:57:25:ed:38:9b:d4:de:7c:ef:9f:90:53:b2:38:
9a:1a:31:eb:16:cb:ae:29:2b:96:ab:5f:86:83:0f:89:10:6b:
ed:5e:2c:b2:89:ed:86:64:20:26:ef:f5:fc:8e:0f:4f:a4:39:
3d:a9:4e:3c:bc:09:2a:8d:74:d5:f3:68:97:fd:0b:49:03:8f:
30:30:3c:95:a9:39:2b:fb:9b:cd:5d:e6:52:4f:da:1b:2a:81:
4c:d1:4d:76:29:bb:79:45:08:78:79:97:4c:bc:25:4f:8b:1d:
fe:3f:d1:52:a1:fb:4d:c1:97:0b:22:d2:91:c8:63:ed:f0:a0:
7c:fc:48:e5:0c:0f:76:e6:e7:b1:ca:a5:18:7f:be:51:6a:5d:
db:65:a3:81:ff:dd:bc:63:79:e2:c6:d8:35:74:f8:6c:78:0b:
08:c8:f0:63:17:7f:f3:5b:53:d4:56:db:d6:ae:92:6a:d1:48:
be:e1:40:71:a3:dd:b4:7c:e8:62:95:b4:af:43:88:86:a5:97:
4d:25:1c:d8:6b:b2:f7:31:d5:05:d5:30:a3:b1:4c:be:d7:e7:
68:8e:51:53:38:c3:80:c0:8b:e7:86:0d:cb:c9:b8:c9:8d:10:
0d:ab:ae:ef
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgIUD4LSqODQ58/uegLjFloeHZYY8aYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYmI4YTJjODhjNTI1NTRkNDlmNmI3OTAxMzdjM2JhYjY4
N2IyZjk1NjAeFw0yMzAzMjcwODIyMjFaFw0yNDAzMjUwODI3MjFaMDMxMTAvBgNV
BAMTKDA0NUJGRkFEQ0EzNkU4MTQ3MDVGRTg5ODA1REQ5QjBFRDcwRDVFNTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/lHpIxJo8jCNLqNuWzJ2s9okm
nUbQlFYM0FidBREl3TP42J5Lu+Ug1aYHexOXjQxTPe1rB0XBopTeSdRagf3Lfi1y
APO2Q3YmJMX23abMBvh+wnqA47u6y4Q0/SW85TrbhbXzE74nxgwExjmcvFf52qOS
EAKm5Bn//i5k+hX4cpLdGHW20sMYLr2NCJ5KCEcRV5UC4qKxysWy4s6dnvbhdSEw
viDNrB9xS69fqKtZ4rkx17kiKr24YlnKBQhm6YvXJcslwMusb+gD0NndOC/vFyRj
VqIdqasfbaTeS6XdpfSICbZnMktJV3+SV6ke8BO0ztE4ptyDOXfyB4n1qb8tAgMB
AAGjggJBMIICPTAdBgNVHQ4EFgQUBFv/rco26BRwX+iYBd2bDtcNXlgwHwYDVR0j
BBgwFoAUu4osiMUlVNSfa3kBN8O6toey+VYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzYvQkI4QTJDODhDNTI1NTRENDlGNkI3OTAxMzdDM0JBQjY4N0IyRjk1Ni5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3U0b3NpTVVsVk5TZmEza0JOOE82dG9l
eS1WWS5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzYvMzEzODM1MmUzMjMwMzMyZTMy
MzEzNjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEALnL2DANBgkqhkiG9w0BAQsFAAOCAQEAHkjQSrqt8khFENtjISpyEVRv/fyN
flcl7Tib1N5875+QU7I4mhox6xbLrikrlqtfhoMPiRBr7V4ssonthmQgJu/1/I4P
T6Q5PalOPLwJKo101fNol/0LSQOPMDA8lak5K/ubzV3mUk/aGyqBTNFNdim7eUUI
eHmXTLwlT4sd/j/RUqH7TcGXCyLSkchj7fCgfPxI5QwPdubnscqlGH++UWpd22Wj
gf/dvGN54sbYNXT4bHgLCMjwYxd/81tT1Fbb1q6SatFIvuFAcaPdtHzoYpW0r0OI
hqWXTSUc2Guy9zHVBdUwo7FMvtfnaI5RUzjDgMCL54YNy8m4yY0QDauu7w==
-----END CERTIFICATE-----
Generated at Fri Oct 20 12:48:46 2023 by rpki-client on console-ams.rpki-client.org