Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3232312e3133322e302f32342d3234203d3e20323036383034.roa
File: 3138352e3232312e3133322e302f32342d3234203d3e20323036383034.roa (raw, json)
Hash identifier: MwkPL3bUOOIt02YGsz68TX0GoHp0jrjYl6NH0qrZLYo=
Subject key identifier: 8A:BE:52:5C:7F:D6:68:15:8E:56:28:43:A6:53:55:1E:71:64:72:06
Certificate issuer: /CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Certificate serial: 3E5EBE562C993BB18A1FAF8D9E598F98FEDD3018
Authority key identifier: BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3232312e3133322e302f32342d3234203d3e20323036383034.roa
Signing time: Mon 27 Mar 2023 08:27:22 +0000
ROA not before: Mon 27 Mar 2023 08:22:22 +0000
ROA not after: Mon 25 Mar 2024 08:27:22 +0000
asID: 206804
IP address blocks: 185.221.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:5e:be:56:2c:99:3b:b1:8a:1f:af:8d:9e:59:8f:98:fe:dd:30:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Validity
Not Before: Mar 27 08:22:22 2023 GMT
Not After : Mar 25 08:27:22 2024 GMT
Subject: CN=8ABE525C7FD668158E562843A653551E71647206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:07:3a:3c:e1:bc:7f:52:1b:9f:19:21:89:a5:
79:33:fb:3d:0c:9a:10:f8:29:e6:d4:e2:8c:02:84:
19:7e:89:b4:80:7e:5a:19:82:cd:0e:b3:2e:fe:46:
46:58:04:7c:b9:a3:f2:90:ff:a4:f9:7c:b4:df:9c:
ef:61:08:56:04:c9:d2:2a:3b:06:84:a0:85:4e:88:
0e:b8:4b:12:c7:ca:6f:cf:a2:1a:b3:ab:cc:db:b7:
cf:d1:e1:50:d2:db:e0:dc:42:8c:21:4a:9b:73:d8:
c0:e7:d0:2e:b1:ac:02:02:2b:4b:ef:df:61:ec:ac:
7d:49:d3:f7:f5:3d:0f:0b:9b:6b:d6:75:ba:49:d8:
22:f7:ed:d5:57:4d:ad:32:59:02:99:cd:0b:47:66:
3c:4e:64:3e:2e:a4:36:c7:d7:49:54:7e:ea:62:c9:
17:22:9f:1f:fa:d7:76:6c:0a:d2:58:0a:9a:68:8d:
b0:e6:31:cd:d3:44:c6:bc:f9:82:2d:87:70:3d:c4:
a6:dd:f1:f6:15:4e:8e:67:57:8d:44:bc:70:c3:e0:
f0:50:61:5d:08:f1:ec:7a:e3:04:dd:b2:6e:99:b0:
fa:bf:f7:fc:d6:35:a2:96:39:d7:fa:55:53:ff:36:
00:9c:36:da:49:51:b4:46:9d:12:1d:dc:28:24:e5:
c6:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:BE:52:5C:7F:D6:68:15:8E:56:28:43:A6:53:55:1E:71:64:72:06
X509v3 Authority Key Identifier:
keyid:BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/BB8A2C88C52554D49F6B790137C3BAB687B2F956.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3232312e3133322e302f32342d3234203d3e20323036383034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.132.0/24
Signature Algorithm: sha256WithRSAEncryption
34:ee:c5:35:fb:14:88:63:c6:52:cf:e5:d4:71:b2:6d:53:c2:
41:9d:e6:99:70:7c:58:2a:04:2a:f4:b9:83:8f:41:30:33:57:
46:e0:2f:bd:fe:aa:32:d6:c5:9f:8b:0c:91:48:70:51:3d:89:
fd:4e:7f:5c:7e:e7:88:49:c0:43:8e:f3:72:e4:f2:86:b7:f6:
7d:e4:8e:8f:99:46:5e:db:7d:7d:37:bf:16:39:3c:37:77:fd:
6d:bb:48:fe:c4:6a:13:92:f3:25:d8:43:ca:dd:20:b5:cb:35:
7b:4d:d1:34:31:08:f7:b4:f2:ef:69:3c:17:24:42:5f:50:db:
50:22:8d:6c:71:87:6c:3f:07:58:f5:98:b5:aa:ff:1d:b7:75:
5c:24:30:41:61:57:77:0f:4f:e6:cc:f6:a7:16:ac:a6:66:57:
82:9b:0d:46:b6:1f:cd:4f:9a:c4:b4:db:fc:29:f9:e9:41:4b:
67:6e:dd:28:05:f4:47:0f:c6:55:46:81:d1:85:74:55:7a:c7:
85:24:8e:63:8f:a7:ac:b2:04:aa:ef:fa:d6:d5:e7:f5:8a:53:
fc:6d:f6:8c:4e:6a:e9:dc:47:f8:8d:31:49:32:32:71:e8:88:
06:bb:a2:bd:d2:08:1a:ef:80:4b:fc:3f:ed:ec:48:02:8a:e5:
0b:ce:94:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:12 2024 by rpki-client on console-ams.rpki-client.org