Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3232392e3131392e302f32342d3332203d3e203531313637.roa
File: 3138352e3232392e3131392e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: ykxYvxDsG5pcZV5DCSp6ichutqxAepKSG0N0e1Cts6g=
Subject key identifier: 65:41:8A:F9:2F:38:BE:13:72:2F:39:5E:CB:2A:B0:68:9C:25:E0:2C
Certificate issuer: /CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Certificate serial: 34E32FC393355131B6596D93B6C1725E5BA0B0E0
Authority key identifier: BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3232392e3131392e302f32342d3332203d3e203531313637.roa
Signing time: Mon 27 Mar 2023 08:27:20 +0000
ROA not before: Mon 27 Mar 2023 08:22:20 +0000
ROA not after: Mon 25 Mar 2024 08:27:20 +0000
asID: 51167
IP address blocks: 185.229.119.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:e3:2f:c3:93:35:51:31:b6:59:6d:93:b6:c1:72:5e:5b:a0:b0:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Validity
Not Before: Mar 27 08:22:20 2023 GMT
Not After : Mar 25 08:27:20 2024 GMT
Subject: CN=65418AF92F38BE13722F395ECB2AB0689C25E02C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:80:fe:e6:08:e9:b0:0d:e4:30:c3:c4:0f:e8:
4c:e7:7c:35:05:44:84:67:d3:71:9b:ba:91:48:59:
58:c5:e6:bd:a7:e2:8b:11:39:ac:ef:bb:97:4c:9e:
69:06:13:ed:cd:4c:3a:3b:57:84:cf:3b:d9:71:fd:
88:4a:2d:f0:67:b3:e6:49:ae:d0:e0:d5:b5:ae:c4:
5d:28:32:44:48:63:bb:94:34:2e:1a:94:96:b5:33:
fb:18:9d:39:26:54:a8:58:e0:4a:b2:d2:b1:0f:25:
b4:22:46:30:fa:82:27:4c:c4:6f:32:07:10:62:a6:
7d:71:c9:b6:d2:89:f6:27:ed:0d:c7:57:72:1f:f3:
fa:1f:f0:10:97:89:a4:49:fa:ae:3b:e4:25:16:fe:
2a:c0:c3:f0:c4:f1:81:36:76:14:16:43:3a:da:7e:
7b:bd:ac:a7:dc:5c:df:5d:bc:8c:37:90:63:14:33:
74:b5:b4:bd:0f:ba:17:fc:7b:ec:5e:ad:f8:45:c2:
ba:53:cd:14:61:b3:e3:c5:64:9f:a3:5b:42:bf:0a:
7b:33:15:65:8c:a0:97:ea:33:7d:14:8e:ab:b0:d7:
ef:dd:61:03:30:cc:a1:d7:da:62:a6:88:15:70:f7:
33:ef:9b:db:8a:4f:7b:0d:33:26:1c:67:b0:3a:31:
77:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:41:8A:F9:2F:38:BE:13:72:2F:39:5E:CB:2A:B0:68:9C:25:E0:2C
X509v3 Authority Key Identifier:
keyid:BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/BB8A2C88C52554D49F6B790137C3BAB687B2F956.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3232392e3131392e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.119.0/24
Signature Algorithm: sha256WithRSAEncryption
69:b9:d1:ac:c5:c8:30:50:fa:9b:ef:c2:19:87:d0:a4:9b:46:
