Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3231322e31382e3131342e302f32342d3234203d3e203133333335.roa
File: 3231322e31382e3131342e302f32342d3234203d3e203133333335.roa (raw, json)
Hash identifier: vO05yPqpp4iOUltzxMrFn4LhWc4dalJCoS4kQJCbZB8=
Subject key identifier: 62:A5:5B:CA:A0:05:1D:71:01:76:8D:40:D6:DA:3B:00:C6:DB:3A:41
Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Certificate serial: 4B9051DB5BD9336E6C918752B11FAC3DB8D52802
Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3231322e31382e3131342e302f32342d3234203d3e203133333335.roa
Signing time: Wed 27 Nov 2024 13:43:28 +0000
ROA not before: Wed 27 Nov 2024 13:38:28 +0000
ROA not after: Wed 26 Nov 2025 13:43:28 +0000
asID: 13335
IP address blocks: 212.18.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:90:51:db:5b:d9:33:6e:6c:91:87:52:b1:1f:ac:3d:b8:d5:28:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Validity
Not Before: Nov 27 13:38:28 2024 GMT
Not After : Nov 26 13:43:28 2025 GMT
Subject: CN=62A55BCAA0051D7101768D40D6DA3B00C6DB3A41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:af:7e:23:c2:a1:69:fa:05:06:22:a6:60:84:
d9:67:6f:0a:cf:32:d0:d6:e3:e4:70:82:b7:b5:4a:
2c:76:35:ca:af:2a:a4:2f:c0:e9:71:d5:9a:5f:fe:
23:3c:0b:eb:05:41:19:ee:57:5f:66:2a:b3:96:44:
32:d6:69:76:2e:0a:83:fe:f8:15:76:aa:bd:91:20:
e9:8b:5b:55:85:3a:9c:a7:4d:fb:cc:1c:05:f2:7f:
dc:f1:9c:05:c9:3a:04:c3:72:0e:6d:a8:c7:5c:64:
28:8f:03:bd:30:18:4b:b1:1f:43:bc:9f:cc:b4:54:
ec:e3:36:fa:1e:b6:f0:3e:0e:52:68:95:5f:de:51:
f4:c0:90:7d:6b:1e:37:69:8a:14:d1:ff:3b:22:98:
47:60:38:6d:8d:a1:54:a2:00:09:64:fc:60:64:f8:
0a:ce:63:8f:1c:8b:2f:f1:77:15:23:75:50:c9:45:
81:eb:04:9d:48:4a:ff:94:2b:a3:0b:4f:51:66:e6:
1a:5b:81:70:29:73:84:0f:36:13:be:89:d0:d8:82:
30:c1:ce:31:6e:6a:27:a6:2c:fb:12:5f:07:16:20:
05:21:6a:5c:98:79:ba:c1:52:19:62:01:e2:1c:9c:
27:7a:e6:8c:11:03:36:db:28:ba:b2:54:52:9a:85:
c8:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:A5:5B:CA:A0:05:1D:71:01:76:8D:40:D6:DA:3B:00:C6:DB:3A:41
X509v3 Authority Key Identifier:
keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3231322e31382e3131342e302f32342d3234203d3e203133333335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.18.114.0/24
Signature Algorithm: sha256WithRSAEncryption
31:dc:20:99:26:0a:45:86:62:60:f6:a0:d5:de:a5:94:9f:2d:
7f:60:bf:46:99:a6:59:05:44:79:6e:22:87:01:d5:8e:b1:11:
95:d9:21:83:69:57:d3:af:71:0d:49:63:ac:57:5b:28:59:8b:
69:40:de:7a:e1:ca:68:c5:b2:6b:fb:a7:ee:15:3c:71:c4:a7:
23:dc:d2:7d:a3:6c:d6:4d:78:a3:6c:49:12:f1:f5:79:3c:9b:
d3:44:80:e6:bd:6e:19:50:c8:49:8e:49:ab:4e:6e:70:a9:c1:
6d:63:f4:7c:9b:08:78:40:e2:19:dc:ac:79:b9:25:39:5d:c2:
f4:53:a6:d8:54:ec:8d:89:cc:25:a7:0d:b7:f3:59:df:5b:8e:
58:5a:52:8f:53:04:76:e6:ae:5e:1a:a0:04:5a:16:28:53:91:
a3:10:b2:cf:c6:ef:90:67:d4:3c:7d:d0:44:5b:25:73:26:24:
c7:30:a5:98:06:18:2e:b2:d8:8c:80:7a:1c:a6:6f:1d:77:c9:
ac:9a:cb:08:c5:f5:97:01:45:ec:b3:6a:3b:d6:3d:26:79:e3:
71:68:8c:20:41:38:f9:df:27:c1:5a:a7:ba:05:2c:58:64:62:
db:d6:81:07:3f:a4:f3:f1:7e:c1:cf:3a:96:30:37:e4:4e:2d:
aa:80:e2:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:18:10 2025 by rpki-client