Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3234352e3138322e302f32342d3332203d3e203531313637.roa
File: 3138352e3234352e3138322e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: cGSPVsckCpJJ5mYoJbY5rEvlE5lWwjrbNgDPA9Xx5F4=
Subject key identifier: 0A:76:0F:E5:A5:B0:7D:CE:35:F1:DC:27:3C:88:74:FA:D7:13:4C:9E
Certificate issuer: /CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Certificate serial: 39D5747017ECA68181C5338F5F573DC116B70135
Authority key identifier: BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3234352e3138322e302f32342d3332203d3e203531313637.roa
Signing time: Mon 27 Mar 2023 08:27:17 +0000
ROA not before: Mon 27 Mar 2023 08:22:17 +0000
ROA not after: Mon 25 Mar 2024 08:27:17 +0000
asID: 51167
IP address blocks: 185.245.182.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:d5:74:70:17:ec:a6:81:81:c5:33:8f:5f:57:3d:c1:16:b7:01:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Validity
Not Before: Mar 27 08:22:17 2023 GMT
Not After : Mar 25 08:27:17 2024 GMT
Subject: CN=0A760FE5A5B07DCE35F1DC273C8874FAD7134C9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:72:48:f2:bf:bc:b7:00:22:06:93:22:04:de:
a0:a9:81:a2:29:6d:f1:51:15:9a:a7:0f:19:c0:b1:
ab:46:d6:9d:cb:87:7f:66:9b:3d:37:09:2e:51:77:
07:ff:9b:ba:22:2b:f6:88:1c:be:93:9d:64:68:f8:
5b:0c:87:ec:58:ee:dc:7d:94:ec:27:f5:5b:c9:6a:
39:b3:be:cd:4a:9f:61:cc:81:31:11:54:b6:d5:06:
d4:eb:64:1f:f1:4d:49:cd:e8:91:ca:70:6d:75:ef:
d1:94:3b:fc:5e:2f:9f:9e:b4:6c:e2:a2:0a:b5:2a:
f1:fc:65:29:c1:aa:fc:8a:6d:72:4a:78:d9:fe:d7:
88:2a:dd:21:63:6c:8d:8c:73:41:83:6e:93:2e:6c:
dc:e8:26:21:de:80:40:d5:df:1d:90:a5:b0:35:40:
46:cb:e4:2a:06:2b:dc:cc:47:31:9b:0e:56:c7:0c:
3f:7d:f4:00:30:30:bb:bc:bf:ec:3f:fc:b5:ff:d9:
55:f4:69:ab:e1:c4:80:a7:1f:6c:10:40:f7:e3:32:
4a:ec:2c:23:4a:d1:31:0b:26:d4:33:9e:48:9b:46:
cc:37:5e:4f:c6:cc:84:87:1b:f6:bf:ea:2f:b7:8f:
19:3f:ee:63:d1:d7:65:31:e3:8d:ee:53:a9:0b:e3:
a8:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:76:0F:E5:A5:B0:7D:CE:35:F1:DC:27:3C:88:74:FA:D7:13:4C:9E
X509v3 Authority Key Identifier:
keyid:BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/BB8A2C88C52554D49F6B790137C3BAB687B2F956.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/3138352e3234352e3138322e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.182.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:e3:cb:73:bf:8f:d0:a8:21:11:b5:28:a8:ee:81:09:e0:1b:
