Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3231362e37332e302f32342d3234203d3e20313336373837.roa
File: 3138352e3231362e37332e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: INmEwtLCPOjxI+d6N0E1YZwCHazocN5hxgUC0qJBOFM=
Subject key identifier: 21:95:3F:75:6B:45:C6:4F:15:DC:92:C4:F5:C3:D8:6F:EF:B7:A0:40
Certificate issuer: /CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Certificate serial: 1BDF0471CDBA4E6E54F476B17A0FD8BB9CE608E3
Authority key identifier: BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3231362e37332e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 27 Mar 2023 08:27:13 +0000
ROA not before: Mon 27 Mar 2023 08:22:13 +0000
ROA not after: Mon 25 Mar 2024 08:27:13 +0000
asID: 136787
IP address blocks: 185.216.73.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:df:04:71:cd:ba:4e:6e:54:f4:76:b1:7a:0f:d8:bb:9c:e6:08:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Validity
Not Before: Mar 27 08:22:13 2023 GMT
Not After : Mar 25 08:27:13 2024 GMT
Subject: CN=21953F756B45C64F15DC92C4F5C3D86FEFB7A040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0e:da:2b:02:ea:52:fb:2f:2c:32:5e:b9:4d:
cc:9b:16:e8:b7:c0:70:e0:a6:f6:95:39:7b:73:db:
87:5a:41:9c:0d:e2:41:1c:66:3a:1e:08:e8:ff:64:
c8:df:fe:fe:11:8a:8e:10:af:36:7c:0d:bc:cd:d1:
2c:46:69:91:73:b5:73:46:6a:8b:24:e3:e5:b3:99:
ae:91:33:cf:4d:96:56:1d:2c:03:2d:72:b1:e1:4a:
de:98:5c:58:20:e5:de:51:7e:ee:8e:e0:70:55:7d:
b4:e1:6d:a4:8e:43:90:f4:dd:e3:81:25:85:36:18:
ce:da:fa:9c:2c:7a:e1:fc:ab:ca:f5:36:ca:51:bb:
39:48:94:1f:5d:c8:57:18:46:1e:72:7e:44:53:0a:
1c:90:df:ad:d8:27:7e:8c:24:86:ce:e3:e4:4a:03:
42:d0:35:a1:48:e0:90:94:38:87:d3:79:37:79:a9:
59:e2:3d:e4:e0:5e:04:30:16:72:e5:6f:f0:cb:34:
b7:db:7d:b2:a7:ac:75:00:26:74:f4:00:a8:60:3d:
d9:e7:f0:77:76:e1:b6:9b:9d:91:eb:55:05:53:c8:
25:6b:0b:a9:1b:66:bc:e7:b7:6d:67:a7:fd:7b:1a:
e3:d7:38:d8:41:90:65:db:6f:bc:4a:02:63:9f:cf:
27:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:95:3F:75:6B:45:C6:4F:15:DC:92:C4:F5:C3:D8:6F:EF:B7:A0:40
X509v3 Authority Key Identifier:
keyid:BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/BB8A2C88C52554D49F6B790137C3BAB687B2F956.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3231362e37332e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.73.0/24
Signature Algorithm: sha256WithRSAEncryption
53:80:ac:06:40:01:50:d0:89:18:45:db:a8:23:b1:9e:da:62:
bd:20:63:02:5f:c8:2a:f5:93:4e:74:4d:73:3e:5c:f9:ef:a0:
bc:6a:43:a2:4c:66:26:f7:bb:1c:ee:5c:5c:c7:e4:db:a5:46:
16:8d:65:e6:05:65:46:3c:0b:70:25:13:de:8e:a2:09:25:ea:
0c:9a:a3:77:73:72:75:4c:3a:f1:fc:8f:27:9a:39:69:a7:12:
27:22:76:44:72:fc:15:88:00:a7:7f:cb:85:de:04:6d:5c:a1:
fa:cb:e7:69:54:66:ef:0c:7b:33:dd:a2:30:5e:50:ab:b8:28:
59:7a:f5:b7:25:2e:28:b9:a7:99:81:45:c8:7d:ed:0d:da:f2:
ac:0a:4d:41:f3:29:94:04:3a:9b:89:57:2c:94:ba:c5:e5:6b:
26:c1:50:01:85:8e:2e:26:43:ea:53:9b:2e:44:73:d8:17:01:
44:4b:78:19:fc:d6:d2:d3:e0:88:62:d4:2b:9c:25:18:35:f6:
83:d4:5c:d0:8b:d8:f8:cc:7b:c7:4b:dd:f3:01:30:50:67:78:
43:41:0b:b1:6e:73:c1:d3:3d:99:c6:d1:96:70:84:d3:5b:8e:
71:8d:77:b6:1a:1e:76:51:54:8a:3e:c3:49:29:7c:a5:28:ab:
0f:d5:f2:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 20 12:48:46 2023 by rpki-client on console-ams.rpki-client.org