Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/0/38312e32372e39362e302f32302d3230203d3e203234383531.roa
File: 38312e32372e39362e302f32302d3230203d3e203234383531.roa (raw, json)
Hash identifier: XkVvvHxYNNLu8LX9oeJ8S4996YNYD+S9uU0EOtcPU4E=
Subject key identifier: 2D:1D:E2:7D:55:EE:26:F8:49:0E:E3:B8:8A:6B:9D:28:F1:76:90:C7
Certificate issuer: /CN=e903858f0abab52add2a8fca3f14998a35291a7a
Certificate serial: 45B707A2DE745C7CB874BD034DB88CAA69BA0DB7
Authority key identifier: E9:03:85:8F:0A:BA:B5:2A:DD:2A:8F:CA:3F:14:99:8A:35:29:1A:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QOFjwq6tSrdKo_KPxSZijUpGno.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/0/38312e32372e39362e302f32302d3230203d3e203234383531.roa
Signing time: Mon 23 Jan 2023 11:28:33 +0000
ROA not before: Mon 23 Jan 2023 11:23:33 +0000
ROA not after: Mon 22 Jan 2024 11:28:33 +0000
asID: 24851
IP address blocks: 81.27.96.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:b7:07:a2:de:74:5c:7c:b8:74:bd:03:4d:b8:8c:aa:69:ba:0d:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e903858f0abab52add2a8fca3f14998a35291a7a
Validity
Not Before: Jan 23 11:23:33 2023 GMT
Not After : Jan 22 11:28:33 2024 GMT
Subject: CN=2D1DE27D55EE26F8490EE3B88A6B9D28F17690C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:af:2c:9c:d4:13:ff:ad:b6:2e:e2:28:c4:0d:
51:8c:ae:68:ce:63:60:31:9a:a6:b3:63:df:df:db:
27:b8:cf:10:f6:6f:15:27:15:77:82:5d:a7:f6:6b:
a1:99:27:41:00:97:9c:77:de:f2:24:70:8b:f8:d2:
8c:22:09:1d:c4:22:bd:88:19:91:9d:2e:eb:f7:cb:
ea:99:aa:25:b6:29:03:10:86:f5:cb:15:3b:0f:e0:
e2:b9:bb:1e:0b:ee:37:f9:1f:fe:19:8e:f2:42:80:
5f:bd:68:e1:2d:8f:b5:57:c9:32:92:9c:f1:a2:d4:
af:27:36:eb:d1:ae:42:a9:98:97:bc:8e:db:20:e9:
34:5a:51:0a:84:53:53:3e:cb:29:8f:2e:1f:c1:ad:
1a:45:24:d6:c1:4a:71:6e:74:7a:c9:c7:2f:81:2a:
59:ab:cc:53:ec:5f:50:d9:54:96:55:a7:eb:12:31:
5b:07:2b:50:fd:88:0b:b5:e1:f1:68:25:31:5f:d1:
57:f4:6b:cb:8c:17:cf:92:1e:fa:83:73:5b:bf:c4:
88:45:7c:3d:8b:7d:37:8e:03:66:42:2a:64:91:77:
8f:38:60:5d:9c:ed:a8:b4:e7:05:e0:e4:eb:57:27:
0a:6b:3c:bd:4a:6a:37:19:22:22:f5:fb:47:f2:89:
38:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:1D:E2:7D:55:EE:26:F8:49:0E:E3:B8:8A:6B:9D:28:F1:76:90:C7
X509v3 Authority Key Identifier:
keyid:E9:03:85:8F:0A:BA:B5:2A:DD:2A:8F:CA:3F:14:99:8A:35:29:1A:7A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/0/E903858F0ABAB52ADD2A8FCA3F14998A35291A7A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QOFjwq6tSrdKo_KPxSZijUpGno.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/0/38312e32372e39362e302f32302d3230203d3e203234383531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.27.96.0/20
