Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3231362e37322e302f32342d3234203d3e20323033333633.roa
File: 3138352e3231362e37322e302f32342d3234203d3e20323033333633.roa (raw, json)
Hash identifier: 8qgRYo/lJtkUrAUbBePjBCD8jUu9Ai2hBRIbAsjYWvA=
Subject key identifier: C3:93:C7:9A:E9:67:32:9E:FE:04:D2:70:C1:36:78:F3:68:C3:94:42
Certificate issuer: /CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Certificate serial: 376355A51FF88593A6ACA17AC1A2EFBA59954F8F
Authority key identifier: BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3231362e37322e302f32342d3234203d3e20323033333633.roa
Signing time: Sat 23 Sep 2023 15:01:56 +0000
ROA not before: Sat 23 Sep 2023 14:56:56 +0000
ROA not after: Sat 21 Sep 2024 15:01:56 +0000
asID: 203363
IP address blocks: 185.216.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:63:55:a5:1f:f8:85:93:a6:ac:a1:7a:c1:a2:ef:ba:59:95:4f:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Validity
Not Before: Sep 23 14:56:56 2023 GMT
Not After : Sep 21 15:01:56 2024 GMT
Subject: CN=C393C79AE967329EFE04D270C13678F368C39442
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c4:46:63:65:bf:05:fd:ce:cd:2e:c3:ee:c7:
3f:26:6c:2c:7c:d5:85:6b:cf:14:5b:58:0a:09:66:
78:b8:9e:62:f3:5b:51:ad:bd:0f:84:3a:1c:f6:6b:
dc:de:58:2f:81:80:b3:60:d8:a2:86:06:b9:d9:12:
8b:38:df:d8:2a:0f:73:6a:3a:5d:11:ea:ee:09:a1:
51:7a:3f:de:7e:0c:70:29:80:64:9f:39:b7:43:f4:
98:da:87:b2:c8:26:bc:8e:18:f5:f4:4b:3e:14:b5:
d3:ee:f8:4b:11:83:b1:6f:2f:d7:14:b9:d5:fd:84:
46:94:f6:76:62:4a:b4:63:52:04:95:59:bc:c5:f6:
dc:37:4f:6c:0b:94:a8:7a:40:77:37:56:1b:3d:6a:
2c:b0:51:20:5b:7e:27:99:38:81:df:3f:bf:57:59:
ab:bf:cc:f6:47:0f:ea:66:74:1e:8d:77:93:51:ec:
05:f9:54:fa:63:c1:f5:32:f6:ba:f8:28:91:3d:e8:
c7:3b:3c:2e:cb:07:c7:62:59:0f:04:b1:24:b0:26:
56:ef:4d:1c:c5:6d:1d:7e:6f:6f:34:f9:8d:dc:de:
ff:71:81:5b:6d:b5:57:dd:47:7d:46:4e:bd:79:92:
fe:58:e9:f0:90:49:84:43:9d:75:e9:ec:18:bd:07:
d5:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:93:C7:9A:E9:67:32:9E:FE:04:D2:70:C1:36:78:F3:68:C3:94:42
X509v3 Authority Key Identifier:
keyid:BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/BB8A2C88C52554D49F6B790137C3BAB687B2F956.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3231362e37322e302f32342d3234203d3e20323033333633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.72.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:17:78:35:ce:dc:27:8c:d5:9c:0e:96:c4:1c:7d:0a:ed:51:
