Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1979f015-2d69-48f1-bb52-3581c4df48fa/0/3138352e302e33322e302f32342d3234203d3e2030.roa
File: 3138352e302e33322e302f32342d3234203d3e2030.roa (raw, json)
Hash identifier: 1C8fIKlQUnAeCmyoK3V2NdUgsW/0q5NrpzLZYBb5TGM=
Subject key identifier: CC:8F:D8:D0:B7:09:51:08:88:FC:75:B5:CD:5F:7D:75:42:FA:6E:62
Certificate issuer: /CN=600579021287ea6495d7f934a6ded30ee2a5bb38
Certificate serial: 2E88A506AA66DECBF9DEC7A6A1F56DFAB18C6549
Authority key identifier: 60:05:79:02:12:87:EA:64:95:D7:F9:34:A6:DE:D3:0E:E2:A5:BB:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAV5AhKH6mSV1_k0pt7TDuKluzg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1979f015-2d69-48f1-bb52-3581c4df48fa/0/3138352e302e33322e302f32342d3234203d3e2030.roa
Signing time: Thu 28 Nov 2024 22:50:31 +0000
ROA not before: Thu 28 Nov 2024 22:45:31 +0000
ROA not after: Thu 27 Nov 2025 22:50:31 +0000
asID: 0
IP address blocks: 185.0.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:88:a5:06:aa:66:de:cb:f9:de:c7:a6:a1:f5:6d:fa:b1:8c:65:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=600579021287ea6495d7f934a6ded30ee2a5bb38
Validity
Not Before: Nov 28 22:45:31 2024 GMT
Not After : Nov 27 22:50:31 2025 GMT
Subject: CN=CC8FD8D0B709510888FC75B5CD5F7D7542FA6E62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a5:f2:c0:dc:49:4c:d5:a9:5f:bc:2d:9d:89:
53:07:db:af:5d:fc:48:2e:50:ac:74:f8:e6:5b:d9:
f7:51:6a:15:c2:1c:e5:15:9c:0a:fa:55:f1:30:94:
68:80:21:0d:13:50:d0:bf:86:77:b7:ea:e6:56:e6:
88:9c:58:e1:0a:64:0c:bd:14:bb:f6:de:f1:ef:29:
de:77:42:4f:e6:e1:05:68:fa:44:10:d3:64:d2:d6:
f0:c0:0b:e3:5a:6d:ec:7a:89:6b:29:f2:03:33:c1:
37:d5:1e:7a:9e:1c:87:39:33:be:9f:ff:b1:eb:67:
d4:92:67:06:1c:e1:ca:db:08:e1:88:b9:a8:75:cf:
a7:03:9b:2e:0e:43:e0:ba:c7:bd:11:0e:30:ec:b1:
4a:8c:a0:36:93:62:1a:c7:94:b3:bd:96:f8:ab:03:
fd:41:80:f2:ec:34:cb:03:a8:d0:9f:a1:17:f3:9f:
54:f7:d6:8d:63:33:ad:ac:4f:bf:92:aa:14:47:91:
99:63:42:4b:4f:2d:f8:c6:cb:f2:f3:12:1d:c1:9b:
9a:18:a3:9b:ce:af:0f:ac:c8:5e:2a:81:0a:4a:37:
5d:de:91:a7:d5:7e:db:6d:6e:2f:3d:91:8e:73:3e:
8b:89:26:3b:c9:0a:ec:68:af:e9:d3:9e:36:d6:ee:
f8:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:8F:D8:D0:B7:09:51:08:88:FC:75:B5:CD:5F:7D:75:42:FA:6E:62
X509v3 Authority Key Identifier:
keyid:60:05:79:02:12:87:EA:64:95:D7:F9:34:A6:DE:D3:0E:E2:A5:BB:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1979f015-2d69-48f1-bb52-3581c4df48fa/0/600579021287EA6495D7F934A6DED30EE2A5BB38.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAV5AhKH6mSV1_k0pt7TDuKluzg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1979f015-2d69-48f1-bb52-3581c4df48fa/0/3138352e302e33322e302f32342d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.0.32.0/24
Signature Algorithm: sha256WithRSAEncryption
26:d1:16:28:ed:77:63:75:aa:52:ce:8e:39:11:d1:a8:64:a3:
6e:51:10:c8:66:0b:35:61:97:a7:78:29:ef:2a:76:32:dc:17:
6b:f3:4f:a4:17:d5:19:37:51:fa:30:78:26:3c:3a:df:15:c9:
c0:2f:e8:85:76:19:a9:82:64:4e:6d:51:ab:fa:3f:cd:22:cc:
ac:b2:56:00:50:86:dc:9b:96:81:0d:ae:b9:23:bf:b2:72:86:
07:0b:fe:8f:3b:fa:3b:ab:d3:17:5d:f5:54:29:93:4d:f1:c3:
f3:02:c9:32:0f:6f:bc:37:fd:4a:74:44:ac:91:ee:c9:a6:b6:
7f:02:2f:56:3c:d7:e7:c0:ee:d3:de:4e:c9:17:91:af:b1:3f:
1f:fb:87:a0:99:2f:5d:d2:ab:08:71:89:2d:f3:88:b8:21:3d:
42:91:be:83:02:0a:e9:66:92:f2:bd:45:ee:f7:1d:29:a7:06:
fc:77:10:9a:50:ef:29:80:a6:d3:e6:1b:fd:51:39:c1:9a:f8:
9e:d9:6f:b3:ed:7a:8f:4b:da:8a:e6:88:47:c6:b8:51:99:30:
0f:3a:b0:49:9a:ba:63:bb:f8:58:fc:93:85:1f:73:d2:82:46:
66:d3:ca:e3:ff:7e:78:bb:41:45:2e:a6:85:b1:48:42:8f:c5:
2e:b0:0e:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:06:10 2025 by rpki-client