Signature Algorithm: sha256WithRSAEncryption
97:cd:81:18:84:e7:ad:ba:e5:c0:c3:a9:01:0f:b2:60:8b:15:
40:e5:db:a5:c8:2e:6f:94:8a:da:ca:e3:de:f5:d7:41:05:a2:
1f:c4:d1:dc:45:a8:eb:ce:8b:58:fa:14:fa:3c:f5:df:3d:40:
4c:56:db:4f:d8:39:77:2a:1c:e1:ac:2a:75:44:b2:ba:78:11:
1f:52:5e:95:03:f6:bf:e7:bb:34:87:8e:e9:41:4d:6d:cd:e7:
88:8d:e1:7e:d0:3a:c1:01:0e:84:07:7b:e7:e5:4f:c7:48:8a:
19:cb:68:ae:2c:94:3b:d6:15:27:f8:79:5b:81:43:05:cd:0e:
a5:8d:2f:b6:33:c6:c1:c4:4f:2c:cd:ee:8c:9d:7f:1c:36:c5:
8c:a8:78:a4:c9:b7:51:09:95:55:86:68:11:40:31:6e:ce:f4:
7f:e2:13:f2:10:1e:fd:7e:d1:06:1b:03:4c:06:26:26:87:ca:
9a:7c:d4:87:6c:02:18:19:95:5f:33:41:20:e2:ca:f3:05:35:
1e:cb:76:22:a7:9d:b8:c9:b7:d7:fd:ed:ff:e3:5f:93:0c:75:
17:50:07:d7:63:99:0b:a7:d9:b0:1e:d7:8b:4c:dc:8e:87:60:
34:ea:2f:ac:bd:14:1f:3e:28:11:93:21:57:2a:6f:d6:a7:4d:
26:3e:af:0a
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIURbcHot50XHy4dL0DTbiMqmm6DbcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZTkwMzg1OGYwYWJhYjUyYWRkMmE4ZmNhM2YxNDk5OGEz
NTI5MWE3YTAeFw0yMzAxMjMxMTIzMzNaFw0yNDAxMjIxMTI4MzNaMDMxMTAvBgNV
BAMTKDJEMURFMjdENTVFRTI2Rjg0OTBFRTNCODhBNkI5RDI4RjE3NjkwQzcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjryyc1BP/rbYu4ijEDVGMrmjO
Y2AxmqazY9/f2ye4zxD2bxUnFXeCXaf2a6GZJ0EAl5x33vIkcIv40owiCR3EIr2I
GZGdLuv3y+qZqiW2KQMQhvXLFTsP4OK5ux4L7jf5H/4ZjvJCgF+9aOEtj7VXyTKS
nPGi1K8nNuvRrkKpmJe8jtsg6TRaUQqEU1M+yymPLh/BrRpFJNbBSnFudHrJxy+B
KlmrzFPsX1DZVJZVp+sSMVsHK1D9iAu14fFoJTFf0Vf0a8uMF8+SHvqDc1u/xIhF
fD2LfTeOA2ZCKmSRd484YF2c7ai05wXg5OtXJwprPL1KajcZIiL1+0fyiTjrAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQULR3ifVXuJvhJDuO4imudKPF2kMcwHwYDVR0j
BBgwFoAU6QOFjwq6tSrdKo/KPxSZijUpGnowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMGM4YmI0NDYtOTFjMC00MTM4LWEzM2EtYjQ3ODY1ZGU1
NWM1LzAvRTkwMzg1OEYwQUJBQjUyQUREMkE4RkNBM0YxNDk5OEEzNTI5MUE3QS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZRT0Zqd3E2dFNyZEtvX0tQeFNaaWpV
cEduby5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMGM4YmI0NDYt
OTFjMC00MTM4LWEzM2EtYjQ3ODY1ZGU1NWM1LzAvMzgzMTJlMzIzNzJlMzkzNjJl
MzAyZjMyMzAyZDMyMzAyMDNkM2UyMDMyMzQzODM1MzEucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARRG2Aw
DQYJKoZIhvcNAQELBQADggEBAJfNgRiE56265cDDqQEPsmCLFUDl26XILm+UitrK
497110EFoh/E0dxFqOvOi1j6FPo89d89QExW20/YOXcqHOGsKnVEsrp4ER9SXpUD
9r/nuzSHjulBTW3N54iN4X7QOsEBDoQHe+flT8dIihnLaK4slDvWFSf4eVuBQwXN
DqWNL7YzxsHETyzN7oydfxw2xYyoeKTJt1EJlVWGaBFAMW7O9H/iE/IQHv1+0QYb
A0wGJiaHypp81IdsAhgZlV8zQSDiyvMFNR7LdiKnnbjJt9f97f/jX5MMdRdQB9dj
mQun2bAe14tM3I6HYDTqL6y9FB8+KBGTIVcqb9anTSY+rwo=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:10 2023 by rpki-client on console.sobornost.net