Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3230392e3232302e302f32342d3234203d3e20323031383832.roa
File: 3138352e3230392e3232302e302f32342d3234203d3e20323031383832.roa (raw, json)
Hash identifier: luMKGQUSiBLOa3nieWhTaYSvkNcJ/9Ir9JrEQZSh5pA=
Subject key identifier: 17:27:ED:1F:C9:A1:3E:0D:54:D1:8B:BB:14:CF:E3:CB:86:34:99:00
Certificate issuer: /CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Certificate serial: 2A1F17910C7A008432D2B9EC76F6A2997CA87591
Authority key identifier: BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3230392e3232302e302f32342d3234203d3e20323031383832.roa
Signing time: Mon 27 Mar 2023 08:27:22 +0000
ROA not before: Mon 27 Mar 2023 08:22:22 +0000
ROA not after: Mon 25 Mar 2024 08:27:22 +0000
asID: 201882
IP address blocks: 185.209.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:1f:17:91:0c:7a:00:84:32:d2:b9:ec:76:f6:a2:99:7c:a8:75:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Validity
Not Before: Mar 27 08:22:22 2023 GMT
Not After : Mar 25 08:27:22 2024 GMT
Subject: CN=1727ED1FC9A13E0D54D18BBB14CFE3CB86349900
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:eb:e7:4f:e6:98:5f:56:b7:8a:e5:65:72:25:
91:e5:dd:6f:78:47:bb:68:34:40:c0:c8:fd:3a:01:
af:6e:ba:1b:9e:7a:57:1c:3d:09:5a:10:44:09:02:
19:a2:f1:c4:c3:74:47:ae:f4:cf:69:d3:09:8a:07:
80:6f:93:82:9d:ea:71:39:d0:4a:0c:8a:19:27:3e:
9b:e1:8a:d7:43:40:a3:f3:23:2e:52:39:e6:64:d0:
fd:d9:72:47:a8:22:bd:2f:8d:35:14:30:a9:47:23:
48:70:82:9a:25:0c:3a:86:ae:ff:75:eb:15:db:b5:
c9:2f:7d:2e:00:d4:20:29:ed:f5:bc:7a:cf:ff:55:
72:8c:64:4c:45:83:fa:7e:81:94:a3:bc:eb:2a:dd:
a3:c4:0e:97:c4:9d:20:12:e4:78:89:15:f8:ee:b3:
d7:80:f2:1d:b5:62:1d:a1:84:e0:3a:04:37:ee:28:
0c:eb:bd:46:4d:72:95:4e:53:08:d9:ef:ae:4a:fc:
cc:65:cb:0a:69:88:91:e5:a8:06:c2:6b:ef:03:69:
75:07:0c:17:82:b1:5b:ae:21:68:7b:6f:17:0f:9c:
81:45:9e:ea:50:45:4a:8d:c3:85:e0:9d:b3:e2:31:
ed:19:95:66:b1:0c:63:c0:97:c2:11:49:c7:2b:ff:
15:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:27:ED:1F:C9:A1:3E:0D:54:D1:8B:BB:14:CF:E3:CB:86:34:99:00
X509v3 Authority Key Identifier:
keyid:BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/BB8A2C88C52554D49F6B790137C3BAB687B2F956.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3230392e3232302e302f32342d3234203d3e20323031383832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.220.0/24
Signature Algorithm: sha256WithRSAEncryption
87:0b:30:09:cb:74:62:6a:65:e2:03:39:1f:42:c3:12:d7:cb:
75:10:98:ad:aa:70:9f:ea:e9:39:4c:93:24:4d:57:a8:39:1c:
11:64:2f:06:20:31:40:1e:8d:7b:a1:d6:f1:6c:88:04:24:c5:
32:b8:2c:be:93:a6:33:fc:aa:35:c5:ca:b0:2c:07:d6:3f:a1:
d3:81:2b:ae:e9:ad:b0:40:bc:0c:0a:fa:eb:ff:33:3e:59:fc:
aa:f7:46:d7:72:d3:92:10:4d:0d:4a:19:16:0b:fd:41:c3:9a:
6c:1b:df:fa:b0:8b:5c:4b:ba:a2:b8:21:66:58:22:6e:f5:72:
48:a5:f3:6a:13:0a:55:d6:e8:f8:c4:8f:c8:8e:c5:d9:42:e5:
4b:6e:f6:ea:45:82:89:bb:17:46:58:9a:58:4b:f0:81:5a:ef:
81:63:7a:57:42:db:67:71:66:45:da:1d:5c:83:73:70:ac:8a:
64:84:b2:73:52:6b:09:45:93:80:f9:69:68:d3:d8:e1:9f:ac:
ac:34:08:e1:ec:ff:50:c1:a9:85:33:4d:34:f6:d7:73:3a:35:
78:f0:28:6a:73:b2:c9:33:ac:29:d2:93:27:5f:4a:24:af:27:
03:4b:67:6a:f9:19:29:6f:aa:f5:b3:58:c3:69:45:61:a5:e7:
87:b8:c5:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 20 12:48:46 2023 by rpki-client on console-ams.rpki-client.org