Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3233342e36382e302f32342d3234203d3e20323037313337.roa
File: 3138352e3233342e36382e302f32342d3234203d3e20323037313337.roa (raw, json)
Hash identifier: jexmGUPEA17mxB8CIqGQJfFKewkkZ6MGTXklJ97aDaQ=
Subject key identifier: 35:67:C3:84:17:5E:71:E8:7C:33:02:DE:6A:45:BB:E5:F3:FE:21:C3
Certificate issuer: /CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Certificate serial: 4BB6B403B66B721550A60FCC70EFCCCFA5004F53
Authority key identifier: BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3233342e36382e302f32342d3234203d3e20323037313337.roa
Signing time: Mon 27 Mar 2023 08:27:21 +0000
ROA not before: Mon 27 Mar 2023 08:22:21 +0000
ROA not after: Mon 25 Mar 2024 08:27:21 +0000
asID: 207137
IP address blocks: 185.234.68.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:b6:b4:03:b6:6b:72:15:50:a6:0f:cc:70:ef:cc:cf:a5:00:4f:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Validity
Not Before: Mar 27 08:22:21 2023 GMT
Not After : Mar 25 08:27:21 2024 GMT
Subject: CN=3567C384175E71E87C3302DE6A45BBE5F3FE21C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:23:81:c1:76:08:9b:93:1a:93:88:4e:c5:39:
91:08:0b:a0:02:ec:65:e5:a7:9e:a5:a6:0a:07:83:
88:03:2f:47:e6:16:28:4d:2b:e5:9c:cd:fb:61:9a:
21:8d:8d:a3:a4:7d:c2:ec:a8:2b:56:b2:00:a4:d9:
46:8b:e5:a0:39:46:7d:85:1b:64:89:5c:2a:b4:e9:
79:7b:ab:80:2c:00:26:b1:3a:63:b9:33:49:da:56:
d4:4d:54:eb:27:39:c0:7d:54:47:ec:74:6c:b3:40:
2f:0b:44:d3:a7:ac:36:e2:76:3f:db:d7:25:5b:cc:
0b:8d:fc:10:24:fd:89:7e:23:4c:e3:da:5e:a9:49:
68:f0:b7:1a:1e:05:55:db:2b:2a:af:3e:f6:58:55:
51:62:12:b5:97:51:84:37:2f:33:aa:89:5f:57:75:
df:dd:fe:78:7a:f6:5d:92:71:95:59:6d:41:53:1e:
8f:82:81:9b:84:0e:98:53:03:b9:63:47:46:d5:b7:
f9:d5:04:d7:7b:fe:ea:4a:25:1c:fb:4c:d3:1a:a8:
2b:30:dd:97:e3:75:cb:cb:6e:f2:df:d7:a1:0c:59:
38:99:5a:6b:25:66:e0:f6:04:f3:43:88:29:8f:31:
63:14:a4:b8:71:1b:04:06:01:22:8e:4c:1c:97:b5:
63:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:67:C3:84:17:5E:71:E8:7C:33:02:DE:6A:45:BB:E5:F3:FE:21:C3
X509v3 Authority Key Identifier:
keyid:BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/BB8A2C88C52554D49F6B790137C3BAB687B2F956.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3233342e36382e302f32342d3234203d3e20323037313337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.68.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:93:c0:8e:79:b8:30:b5:a8:46:30:f2:ba:a9:80:48:d9:bc:
84:2a:e8:50:fc:f7:e9:00:d5:2b:aa:43:24:4d:2f:ea:b0:72:
40:e8:06:55:df:fc:84:99:9c:d4:0b:b6:75:e7:47:83:da:8b:
51:c7:bc:40:44:15:4e:6d:11:28:e2:23:5d:59:81:7c:fa:6e:
92:92:43:ed:8c:68:4a:08:4e:c2:2b:69:3f:54:2e:2d:74:fd:
8c:74:7c:87:ee:be:fb:48:90:06:dc:59:57:90:77:96:fa:f4:
44:2c:2e:50:91:b1:7f:cb:73:28:bc:eb:c0:08:74:6c:75:17:
c9:10:4e:1a:99:a6:37:d5:79:c5:22:ce:18:b7:4a:bb:34:28:
a8:60:54:9c:ca:a5:0d:28:ba:8d:3e:a2:9f:aa:ad:c3:2c:f4:
79:2e:8e:06:b7:a2:7b:fb:29:98:88:04:83:f9:8c:2c:65:0b:
83:04:32:c4:2a:8b:14:ec:47:1c:0c:1f:dc:89:fc:48:d1:6d:
2a:ff:e4:57:1a:1c:22:01:8d:a4:f7:01:05:f6:a4:93:3d:ed:
d9:db:b5:98:7b:23:6f:03:10:d3:a6:db:88:df:d3:85:97:13:
28:63:8a:ce:f1:4f:da:31:2a:f0:94:14:76:3b:42:43:30:7d:
b8:5c:b9:42
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUS7a0A7ZrchVQpg/McO/Mz6UAT1MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYmI4YTJjODhjNTI1NTRkNDlmNmI3OTAxMzdjM2JhYjY4
N2IyZjk1NjAeFw0yMzAzMjcwODIyMjFaFw0yNDAzMjUwODI3MjFaMDMxMTAvBgNV
BAMTKDM1NjdDMzg0MTc1RTcxRTg3QzMzMDJERTZBNDVCQkU1RjNGRTIxQzMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaI4HBdgibkxqTiE7FOZEIC6AC
7GXlp56lpgoHg4gDL0fmFihNK+WczfthmiGNjaOkfcLsqCtWsgCk2UaL5aA5Rn2F
G2SJXCq06Xl7q4AsACaxOmO5M0naVtRNVOsnOcB9VEfsdGyzQC8LRNOnrDbidj/b
1yVbzAuN/BAk/Yl+I0zj2l6pSWjwtxoeBVXbKyqvPvZYVVFiErWXUYQ3LzOqiV9X
dd/d/nh69l2ScZVZbUFTHo+CgZuEDphTA7ljR0bVt/nVBNd7/upKJRz7TNMaqCsw
3ZfjdcvLbvLf16EMWTiZWmslZuD2BPNDiCmPMWMUpLhxGwQGASKOTByXtWO1AgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUNWfDhBdeceh8MwLeakW75fP+IcMwHwYDVR0j
BBgwFoAUu4osiMUlVNSfa3kBN8O6toey+VYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzYvQkI4QTJDODhDNTI1NTRENDlGNkI3OTAxMzdDM0JBQjY4N0IyRjk1Ni5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3U0b3NpTVVsVk5TZmEza0JOOE82dG9l
eS1WWS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzYvMzEzODM1MmUzMjMzMzQyZTM2
MzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzczMTMzMzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC56kQwDQYJKoZIhvcNAQELBQADggEBAD6TwI55uDC1qEYw8rqpgEjZvIQq6FD8
9+kA1SuqQyRNL+qwckDoBlXf/ISZnNQLtnXnR4Pai1HHvEBEFU5tESjiI11ZgXz6
bpKSQ+2MaEoITsIraT9ULi10/Yx0fIfuvvtIkAbcWVeQd5b69EQsLlCRsX/Lcyi8
68AIdGx1F8kQThqZpjfVecUizhi3Srs0KKhgVJzKpQ0ouo0+op+qrcMs9Hkujga3
onv7KZiIBIP5jCxlC4MEMsQqixTsRxwMH9yJ/EjRbSr/5FcaHCIBjaT3AQX2pJM9
7dnbtZh7I28DENOm24jf04WXEyhjis7xT9oxKvCUFHY7QkMwfbhcuUI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:12 2024 by rpki-client on console-ams.rpki-client.org