Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/38382e3231382e3230312e302f32342d3234203d3e20323034313730.roa
File: 38382e3231382e3230312e302f32342d3234203d3e20323034313730.roa (raw, json)
Hash identifier: TaznxzIMolH6P37KpLutvaEiYscKfPUcFgI5njEawNo=
Subject key identifier: 16:5F:88:25:A7:06:4A:3D:09:B7:C5:76:A3:4E:C9:A9:30:6D:1C:AA
Certificate issuer: /CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Certificate serial: 1BA37D6C6753B9DC5DE923C3EA9D0E071BD10099
Authority key identifier: BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/38382e3231382e3230312e302f32342d3234203d3e20323034313730.roa
Signing time: Mon 27 Mar 2023 08:27:14 +0000
ROA not before: Mon 27 Mar 2023 08:22:14 +0000
ROA not after: Mon 25 Mar 2024 08:27:14 +0000
asID: 204170
IP address blocks: 88.218.201.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:a3:7d:6c:67:53:b9:dc:5d:e9:23:c3:ea:9d:0e:07:1b:d1:00:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8a2c88c52554d49f6b790137c3bab687b2f956
Validity
Not Before: Mar 27 08:22:14 2023 GMT
Not After : Mar 25 08:27:14 2024 GMT
Subject: CN=165F8825A7064A3D09B7C576A34EC9A9306D1CAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:1f:4e:5a:17:89:df:37:24:f1:1c:61:2a:34:
bb:3f:37:6d:08:7d:53:4a:24:3d:57:86:f6:25:d3:
dc:1e:dc:0b:43:d8:83:aa:0d:4b:8a:36:65:0f:11:
5f:56:66:f2:ae:70:47:7c:8f:c3:bd:7c:11:90:a8:
8f:42:af:8c:9d:d9:7e:10:4f:ae:e9:6e:52:d2:69:
b5:6c:d6:59:ef:53:91:b4:8a:13:f8:c7:70:e4:1b:
d9:7a:69:5a:fe:46:71:72:8f:a9:11:04:7f:e2:cb:
a7:4b:ff:ce:a6:06:18:c9:a9:65:30:a0:6b:f5:4d:
a3:6e:79:5a:11:9f:7a:aa:49:1a:5c:7a:f3:57:59:
84:09:12:29:52:8f:9a:50:bb:23:c0:68:ab:73:08:
c2:d8:fe:58:fd:c5:15:38:b5:2a:87:6d:25:10:ad:
bf:2a:55:5c:62:79:9c:6c:7e:f1:5e:1c:08:60:cb:
09:8b:8c:87:9a:60:e4:b1:63:1a:81:f0:80:aa:06:
ec:a8:4d:92:2d:84:fc:86:7a:05:08:b9:f9:ba:a4:
61:e2:42:e9:dc:45:d2:c2:39:18:85:54:ec:30:03:
26:fe:d3:42:05:e3:e5:e1:1a:b1:46:6e:38:eb:88:
89:95:d7:34:07:8e:ee:d3:30:56:f9:e4:47:fb:a2:
c7:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:5F:88:25:A7:06:4A:3D:09:B7:C5:76:A3:4E:C9:A9:30:6D:1C:AA
X509v3 Authority Key Identifier:
keyid:BB:8A:2C:88:C5:25:54:D4:9F:6B:79:01:37:C3:BA:B6:87:B2:F9:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/BB8A2C88C52554D49F6B790137C3BAB687B2F956.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4osiMUlVNSfa3kBN8O6toey-VY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/6/38382e3231382e3230312e302f32342d3234203d3e20323034313730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.201.0/24
Signature Algorithm: sha256WithRSAEncryption
89:a8:0b:7a:e7:95:eb:09:34:2f:12:c1:b1:93:e5:5b:ee:72:
59:17:d4:ba:b9:a2:d3:64:cf:9d:83:e6:08:20:a9:2b:3a:c9:
ad:4d:68:0c:9a:ed:60:67:a8:89:49:21:ea:9a:70:ee:b4:33:
56:96:53:9a:54:79:6e:b9:75:76:29:b1:1c:6f:19:23:4a:78:
89:4c:d9:1a:4e:57:67:8d:d9:b9:23:42:1b:7b:d4:2b:56:80:
a2:2d:a2:d3:85:b6:59:5a:40:42:0e:f2:f3:8e:91:3e:a3:e0:
68:44:38:5d:54:0e:1e:fe:28:f8:21:5a:e9:65:b7:2e:f1:71:
4c:94:3b:2d:78:55:81:f6:a3:f2:b8:dc:62:f3:0e:e4:d3:2c:
94:a7:83:8d:c2:0f:a2:ab:6b:25:ac:89:c1:79:8b:57:d8:5b:
ca:65:44:68:5f:04:4e:10:e1:c1:f8:5e:68:5e:6f:84:dc:82:
fc:1f:c1:2c:82:a6:32:21:83:38:ad:ac:44:4f:d9:b9:fb:f6:
e2:f6:98:15:37:33:86:9b:d2:38:e9:7f:fc:18:2e:44:ba:9d:
fa:8d:76:24:98:b8:f6:ab:24:d8:36:e9:0a:50:41:8c:a7:73:
fd:a4:74:41:8e:f7:6e:b2:f7:f2:88:2b:47:ee:17:c5:ad:f0:
1e:c1:bf:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-fra.rpki-client.org