68:98:5e:bf:93:c6:f9:38:64:92:86:2b:b9:c2:f5:11:b2:38:
f4:9a:c0:89:37:9d:a9:de:22:c4:c7:b0:01:0c:c6:f2:21:ae:
55:92:54:a0:aa:6b:28:2b:81:14:b6:54:e1:c8:ad:36:e0:00:
b1:1a:b9:82:a6:97:2a:4d:5b:d0:db:89:40:8d:24:94:44:87:
a0:05:ae:96:e1:91:96:d2:d0:2d:e2:e6:e1:14:7e:50:b9:07:
ba:92:cd:96:26:fd:7e:10:1c:8f:9e:d5:04:96:93:4b:fb:a3:
c2:56:0c:43:dd:70:c5:f8:aa:e1:42:39:44:a0:17:dc:af:b8:
0c:e2:43:3b:7a:1b:90:6c:c4:1c:99:b9:23:6a:f0:97:af:78:
b3:90:55:67:f7:9e:de:9f:91:07:3c:9c:52:07:eb:5c:df:f3:
06:17:99:1a:68:dd:21:0f:d9:7d:91:9b:7d:86:e3:2b:80:47:
c0:6e:e9:53:57:a2:c4:9d:37:23:28:3a:9a:7b:16:34:c2:88:
76:99:8f:68:fd:18:46:e6:95:df:21:b2:3c:dd:df:f9:90:88:
a0:bf:bf:3b:0a:fb:90:32:92:73:21:6e:90:7b:e7:da:30:7c:
72:da:c0:a2
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUN2NVpR/4hZOmrKF6waLvulmVT48wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYmI4YTJjODhjNTI1NTRkNDlmNmI3OTAxMzdjM2JhYjY4
N2IyZjk1NjAeFw0yMzA5MjMxNDU2NTZaFw0yNDA5MjExNTAxNTZaMDMxMTAvBgNV
BAMTKEMzOTNDNzlBRTk2NzMyOUVGRTA0RDI3MEMxMzY3OEYzNjhDMzk0NDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaxEZjZb8F/c7NLsPuxz8mbCx8
1YVrzxRbWAoJZni4nmLzW1GtvQ+EOhz2a9zeWC+BgLNg2KKGBrnZEos439gqD3Nq
Ol0R6u4JoVF6P95+DHApgGSfObdD9Jjah7LIJryOGPX0Sz4UtdPu+EsRg7FvL9cU
udX9hEaU9nZiSrRjUgSVWbzF9tw3T2wLlKh6QHc3Vhs9aiywUSBbfieZOIHfP79X
Wau/zPZHD+pmdB6Nd5NR7AX5VPpjwfUy9rr4KJE96Mc7PC7LB8diWQ8EsSSwJlbv
TRzFbR1+b280+Y3c3v9xgVtttVfdR31GTr15kv5Y6fCQSYRDnXXp7Bi9B9XvAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUw5PHmulnMp7+BNJwwTZ482jDlEIwHwYDVR0j
BBgwFoAUu4osiMUlVNSfa3kBN8O6toey+VYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzYvQkI4QTJDODhDNTI1NTRENDlGNkI3OTAxMzdDM0JBQjY4N0IyRjk1Ni5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3U0b3NpTVVsVk5TZmEza0JOOE82dG9l
eS1WWS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzYvMzEzODM1MmUzMjMxMzYyZTM3
MzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzMzMzM2MzMucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC52EgwDQYJKoZIhvcNAQELBQADggEBAAsXeDXO3CeM1ZwOlsQcfQrtUWiYXr+T
xvk4ZJKGK7nC9RGyOPSawIk3naneIsTHsAEMxvIhrlWSVKCqaygrgRS2VOHIrTbg
ALEauYKmlypNW9DbiUCNJJREh6AFrpbhkZbS0C3i5uEUflC5B7qSzZYm/X4QHI+e
1QSWk0v7o8JWDEPdcMX4quFCOUSgF9yvuAziQzt6G5BsxByZuSNq8JeveLOQVWf3
nt6fkQc8nFIH61zf8wYXmRpo3SEP2X2Rm32G4yuAR8Bu6VNXosSdNyMoOpp7FjTC
iHaZj2j9GEbmld8hsjzd3/mQiKC/vzsK+5AyknMhbpB759owfHLawKI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:12 2024 by rpki-client on console-ams.rpki-client.org