Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3230392e3232302e302f32342d3234203d3e20323033333830.roa
File: 3138352e3230392e3232302e302f32342d3234203d3e20323033333830.roa (raw, json)
Hash identifier: S0WlyG6s8gbn8WRtSvPgQFZoYLb9w1kNj+Jhd60GQyE=
Subject key identifier: 45:C0:0C:FE:79:52:52:1E:96:27:15:BD:D0:80:F1:4B:55:FE:D8:B9
Certificate issuer: /CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Certificate serial: 685D034AAAD65FE4301C49B6C9A9A3484E413454
Authority key identifier: BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3230392e3232302e302f32342d3234203d3e20323033333830.roa
Signing time: Mon 27 Mar 2023 08:27:22 +0000
ROA not before: Mon 27 Mar 2023 08:22:22 +0000
ROA not after: Mon 25 Mar 2024 08:27:22 +0000
asID: 203380
IP address blocks: 185.209.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:5d:03:4a:aa:d6:5f:e4:30:1c:49:b6:c9:a9:a3:48:4e:41:34:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Validity
Not Before: Mar 27 08:22:22 2023 GMT
Not After : Mar 25 08:27:22 2024 GMT
Subject: CN=45C00CFE7952521E962715BDD080F14B55FED8B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:47:4c:e9:9b:79:8e:4d:67:3b:ae:91:b8:53:
3f:e9:e1:a3:64:46:99:2e:03:5c:06:37:37:c0:40:
5e:11:39:cb:e9:93:20:42:1c:40:1c:64:00:e7:8d:
59:3c:75:a1:cd:fc:c1:01:ff:a4:5a:eb:03:fa:7e:
41:86:3e:5c:92:27:6c:b3:4a:1b:5c:12:29:8a:d7:
84:6e:ee:89:1d:47:5d:d0:4e:9f:2f:67:34:6f:f8:
da:79:33:9a:30:9a:a4:bc:da:51:12:8f:fb:bd:32:
b2:94:8e:aa:33:b5:3e:f0:2e:52:9f:f4:ef:ea:c8:
25:e5:27:f5:b6:a3:9a:c3:ef:c9:32:23:b0:1e:0d:
f1:3b:c3:67:c2:67:02:ed:4f:86:db:29:16:8a:f0:
79:4b:10:84:c1:ef:54:23:3b:02:bf:64:54:7c:0b:
ff:53:6c:d6:34:4c:c5:9d:5f:07:70:2e:83:f4:f9:
cc:3d:85:6f:22:f5:03:ee:df:03:ae:13:4f:e7:99:
65:d4:f0:fc:cc:95:57:17:3d:32:f6:0c:ee:78:45:
2e:5f:1e:fe:a3:d0:bc:a9:32:93:ef:bc:01:ff:b7:
af:78:01:88:f2:ec:97:9d:91:9c:13:f4:8d:6d:e3:
9f:00:0e:1f:69:35:09:68:79:80:b4:99:b8:3f:6a:
1e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:C0:0C:FE:79:52:52:1E:96:27:15:BD:D0:80:F1:4B:55:FE:D8:B9
X509v3 Authority Key Identifier:
keyid:BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/BB8A2C88C52554D49F6B790137C3BAB687B2F956.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3230392e3232302e302f32342d3234203d3e20323033333830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.220.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:62:e2:3a:fe:e5:df:47:9b:37:9b:11:9b:9d:76:04:be:5a:
