Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3230392e3232332e302f32342d3332203d3e203531313637.roa
File: 3138352e3230392e3232332e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: Dia4HW8BouLy98pPcNw7Mrbdwq6osX7BlaI7zvjGCRg=
Subject key identifier: 92:62:56:3F:C9:54:5A:3C:14:85:E7:FF:E2:B1:EA:B5:22:79:B8:D7
Certificate issuer: /CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Certificate serial: 0B8E526AFE89ACDE3D6ABEC0539B0F75E39C588C
Authority key identifier: BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3230392e3232332e302f32342d3332203d3e203531313637.roa
Signing time: Mon 27 Mar 2023 08:27:20 +0000
ROA not before: Mon 27 Mar 2023 08:22:20 +0000
ROA not after: Mon 25 Mar 2024 08:27:20 +0000
asID: 51167
IP address blocks: 185.209.223.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:8e:52:6a:fe:89:ac:de:3d:6a:be:c0:53:9b:0f:75:e3:9c:58:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Validity
Not Before: Mar 27 08:22:20 2023 GMT
Not After : Mar 25 08:27:20 2024 GMT
Subject: CN=9262563FC9545A3C1485E7FFE2B1EAB52279B8D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:7d:c1:63:de:35:75:76:36:c7:53:d9:3f:34:
57:17:9f:2c:0a:c7:91:e1:a9:f0:62:83:f4:b1:ef:
e8:48:39:30:71:05:8d:94:85:c6:6e:a1:48:ad:46:
26:f4:0d:ea:de:3b:8f:71:f8:61:25:16:b9:ec:ac:
b2:0e:a7:f4:8b:66:bb:36:54:0a:1f:9f:25:9b:3f:
44:60:3b:89:8d:65:5d:b9:ff:18:6b:6e:5e:cd:78:
f2:88:2b:72:ad:57:a9:eb:47:59:c2:86:6b:b7:58:
96:17:24:ed:54:d9:a4:ff:b7:df:7c:98:58:91:3c:
f4:26:e4:95:c5:f2:de:1e:45:00:ca:14:8a:d6:89:
0d:7a:b2:7e:5e:78:ad:ff:0b:23:99:c1:c0:c2:34:
e7:fe:5b:1b:45:f7:ce:88:62:fd:8d:7a:69:57:f9:
a8:55:cb:16:66:ed:83:58:f0:fd:fa:be:b0:07:3a:
92:9a:2b:4e:65:00:d9:c8:56:24:c8:36:40:d5:34:
14:ef:a7:76:14:ba:ba:f9:d5:78:c5:76:89:7d:b0:
c1:c8:8d:2f:2e:de:aa:d8:ca:c1:ad:75:d3:8b:9e:
09:94:e0:4f:f7:59:f4:32:89:73:cf:c2:25:2e:ab:
6b:42:b4:db:db:e4:2a:b9:7f:0e:20:98:e5:aa:53:
c0:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:62:56:3F:C9:54:5A:3C:14:85:E7:FF:E2:B1:EA:B5:22:79:B8:D7
X509v3 Authority Key Identifier:
keyid:BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/BB8A2C88C52554D49F6B790137C3BAB687B2F956.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3230392e3232332e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.223.0/24
Signature Algorithm: sha256WithRSAEncryption
46:88:8d:90:f9:32:53:9f:a5:e2:e6:b8:fb:c8:30:9a:75:34:
