Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3232352e3233342e302f32342d3332203d3e20313336373837.roa
File: 3138352e3232352e3233342e302f32342d3332203d3e20313336373837.roa (raw, json)
Hash identifier: MUfNn8b/1Ay341F7UBUK+hJPU6BaR4ls+ahAw67AIAg=
Subject key identifier: 6C:2A:01:11:61:F5:B8:E4:DE:29:93:68:AF:D8:0B:25:B3:6A:97:E9
Certificate issuer: /CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Certificate serial: 748E7E79B5E6C634B7B4D1C98B6FC3AC337961C1
Authority key identifier: BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3232352e3233342e302f32342d3332203d3e20313336373837.roa
Signing time: Mon 27 Mar 2023 08:27:22 +0000
ROA not before: Mon 27 Mar 2023 08:22:22 +0000
ROA not after: Mon 25 Mar 2024 08:27:22 +0000
asID: 136787
IP address blocks: 185.225.234.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:8e:7e:79:b5:e6:c6:34:b7:b4:d1:c9:8b:6f:c3:ac:33:79:61:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Validity
Not Before: Mar 27 08:22:22 2023 GMT
Not After : Mar 25 08:27:22 2024 GMT
Subject: CN=6C2A011161F5B8E4DE299368AFD80B25B36A97E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b5:d3:43:26:5e:2c:f7:51:90:3c:80:ce:7e:
1d:6f:e0:83:e6:b6:46:5c:7b:f4:58:b3:bf:de:a5:
cd:3b:81:b0:0c:94:e5:f3:46:fd:29:86:fc:b2:77:
42:7d:de:53:ad:18:32:4f:35:82:7a:b1:16:ba:ad:
3a:a0:70:34:15:63:7e:c3:81:37:e1:c3:4f:60:a3:
97:77:62:a6:65:c0:ca:43:e9:e1:5f:b3:3f:0b:b0:
83:45:25:2d:d3:12:68:cb:93:d4:79:30:f1:34:f8:
83:bf:e6:a4:2e:27:d4:0c:66:aa:52:cc:b1:1b:e0:
52:79:f2:05:1e:93:30:34:9d:f1:3a:62:5d:89:c6:
37:be:e4:48:ee:18:81:10:ba:a7:d7:aa:b1:83:ca:
29:e0:8a:e7:0d:e9:76:d2:7d:0b:d6:48:32:d1:d5:
5a:82:12:3d:41:cb:81:0b:04:f1:32:12:51:96:29:
b0:75:06:41:78:e2:6f:08:68:2b:35:12:6e:97:ce:
3c:d7:ca:f0:1c:49:6e:dc:5a:d5:02:fa:07:8e:34:
cf:68:3b:a4:bf:7f:9c:83:31:ae:5c:3d:08:17:2d:
03:b0:3e:a1:98:cd:8e:84:88:2e:74:5a:e6:15:97:
39:bf:5f:70:f1:25:d6:87:08:ac:4f:eb:c7:f6:f2:
d8:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:2A:01:11:61:F5:B8:E4:DE:29:93:68:AF:D8:0B:25:B3:6A:97:E9
X509v3 Authority Key Identifier:
keyid:BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/BB8A2C88C52554D49F6B790137C3BAB687B2F956.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3232352e3233342e302f32342d3332203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.234.0/24
Signature Algorithm: sha256WithRSAEncryption
36:19:47:17:60:eb:ab:18:c9:28:a1:a7:d3:c6:ed:87:44:ba:
8c:30:90:55:e1:eb:a8:8d:97:05:22:41:5c:f4:05:6b:12:49:
1d:b2:f9:ab:04:8f:3f:b8:6f:76:94:11:28:1b:80:a0:47:e9:
89:23:28:84:db:77:cb:5c:5c:26:87:26:97:98:c5:90:9d:1d:
9e:dc:60:60:1d:bd:ac:e4:8d:3c:e0:d6:b8:90:46:32:08:bb:
6e:45:4c:9d:7c:6a:59:a8:ad:0f:3c:9e:1d:69:36:a6:1b:7a:
ea:42:e5:4b:59:83:e9:ae:fe:80:3a:d7:a6:0a:71:a0:4b:11:
61:21:f8:d3:7c:05:2d:80:b4:88:cb:24:b2:df:78:6a:ac:58:
2c:5c:0d:12:f1:1d:d2:d1:89:3d:dc:f4:29:5d:66:44:35:97:
60:39:bb:d8:2c:27:42:0b:43:99:4e:8e:67:aa:dd:81:1b:48:
37:1d:76:05:bd:83:2b:ca:c7:ac:17:5f:1c:36:22:c8:aa:f0:
80:67:8a:c1:26:49:5d:9f:40:07:76:c7:94:d5:c9:d0:b7:8e:
b6:f9:61:5f:b8:a9:76:46:ae:9e:7e:a4:48:51:fb:45:94:70:
6a:ba:cc:d8:6d:f9:45:78:e3:b0:4a:fa:5a:fd:2c:52:81:04:
ec:87:c0:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 20 12:48:46 2023 by rpki-client on console-ams.rpki-client.org