Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS7393.roa
File: AS7393.roa (raw, json)
Hash identifier: w5JFa3VCaU+9ieNA6CaOoxKZ9hzWCM2Tktd8R3s7lAA=
Subject key identifier: 29:D5:75:AD:8E:7E:1F:F9:85:C1:A2:75:D1:D1:2A:A9:52:38:01:71
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 2391BB6E08742D04633654BE2958884F6FE2D4E6
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS7393.roa
Signing time: Sat 08 Mar 2025 11:53:57 +0000
ROA not before: Sat 08 Mar 2025 11:48:57 +0000
ROA not after: Sat 07 Mar 2026 11:53:57 +0000
asID: 7393
IP address blocks: 140.150.192.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:91:bb:6e:08:74:2d:04:63:36:54:be:29:58:88:4f:6f:e2:d4:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 8 11:48:57 2025 GMT
Not After : Mar 7 11:53:57 2026 GMT
Subject: CN=29D575AD8E7E1FF985C1A275D1D12AA952380171
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1b:37:d2:eb:d7:cf:28:0e:f2:ad:ff:b8:b6:
01:26:e3:3a:f5:e9:2f:b8:c7:75:5f:66:55:50:7e:
34:d0:c2:69:6e:4b:dd:15:ee:1a:4a:99:65:c5:29:
58:1e:3b:a0:21:5a:37:74:dd:20:a9:e5:84:d0:7c:
f4:ae:9d:33:e3:ff:b8:a6:3a:11:43:74:35:5e:11:
95:03:7e:7a:67:4e:20:48:0e:49:50:31:7d:ae:e6:
76:ab:29:62:9b:b5:db:b4:f1:56:75:02:79:18:d7:
32:7c:8b:eb:46:75:99:c2:fd:e8:ca:a5:bb:c8:7b:
b1:f0:1e:d2:a4:73:f1:de:63:42:65:88:60:02:a9:
2d:18:16:84:56:51:8f:37:31:99:67:6c:f4:6e:60:
44:f1:ac:fa:0c:f3:db:2b:6b:7a:02:40:60:58:8f:
83:42:25:fe:2a:3b:bd:2c:08:0b:11:83:fc:1e:23:
5a:8b:4f:55:8a:5d:77:99:ea:50:5b:c3:8e:0a:62:
0c:75:62:cc:c3:cc:26:d1:c1:a7:f5:a1:40:29:1f:
37:4e:1c:9c:27:08:a6:8a:63:45:ab:e8:5f:27:7d:
ef:41:2f:43:b2:7b:f3:44:fd:01:40:08:f2:97:d8:
1d:47:2b:85:27:87:32:6e:e6:f3:41:fc:e2:5d:81:
ff:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:D5:75:AD:8E:7E:1F:F9:85:C1:A2:75:D1:D1:2A:A9:52:38:01:71
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS7393.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.192.0/19
Signature Algorithm: sha256WithRSAEncryption
8d:12:05:f3:15:2b:65:77:63:93:4f:53:6b:a1:72:2c:39:7d:
fc:e6:12:4c:a2:3f:76:ab:67:ed:d0:e2:66:78:d3:1b:e0:dc:
48:bd:09:6e:1e:ee:21:79:70:a1:c3:b7:e6:c1:f5:89:41:5a:
d5:e1:17:0a:f1:f3:08:68:66:37:70:c4:7b:14:97:d8:e2:af:
a0:96:67:d6:59:0f:2e:2e:cc:d3:e9:07:05:72:17:80:b0:60:
f1:0f:e2:49:60:4e:bd:f8:ad:2e:54:9d:da:e5:a7:8d:af:64:
bc:fc:1e:81:15:09:02:57:ec:6c:ef:26:d8:d5:84:de:c4:39:
54:6f:3a:d0:3e:bb:d9:7d:4f:ab:14:12:37:d5:ac:95:1e:38:
78:07:76:b4:9b:35:e2:34:8f:6b:f3:9c:e0:0f:26:ef:57:5b:
92:5d:35:19:bc:24:75:8e:ea:af:bc:9d:54:21:02:ff:07:0f:
ee:69:1c:c0:21:50:90:f2:98:18:c9:29:c7:53:d1:e1:31:95:
1e:cb:f4:0f:6e:15:fa:98:54:bd:0e:1f:08:2a:7a:15:4e:2c:
46:28:66:f4:1b:92:52:c4:de:0a:fc:4b:60:2c:8e:91:55:c8:
2c:e2:9e:c0:cb:be:47:31:3e:20:6c:2a:4e:14:6d:f0:3c:9a:
bc:7b:1a:e3
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIUI5G7bgh0LQRjNlS+KViIT2/i1OYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi
MjQ2YmZjYzAeFw0yNTAzMDgxMTQ4NTdaFw0yNjAzMDcxMTUzNTdaMDMxMTAvBgNV
BAMTKDI5RDU3NUFEOEU3RTFGRjk4NUMxQTI3NUQxRDEyQUE5NTIzODAxNzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3GzfS69fPKA7yrf+4tgEm4zr1
6S+4x3VfZlVQfjTQwmluS90V7hpKmWXFKVgeO6AhWjd03SCp5YTQfPSunTPj/7im
OhFDdDVeEZUDfnpnTiBIDklQMX2u5narKWKbtdu08VZ1AnkY1zJ8i+tGdZnC/ejK
pbvIe7HwHtKkc/HeY0JliGACqS0YFoRWUY83MZlnbPRuYETxrPoM89sra3oCQGBY
j4NCJf4qO70sCAsRg/weI1qLT1WKXXeZ6lBbw44KYgx1YszDzCbRwaf1oUApHzdO
HJwnCKaKY0Wr6F8nfe9BL0Oye/NE/QFACPKX2B1HK4UnhzJu5vNB/OJdgf+9AgMB
AAGjggIIMIICBDAdBgNVHQ4EFgQUKdV1rY5+H/mFwaJ10dEqqVI4AXEwHwYDVR0j
BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy
NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK
R3Y4dy5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt
NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTNzM5My5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBYyWwDAN
BgkqhkiG9w0BAQsFAAOCAQEAjRIF8xUrZXdjk09Ta6FyLDl9/OYSTKI/dqtn7dDi
ZnjTG+DcSL0Jbh7uIXlwocO35sH1iUFa1eEXCvHzCGhmN3DEexSX2OKvoJZn1lkP
Li7M0+kHBXIXgLBg8Q/iSWBOvfitLlSd2uWnja9kvPwegRUJAlfsbO8m2NWE3sQ5
VG860D672X1PqxQSN9WslR44eAd2tJs14jSPa/Oc4A8m71dbkl01GbwkdY7qr7yd
VCEC/wcP7mkcwCFQkPKYGMkpx1PR4TGVHsv0D24V+phUvQ4fCCp6FU4sRihm9BuS
UsTeCvxLYCyOkVXILOKewMu+RzE+IGwqThRt8DyavHsa4w==
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:26:34 2025 by rpki-client