3e:db:90:27:34:9a:4b:70:a8:05:99:5b:1e:cb:e3:79:42:de:
0e:45:cf:bf:46:da:56:ac:bf:3e:61:b4:54:29:27:71:aa:cc:
9a:28:e7:20:52:f1:8c:bf:8e:75:c6:fd:3c:70:12:ff:b3:5f:
6a:89:e7:40:ba:34:f2:36:8d:63:63:82:89:fd:e7:2d:40:38:
72:0d:cf:4f:a0:0b:04:36:e2:48:4b:0b:cc:d4:e3:cd:25:2e:
42:33:bd:a6:a2:e6:19:ff:e5:1f:eb:6a:2e:87:85:33:a6:c7:
20:1f:91:d5:f2:9b:f5:b5:1c:ca:2c:b8:96:bc:b8:93:e2:68:
20:ab:ed:0a:e7:6b:cd:15:3f:22:18:7c:31:b9:a0:7a:cb:e9:
f4:e9:40:b6:56:57:92:b3:67:55:2f:0f:bc:fc:17:b3:0d:6a:
29:f2:59:2f:2e:f1:73:66:d2:c4:32:16:65:48:fe:aa:06:23:
b3:8a:31:f6:0d:12:a3:f3:82:ae:3a:9e:32:0c:d3:86:11:c9:
39:b5:f1:55:9a:b4:c1:99:aa:1e:76:72:a1:f9:44:65:00:36:
26:68:68:c8:e0:ff:5d:a3:f2:9c:65:3b:6c:4a:fa:3a:37:9a:
9f:ce:83:bc
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUC45Sav6JrN49ar7AU5sPdeOcWIwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYmI4YTJjODhjNTI1NTRkNDlmNmI3OTAxMzdjM2JhYjY4
N2IyZjk1NjAeFw0yMzAzMjcwODIyMjBaFw0yNDAzMjUwODI3MjBaMDMxMTAvBgNV
BAMTKDkyNjI1NjNGQzk1NDVBM0MxNDg1RTdGRkUyQjFFQUI1MjI3OUI4RDcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqfcFj3jV1djbHU9k/NFcXnywK
x5HhqfBig/Sx7+hIOTBxBY2UhcZuoUitRib0DereO49x+GElFrnsrLIOp/SLZrs2
VAofnyWbP0RgO4mNZV25/xhrbl7NePKIK3KtV6nrR1nChmu3WJYXJO1U2aT/t998
mFiRPPQm5JXF8t4eRQDKFIrWiQ16sn5eeK3/CyOZwcDCNOf+WxtF986IYv2NemlX
+ahVyxZm7YNY8P36vrAHOpKaK05lANnIViTINkDVNBTvp3YUurr51XjFdol9sMHI
jS8u3qrYysGtddOLngmU4E/3WfQyiXPPwiUuq2tCtNvb5Cq5fw4gmOWqU8CXAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUkmJWP8lUWjwUhef/4rHqtSJ5uNcwHwYDVR0j
BBgwFoAUu4osiMUlVNSfa3kBN8O6toey+VYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzYvQkI4QTJDODhDNTI1NTRENDlGNkI3OTAxMzdDM0JBQjY4N0IyRjk1Ni5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3U0b3NpTVVsVk5TZmEza0JOOE82dG9l
eS1WWS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzYvMzEzODM1MmUzMjMwMzkyZTMy
MzIzMzJlMzAyZjMyMzQyZDMzMzIyMDNkM2UyMDM1MzEzMTM2Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC50d8wDQYJKoZIhvcNAQELBQADggEBAEaIjZD5MlOfpeLmuPvIMJp1ND7bkCc0
mktwqAWZWx7L43lC3g5Fz79G2lasvz5htFQpJ3GqzJoo5yBS8Yy/jnXG/TxwEv+z
X2qJ50C6NPI2jWNjgon95y1AOHINz0+gCwQ24khLC8zU480lLkIzvaai5hn/5R/r
ai6HhTOmxyAfkdXym/W1HMosuJa8uJPiaCCr7Qrna80VPyIYfDG5oHrL6fTpQLZW
V5KzZ1UvD7z8F7MNainyWS8u8XNm0sQyFmVI/qoGI7OKMfYNEqPzgq46njIM04YR
yTm18VWatMGZqh52cqH5RGUANiZoaMjg/12j8pxlO2xK+jo3mp/Og7w=
-----END CERTIFICATE-----
Generated at Fri Oct 20 12:57:18 2023 by rpki-client on console-fra.rpki-client.org