Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3230392e3232302e302f32342d3234203d3e20323036383034.roa
File: 3138352e3230392e3232302e302f32342d3234203d3e20323036383034.roa (raw, json)
Hash identifier: Jphn95OGu84AR5/9dVUJthf9PAki60ofPBxDYClxbqE=
Subject key identifier: 82:E8:20:3E:D9:B6:40:F1:1B:C6:73:F6:6E:02:43:D6:E8:BE:D7:EB
Certificate issuer: /CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Certificate serial: 600D37A4055FA425A9807825DDC0BAD2FDDEB939
Authority key identifier: BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3230392e3232302e302f32342d3234203d3e20323036383034.roa
Signing time: Mon 27 Mar 2023 08:27:12 +0000
ROA not before: Mon 27 Mar 2023 08:22:12 +0000
ROA not after: Mon 25 Mar 2024 08:27:12 +0000
asID: 206804
IP address blocks: 185.209.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:0d:37:a4:05:5f:a4:25:a9:80:78:25:dd:c0:ba:d2:fd:de:b9:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Validity
Not Before: Mar 27 08:22:12 2023 GMT
Not After : Mar 25 08:27:12 2024 GMT
Subject: CN=82E8203ED9B640F11BC673F66E0243D6E8BED7EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:c8:27:1a:0e:5e:80:43:cc:2b:47:e3:95:c7:
fd:1a:bd:db:e0:48:bf:3b:c2:ce:68:6a:3d:ca:84:
3f:84:0b:2f:13:7b:d2:de:42:44:89:11:34:04:e0:
9f:cf:35:cc:1a:46:41:76:e5:72:b2:e5:f3:a9:0a:
81:21:ff:c1:3f:19:61:65:56:00:eb:ce:ee:d1:42:
3e:a7:23:0d:fa:e5:4c:54:e8:b0:81:4a:c6:ac:01:
a3:ca:c9:47:55:7f:b3:9a:3e:7c:81:f8:8b:57:28:
e3:af:e5:3e:3c:6b:42:b9:5b:4e:e7:75:1b:3f:9a:
89:35:d5:21:a5:8d:5f:d7:e3:33:a4:99:bb:2f:2f:
d1:23:6c:59:2e:ab:04:51:7e:65:43:80:42:a3:3a:
7d:ec:e0:c6:9b:5e:a6:7b:03:f4:ad:f1:71:0d:47:
b4:fc:71:dc:05:84:d8:dc:85:13:e0:72:97:ad:e7:
de:3c:37:9d:d6:43:72:49:c9:00:a7:6b:d0:f3:40:
a8:04:8b:fe:b8:97:5e:03:29:5b:3f:50:67:70:54:
4a:4a:23:50:6a:c7:66:65:2f:49:13:cd:0a:94:41:
02:66:89:40:ff:f7:61:bc:41:a3:c8:e4:47:9c:0f:
7d:20:58:3d:a4:cf:74:86:0c:8d:87:bb:21:1c:15:
75:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:E8:20:3E:D9:B6:40:F1:1B:C6:73:F6:6E:02:43:D6:E8:BE:D7:EB
X509v3 Authority Key Identifier:
keyid:BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/BB8A2C88C52554D49F6B790137C3BAB687B2F956.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3230392e3232302e302f32342d3234203d3e20323036383034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.220.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:8a:6f:1c:fd:a9:52:f8:e9:b5:58:02:21:56:18:4f:51:8b:
06:9b:26:33:cd:ff:f2:fb:4c:24:9b:5a:fe:f9:d3:94:a2:00:
d0:ae:e9:ab:6f:0f:3a:af:2b:17:4e:58:6e:f3:8c:47:a8:11:
ed:c8:4c:1b:8a:9f:b3:0d:a7:18:3e:60:af:fb:aa:e8:72:6b:
7a:67:0f:b8:56:6f:51:05:d6:6e:0b:c9:9b:aa:e9:42:c9:84:
9b:f3:95:d5:73:76:b7:bf:3d:b5:23:ec:15:77:d8:28:32:9b:
8e:5b:e7:62:90:e3:d7:9c:dd:40:c9:fb:b0:32:60:c7:b7:7f:
2c:1a:b9:fe:f0:3b:b3:62:ec:02:56:ed:e8:d1:f3:f3:75:62:
92:ee:87:a3:d3:87:40:e2:99:5e:9e:a1:72:be:5d:7b:04:3e:
f5:a9:0d:66:21:7c:e5:72:0d:12:6b:f9:67:b7:88:ed:16:08:
1b:df:6f:b1:b2:e6:01:33:6b:df:8d:b9:bc:4d:92:86:3c:d9:
9f:03:68:8e:60:aa:3e:04:57:cf:97:da:4d:12:86:09:b1:0a:
8e:68:5e:fc:12:09:9f:0b:ca:f2:bd:2d:08:9b:be:15:62:f6:
91:d5:c5:28:4b:25:85:cf:cc:f0:03:5d:f2:dd:2f:4d:70:ac:
24:cc:ba:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 20 12:57:18 2023 by rpki-client on console-fra.rpki-client.org