d3:17:18:27:5f:ec:92:78:cb:ae:36:da:e6:f8:4f:f7:b1:a8:
54:d7:cd:94:94:db:52:9c:39:66:ea:85:4c:e2:7e:5a:b1:64:
a9:f2:86:73:12:44:a1:05:2c:3a:0a:eb:37:e6:5f:c9:20:d0:
cb:c7:27:33:05:dd:a2:36:4e:42:dd:fa:c5:ab:1a:8b:55:b1:
dd:28:13:16:84:09:37:04:cf:aa:11:10:18:bb:ac:9a:8a:57:
20:e8:1a:e2:ef:dd:53:43:09:15:7d:da:39:f4:a1:f1:5c:b8:
09:16:73:70:e3:2e:a4:1e:de:cf:c0:13:35:19:6c:f3:6f:9e:
3e:20:64:a8:2a:4f:af:6c:36:08:c4:4f:ee:a9:fd:55:96:20:
5f:ae:0c:bf:ee:6f:46:f5:c5:6b:f6:fb:a1:a0:97:36:c0:17:
e2:0e:c7:47:b1:cf:dc:90:e5:53:e2:d8:37:57:52:70:59:c9:
4a:d3:32:b0:6a:1c:7d:38:42:8d:52:54:68:97:e1:f4:a2:45:
95:93:ff:1b:f3:1b:7b:94:5b:ee:7d:5c:2d:a6:5e:7d:a2:34:
37:70:66:a2:0f:96:e4:45:df:fc:86:1e:3d:7d:9e:62:09:20:
1e:ec:55:64
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUOdV0cBfspoGBxTOPX1c9wRa3ATUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYmI4YTJjODhjNTI1NTRkNDlmNmI3OTAxMzdjM2JhYjY4
N2IyZjk1NjAeFw0yMzAzMjcwODIyMTdaFw0yNDAzMjUwODI3MTdaMDMxMTAvBgNV
BAMTKDBBNzYwRkU1QTVCMDdEQ0UzNUYxREMyNzNDODg3NEZBRDcxMzRDOUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCckjyv7y3ACIGkyIE3qCpgaIp
bfFRFZqnDxnAsatG1p3Lh39mmz03CS5Rdwf/m7oiK/aIHL6TnWRo+FsMh+xY7tx9
lOwn9VvJajmzvs1Kn2HMgTERVLbVBtTrZB/xTUnN6JHKcG1179GUO/xeL5+etGzi
ogq1KvH8ZSnBqvyKbXJKeNn+14gq3SFjbI2Mc0GDbpMubNzoJiHegEDV3x2QpbA1
QEbL5CoGK9zMRzGbDlbHDD999AAwMLu8v+w//LX/2VX0aavhxICnH2wQQPfjMkrs
LCNK0TELJtQznkibRsw3Xk/GzISHG/a/6i+3jxk/7mPR12Ux443uU6kL46iJAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUCnYP5aWwfc418dwnPIh0+tcTTJ4wHwYDVR0j
BBgwFoAUu4osiMUlVNSfa3kBN8O6toey+VYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzYvQkI4QTJDODhDNTI1NTRENDlGNkI3OTAxMzdDM0JBQjY4N0IyRjk1Ni5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3U0b3NpTVVsVk5TZmEza0JOOE82dG9l
eS1WWS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzYvMzEzODM1MmUzMjM0MzUyZTMx
MzgzMjJlMzAyZjMyMzQyZDMzMzIyMDNkM2UyMDM1MzEzMTM2Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC59bYwDQYJKoZIhvcNAQELBQADggEBAA7jy3O/j9CoIRG1KKjugQngG9MXGCdf
7JJ4y6422ub4T/exqFTXzZSU21KcOWbqhUziflqxZKnyhnMSRKEFLDoK6zfmX8kg
0MvHJzMF3aI2TkLd+sWrGotVsd0oExaECTcEz6oREBi7rJqKVyDoGuLv3VNDCRV9
2jn0ofFcuAkWc3DjLqQe3s/AEzUZbPNvnj4gZKgqT69sNgjET+6p/VWWIF+uDL/u
b0b1xWv2+6GglzbAF+IOx0exz9yQ5VPi2DdXUnBZyUrTMrBqHH04Qo1SVGiX4fSi
RZWT/xvzG3uUW+59XC2mXn2iNDdwZqIPluRF3/yGHj19nmIJIB7sVWQ=
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:46:37 2025 by rpki-client