9f:d6:8d:a2:be:1e:06:0c:5e:17:80:90:91:95:52:13:d0:03:
07:9c:5c:48:11:51:56:b3:c5:1c:fe:b9:05:8e:96:1e:70:2f:
b6:8f:34:6b:05:83:47:c5:ff:81:aa:b1:91:d8:15:3b:6a:67:
b4:b7:77:2c:4c:32:1f:9c:c4:1c:13:54:08:20:2d:c4:32:03:
d6:67:af:3f:99:22:0d:01:c5:06:41:86:0c:0b:e5:a2:84:7a:
7f:54:53:c6:2d:5c:47:d8:5f:90:89:73:ef:a7:cd:c9:1d:e3:
d4:3e:5a:55:c7:11:b7:a7:04:20:a1:07:26:d6:13:3e:41:4c:
57:e9:d8:bd:53:dc:ef:47:e5:87:c9:c2:f1:eb:02:a6:59:1a:
e7:d8:f5:b7:5e:d6:61:84:8a:3a:3c:bf:94:65:a0:29:76:ab:
62:22:48:b9:ff:02:53:de:80:7a:c2:45:a2:a3:d8:ad:92:ef:
34:9a:fd:1d:53:46:d2:f8:4c:69:75:95:38:ad:4f:90:72:4c:
53:cf:60:e2:39:e0:41:0c:d6:e2:d9:ec:37:7e:44:ed:64:05:
6c:f9:c6:3e:e2:de:43:de:f4:6c:ef:59:4d:b8:03:50:cc:25:
73:bf:03:ad
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUNOMvw5M1UTG2WW2TtsFyXlugsOAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYmI4YTJjODhjNTI1NTRkNDlmNmI3OTAxMzdjM2JhYjY4
N2IyZjk1NjAeFw0yMzAzMjcwODIyMjBaFw0yNDAzMjUwODI3MjBaMDMxMTAvBgNV
BAMTKDY1NDE4QUY5MkYzOEJFMTM3MjJGMzk1RUNCMkFCMDY4OUMyNUUwMkMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVgP7mCOmwDeQww8QP6EznfDUF
RIRn03GbupFIWVjF5r2n4osROazvu5dMnmkGE+3NTDo7V4TPO9lx/YhKLfBns+ZJ
rtDg1bWuxF0oMkRIY7uUNC4alJa1M/sYnTkmVKhY4Eqy0rEPJbQiRjD6gidMxG8y
BxBipn1xybbSifYn7Q3HV3If8/of8BCXiaRJ+q475CUW/irAw/DE8YE2dhQWQzra
fnu9rKfcXN9dvIw3kGMUM3S1tL0Puhf8e+xerfhFwrpTzRRhs+PFZJ+jW0K/Cnsz
FWWMoJfqM30Ujquw1+/dYQMwzKHX2mKmiBVw9zPvm9uKT3sNMyYcZ7A6MXfTAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUZUGK+S84vhNyLzleyyqwaJwl4CwwHwYDVR0j
BBgwFoAUu4osiMUlVNSfa3kBN8O6toey+VYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzYvQkI4QTJDODhDNTI1NTRENDlGNkI3OTAxMzdDM0JBQjY4N0IyRjk1Ni5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3U0b3NpTVVsVk5TZmEza0JOOE82dG9l
eS1WWS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzYvMzEzODM1MmUzMjMyMzkyZTMx
MzEzOTJlMzAyZjMyMzQyZDMzMzIyMDNkM2UyMDM1MzEzMTM2Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC55XcwDQYJKoZIhvcNAQELBQADggEBAGm50azFyDBQ+pvvwhmH0KSbRp/WjaK+
HgYMXheAkJGVUhPQAwecXEgRUVazxRz+uQWOlh5wL7aPNGsFg0fF/4GqsZHYFTtq
Z7S3dyxMMh+cxBwTVAggLcQyA9Znrz+ZIg0BxQZBhgwL5aKEen9UU8YtXEfYX5CJ
c++nzckd49Q+WlXHEbenBCChBybWEz5BTFfp2L1T3O9H5YfJwvHrAqZZGufY9bde
1mGEijo8v5RloCl2q2IiSLn/AlPegHrCRaKj2K2S7zSa/R1TRtL4TGl1lTitT5By
TFPPYOI54EEM1uLZ7Dd+RO1kBWz5xj7i3kPe9GzvWU24A1DMJXO/A60=
-----END CERTIFICATE-----
Generated at Fri Oct 20 12:57:18 2023 by rpki-client on console-fra.rpki-client.org