Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS59432.roa
File: AS59432.roa (raw, json)
Hash identifier: gYA7UQYghIJt7n0tLr9IHPlHLnQvy9lVRPSjAjdnIs4=
Subject key identifier: 84:75:C7:AC:4D:DC:4D:D4:6F:78:7C:7D:63:DD:37:FA:5E:48:38:24
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 73D10586F1CF7536EBCA351641F1558CC4C176BA
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS59432.roa
Signing time: Thu 26 Dec 2024 19:21:38 +0000
ROA not before: Thu 26 Dec 2024 19:16:38 +0000
ROA not after: Thu 25 Dec 2025 19:21:38 +0000
asID: 59432
IP address blocks: 150.241.248.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:d1:05:86:f1:cf:75:36:eb:ca:35:16:41:f1:55:8c:c4:c1:76:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Dec 26 19:16:38 2024 GMT
Not After : Dec 25 19:21:38 2025 GMT
Subject: CN=8475C7AC4DDC4DD46F787C7D63DD37FA5E483824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:aa:31:30:9d:eb:cf:d3:f3:50:16:c0:96:30:
f3:d1:1c:2a:95:ce:1e:b9:45:e0:b2:6f:d1:96:e9:
df:1f:90:1d:32:6b:93:1f:34:59:04:8a:f5:3b:cc:
91:d2:65:4e:b8:47:af:81:be:c4:27:72:3b:1c:60:
8b:4c:af:85:3b:31:f0:71:f5:c8:bf:e5:eb:9d:8e:
77:82:27:99:cf:49:1f:9e:54:7d:57:91:c0:fb:04:
7b:73:1b:f6:83:b5:49:0c:20:37:8f:aa:e6:d0:cc:
0c:e2:1b:93:b5:9c:1b:5c:34:2d:62:d6:d9:bc:55:
69:b8:38:c2:b3:a8:32:d6:16:7a:12:76:bd:18:51:
50:7f:05:80:c7:eb:da:fa:a9:f2:e3:d1:f3:06:a3:
2b:4c:0b:5d:e6:e9:95:97:18:1d:48:f8:28:d2:26:
36:f3:0f:ca:72:80:4e:02:7d:76:b6:84:f4:36:14:
5f:8d:62:86:b4:47:60:aa:e2:3c:7d:71:00:bc:07:
74:fe:82:f1:4f:cd:58:91:3f:a9:f6:3c:9e:65:a0:
5d:68:44:19:91:cc:8f:bc:bb:f0:53:ef:a1:e4:38:
24:4f:2e:28:4d:69:ee:72:15:d6:a0:90:fd:80:88:
76:66:a2:69:f5:2c:25:d4:e2:77:0a:99:1d:95:5c:
fa:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:75:C7:AC:4D:DC:4D:D4:6F:78:7C:7D:63:DD:37:FA:5E:48:38:24
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS59432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
150.241.248.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:d7:eb:7e:4c:80:a6:6b:55:04:5b:6b:84:a1:4e:12:21:7a:
de:e8:79:e1:3e:75:9d:9f:ef:af:95:20:51:b1:3f:a1:ea:70:
b8:45:56:a1:47:70:bf:ae:bb:0f:1b:e8:6f:49:ab:a6:d6:e2:
d7:75:ab:08:11:24:6b:6c:1c:bb:d4:1d:4d:29:fb:d9:35:98:
50:cc:ec:c3:62:35:ac:29:21:49:d8:1a:80:4f:a2:96:3d:7d:
d9:f6:5b:01:12:6a:6d:e4:ac:c0:7c:73:82:2b:98:b0:80:8c:
26:65:fa:4a:af:b1:66:fa:6b:c9:7b:92:ba:3a:7c:6c:ec:22:
2a:92:57:ea:3a:b5:6d:a2:3a:7e:e3:05:7f:ed:01:1a:09:00:
a8:50:5e:58:81:05:c1:55:6f:a0:a1:c3:ef:a7:67:11:6f:c7:
40:4c:24:fe:dc:3a:0e:50:a8:e5:ec:a9:6d:ee:71:e6:cf:22:
2c:5e:ae:09:c5:86:81:4d:88:b0:b8:e7:25:fa:4c:53:0c:5b:
f9:dd:2f:dc:b9:17:de:21:ed:24:19:fb:34:ab:71:d8:8f:5e:
f4:f2:1e:2b:fe:a2:d3:34:a0:ea:83:71:3b:57:75:d8:03:b9:
ff:79:b4:b8:a4:a1:5d:c4:ba:5f:ec:52:3d:06:c5:c0:6a:0c:
e7:5f:ca:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:30:04 2025 by rpki-client