Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3230392e3232302e302f32342d3234203d3e203431393434.roa
File: 3138352e3230392e3232302e302f32342d3234203d3e203431393434.roa (raw, json)
Hash identifier: UIEHt8UyE33SwnXZCOijEZ/97pJmOzYVqATeudJzovg=
Subject key identifier: 07:DE:85:61:E6:55:DA:6E:D6:CC:FD:11:54:25:49:A6:7A:B1:BF:4D
Certificate issuer: /CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Certificate serial: 7D97A0B8DEA5EF4491F258F572D228917FB01251
Authority key identifier: BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3230392e3232302e302f32342d3234203d3e203431393434.roa
Signing time: Mon 27 Mar 2023 08:27:24 +0000
ROA not before: Mon 27 Mar 2023 08:22:24 +0000
ROA not after: Mon 25 Mar 2024 08:27:24 +0000
asID: 41944
IP address blocks: 185.209.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:97:a0:b8:de:a5:ef:44:91:f2:58:f5:72:d2:28:91:7f:b0:12:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Validity
Not Before: Mar 27 08:22:24 2023 GMT
Not After : Mar 25 08:27:24 2024 GMT
Subject: CN=07DE8561E655DA6ED6CCFD11542549A67AB1BF4D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:fa:d3:78:4e:94:1e:b4:58:80:7e:99:74:99:
ba:7d:c8:02:13:63:8c:3d:6b:a4:ea:8e:96:44:db:
be:a8:62:6c:8d:70:f9:bc:9d:33:85:18:47:5f:b1:
39:fb:27:75:f9:3e:22:83:ae:0b:f7:f4:c1:0d:f5:
d3:10:54:f2:ae:11:c5:3c:55:20:1d:0e:c1:0d:4a:
39:09:b5:de:fc:f4:14:79:e5:03:84:05:80:18:2d:
14:62:ee:e9:d2:c3:a1:58:55:22:f9:26:a6:f8:f5:
74:25:c4:f9:b3:11:d1:b5:9a:0d:87:99:2f:f2:df:
e9:c0:e3:2c:03:98:bc:87:f6:58:0b:5f:45:35:72:
aa:a3:d4:23:ed:86:eb:d2:22:c4:6d:5f:65:62:8a:
78:5d:e2:84:1a:91:99:d5:6f:11:c2:58:77:69:03:
54:62:59:4c:5d:c9:56:38:cf:fb:ca:53:0d:48:a7:
b7:8c:a5:21:54:b2:eb:16:4d:b3:bd:be:ad:e0:50:
4e:72:bb:e0:9b:d3:b4:91:88:2c:4d:a0:db:64:a6:
fd:84:94:80:97:28:35:68:55:14:53:69:8d:b5:19:
d0:28:4c:58:8b:56:1d:49:d6:48:b0:53:0c:40:c2:
ce:5a:8f:b6:e2:8e:75:63:dd:b4:94:35:0e:06:ee:
ab:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:DE:85:61:E6:55:DA:6E:D6:CC:FD:11:54:25:49:A6:7A:B1:BF:4D
X509v3 Authority Key Identifier:
keyid:BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/BB8A2C88C52554D49F6B790137C3BAB687B2F956.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3230392e3232302e302f32342d3234203d3e203431393434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.220.0/24
Signature Algorithm: sha256WithRSAEncryption
80:0c:a4:fd:6e:22:5d:5f:db:44:81:69:82:40:12:33:73:8c:
0a:12:4c:d2:d5:ca:61:e4:a9:64:b6:ab:d2:ff:55:25:e2:7f:
de:e9:3e:17:30:1e:56:4f:0c:a7:9c:8a:75:2e:f7:8a:f6:b6:
c3:d8:81:72:33:a8:76:52:01:fe:4e:7d:f9:9f:ed:ee:fb:42:
bd:e4:31:79:6e:35:c3:e1:f2:bb:fa:63:72:4a:d5:a9:c6:30:
df:69:9a:86:8a:99:e4:39:ca:31:48:b0:8b:36:44:cd:a6:54:
46:40:87:ec:45:69:8c:3b:b6:38:71:3b:22:f0:35:75:4c:08:
e8:83:58:7a:8f:c4:96:ed:25:3d:72:43:3b:2c:4f:d7:99:de:
d6:82:46:3f:69:84:ef:49:1a:3f:ab:79:54:28:9c:a4:be:03:
84:52:6d:52:38:ef:c8:1a:5d:64:a0:b4:fb:56:4a:e0:a6:b9:
ee:3f:73:77:9f:93:fd:71:3e:3b:93:9d:36:38:5e:5c:30:20:
49:fd:9b:42:60:6e:fa:71:38:01:28:c3:b9:eb:6d:10:41:86:
5a:73:c7:5b:96:38:ec:9e:df:e4:bc:5d:fe:95:f1:4a:31:29:
fd:e0:4d:79:24:8c:9e:c9:08:c2:bc:4a:47:0a:f0:2b:bf:d2:
e3:49:5f:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 20 12:48:46 2023 by rpki-client on console-ams.rpki-client.org