Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3231312e352e302f32342d3332203d3e203531313637.roa
File: 3138352e3231312e352e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: vP0Kb772rwnxZ7JJl4rUmPyN1tmRJsPCRl/QWjT3Kro=
Subject key identifier: 81:E0:05:B2:AC:A2:DB:B0:DD:DD:20:5A:41:A4:0E:A5:33:C9:9D:42
Certificate issuer: /CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Certificate serial: 605B651A5186C237FA82DE98C1A190614BF03EEC
Authority key identifier: BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3231312e352e302f32342d3332203d3e203531313637.roa
Signing time: Mon 27 Mar 2023 08:27:16 +0000
ROA not before: Mon 27 Mar 2023 08:22:16 +0000
ROA not after: Mon 25 Mar 2024 08:27:16 +0000
asID: 51167
IP address blocks: 185.211.5.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:5b:65:1a:51:86:c2:37:fa:82:de:98:c1:a1:90:61:4b:f0:3e:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Validity
Not Before: Mar 27 08:22:16 2023 GMT
Not After : Mar 25 08:27:16 2024 GMT
Subject: CN=81E005B2ACA2DBB0DDDD205A41A40EA533C99D42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:f4:b6:1b:38:9b:1e:78:64:4c:bd:d9:77:f2:
e3:fa:82:a0:f1:63:7f:94:68:11:31:7d:92:b0:8e:
34:c8:2d:d1:4b:25:57:af:c2:01:08:f9:e3:85:e5:
31:1e:28:02:64:91:50:c5:66:cf:12:28:18:c5:75:
d0:42:c1:d8:23:b7:11:95:1f:e4:cd:57:06:41:0e:
e1:79:a8:fa:7c:d2:27:6e:44:62:5c:02:d1:4d:ee:
95:8e:73:e2:63:b2:3e:39:69:27:24:a6:20:8e:7a:
12:06:84:da:a3:2c:08:1d:a1:2a:7f:78:3b:ee:7f:
e6:1f:71:5c:26:87:5e:37:67:fd:33:ba:ba:81:0a:
fd:f3:88:f7:eb:07:7a:27:26:e1:04:6f:4a:50:85:
89:af:57:29:00:20:41:a6:9c:56:75:fa:bc:4f:1c:
5b:be:51:20:68:cf:41:53:62:3e:f9:34:22:b9:20:
19:e5:6e:ba:e2:7b:77:0f:3b:cc:63:e9:bb:e9:cc:
d6:2d:09:55:ec:59:d4:ca:f9:ee:76:cb:f8:89:fa:
80:98:75:94:70:bb:6c:ba:be:65:73:a8:e9:7e:31:
e5:08:7d:6e:ba:14:27:93:bf:95:ce:9d:da:8c:9a:
24:f0:cf:a0:33:05:0a:af:7d:6d:99:b0:f7:bf:91:
30:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E0:05:B2:AC:A2:DB:B0:DD:DD:20:5A:41:A4:0E:A5:33:C9:9D:42
X509v3 Authority Key Identifier:
keyid:BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/BB8A2C88C52554D49F6B790137C3BAB687B2F956.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3231312e352e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.5.0/24
Signature Algorithm: sha256WithRSAEncryption
73:ea:13:2d:dd:79:20:90:b3:82:fd:89:09:70:0a:03:b8:81:
97:25:40:5a:e8:12:c8:0d:27:00:c3:a4:d7:3f:c7:71:88:91:
99:c6:da:7c:8f:4c:62:f0:cf:ef:1a:f3:05:d4:d9:8d:a2:ae:
94:31:9f:15:36:78:f7:ba:cc:15:82:d5:77:06:31:37:6e:0c:
a4:17:c8:01:52:d7:d5:bd:14:b9:6d:f3:60:a0:10:6c:57:4d:
a7:e8:13:9d:3c:34:fc:19:1c:53:c8:21:7a:2a:d5:0c:48:c5:
04:be:92:2f:e7:9d:ad:89:41:89:48:c0:7d:1c:39:eb:09:95:
b3:67:4d:9c:9d:f0:b3:5e:e1:7c:a6:67:74:46:fc:8b:1c:e7:
31:40:a1:43:b9:7f:07:c1:51:56:23:69:7c:f7:82:6a:2a:c4:
ce:98:1d:af:d1:56:ef:a7:8e:33:ed:a0:11:35:88:c7:aa:50:
e3:48:0c:fd:c3:d8:27:66:a8:c3:b3:ea:31:26:96:3e:8e:be:
a8:e3:b3:69:4c:07:fc:04:b2:7f:c5:39:f2:5d:35:41:d8:b0:
f7:c5:72:4e:14:1a:17:d6:6f:06:d2:9d:61:b1:aa:c5:a4:da:
cf:50:49:b8:18:98:6a:5e:1f:be:30:c1:af:53:8b:80:c9:b2:
fe:23:7f:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:49:02 2025 by rpki-client