a8:c1:63:2a:65:8c:ee:75:5e:71:bc:2d:7f:fe:29:7f:30:aa:
09:71:12:e0:88:5a:dc:fd:49:45:93:58:17:76:f5:b6:5a:45:
ae:1f:5b:3b:3b:2f:1f:90:fe:6d:b5:03:de:da:29:17:e2:28:
f8:41:ea:5d:ea:fb:e2:00:ac:b8:eb:4b:2b:2d:36:61:e1:2b:
b4:11:ec:55:51:ec:3d:01:4b:4f:b1:0c:3c:67:2c:dc:c4:8a:
04:73:83:15:74:0d:5a:f0:80:06:7e:6c:28:c2:f4:9f:ad:5a:
f6:f5:6e:39:3b:7a:88:ff:e9:13:ca:22:33:89:43:bc:1d:6c:
80:7d:35:50:4b:38:2d:a0:a9:ec:b3:a1:52:4a:91:8d:94:ef:
8e:39:83:66:87:41:61:b9:9b:1b:dd:06:a9:73:71:f6:0f:15:
6e:0f:3e:cd:b5:5c:0e:93:ae:76:5b:f2:f8:c5:56:35:eb:c0:
97:25:2d:b2:88:ca:e2:62:f8:27:1f:17:70:9c:6f:71:43:6b:
9b:89:cd:bf:7f:92:2a:03:65:81:57:b0:3f:25:07:86:ea:fd:
9d:b0:69:ab:7d:c7:e9:33:a6:f6:e0:42:4e:12:18:34:68:e1:
b2:03:a2:c3
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgIUaF0DSqrWX+QwHEm2yamjSE5BNFQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYmI4YTJjODhjNTI1NTRkNDlmNmI3OTAxMzdjM2JhYjY4
N2IyZjk1NjAeFw0yMzAzMjcwODIyMjJaFw0yNDAzMjUwODI3MjJaMDMxMTAvBgNV
BAMTKDQ1QzAwQ0ZFNzk1MjUyMUU5NjI3MTVCREQwODBGMTRCNTVGRUQ4QjkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2R0zpm3mOTWc7rpG4Uz/p4aNk
RpkuA1wGNzfAQF4ROcvpkyBCHEAcZADnjVk8daHN/MEB/6Ra6wP6fkGGPlySJ2yz
ShtcEimK14Ru7okdR13QTp8vZzRv+Np5M5owmqS82lESj/u9MrKUjqoztT7wLlKf
9O/qyCXlJ/W2o5rD78kyI7AeDfE7w2fCZwLtT4bbKRaK8HlLEITB71QjOwK/ZFR8
C/9TbNY0TMWdXwdwLoP0+cw9hW8i9QPu3wOuE0/nmWXU8PzMlVcXPTL2DO54RS5f
Hv6j0LypMpPvvAH/t694AYjy7JedkZwT9I1t458ADh9pNQloeYC0mbg/ah4hAgMB
AAGjggJBMIICPTAdBgNVHQ4EFgQURcAM/nlSUh6WJxW90IDxS1X+2LkwHwYDVR0j
BBgwFoAUu4osiMUlVNSfa3kBN8O6toey+VYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzYvQkI4QTJDODhDNTI1NTRENDlGNkI3OTAxMzdDM0JBQjY4N0IyRjk1Ni5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3U0b3NpTVVsVk5TZmEza0JOOE82dG9l
eS1WWS5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzYvMzEzODM1MmUzMjMwMzkyZTMy
MzIzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzAzMzMzMzgzMC5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEALnR3DANBgkqhkiG9w0BAQsFAAOCAQEATGLiOv7l30ebN5sRm512BL5aqMFj
KmWM7nVecbwtf/4pfzCqCXES4Iha3P1JRZNYF3b1tlpFrh9bOzsvH5D+bbUD3top
F+Io+EHqXer74gCsuOtLKy02YeErtBHsVVHsPQFLT7EMPGcs3MSKBHODFXQNWvCA
Bn5sKML0n61a9vVuOTt6iP/pE8oiM4lDvB1sgH01UEs4LaCp7LOhUkqRjZTvjjmD
ZodBYbmbG90GqXNx9g8Vbg8+zbVcDpOudlvy+MVWNevAlyUtsojK4mL4Jx8XcJxv
cUNrm4nNv3+SKgNlgVewPyUHhur9nbBpq33H6TOm9uBCThIYNGjhsgOiww==
-----END CERTIFICATE-----
Generated at Fri Oct 20 12:57:18 2023 by rpki-client on console-fra.rpki-client.org