Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/352e3138312e3138342e302f32342d3234203d3e20323132333335.roa
File: 352e3138312e3138342e302f32342d3234203d3e20323132333335.roa (raw, json)
Hash identifier: EGBFBscvQ1YWstG9kbxkZOotMsNA8UcpxsIuwRfrnH4=
Subject key identifier: CF:7E:87:CB:47:D9:A6:CB:D8:E4:93:4D:08:F1:70:4E:9A:35:66:09
Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Certificate serial: 1221E9E36352757329B8FBFFA07C48C469978880
Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/352e3138312e3138342e302f32342d3234203d3e20323132333335.roa
Signing time: Tue 07 Jan 2025 13:53:51 +0000
ROA not before: Tue 07 Jan 2025 13:48:51 +0000
ROA not after: Tue 06 Jan 2026 13:53:51 +0000
asID: 212335
IP address blocks: 5.181.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:21:e9:e3:63:52:75:73:29:b8:fb:ff:a0:7c:48:c4:69:97:88:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Validity
Not Before: Jan 7 13:48:51 2025 GMT
Not After : Jan 6 13:53:51 2026 GMT
Subject: CN=CF7E87CB47D9A6CBD8E4934D08F1704E9A356609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:48:ec:ad:0b:0a:a0:39:6c:eb:86:46:65:fe:
03:d3:04:72:8a:4f:da:1f:54:84:c1:5d:5d:05:e7:
10:2a:cb:cb:48:bc:bd:82:7f:8e:4c:f4:72:3c:17:
0a:c4:31:ac:c4:d1:e1:d3:d1:4f:61:9e:94:35:d0:
ae:81:44:3c:2d:8b:05:70:ce:ee:fd:cf:70:c7:d6:
78:dc:34:31:a9:de:39:b0:f7:ea:2b:77:2d:ec:e4:
bd:69:33:fa:c0:03:6e:61:35:34:ce:ad:d4:ea:3f:
91:80:8b:e4:fc:2a:c7:27:a0:7b:f8:fa:8a:31:91:
04:70:79:5b:cf:a5:3b:a2:21:e5:c0:0d:24:c1:c1:
a8:ee:19:5e:59:7a:e8:10:9a:e5:29:17:a0:5b:e3:
06:e1:08:ec:25:b1:36:b4:ab:f7:87:27:e0:b7:3b:
aa:26:75:96:1c:06:50:2d:73:ac:e1:08:1c:81:bf:
66:89:67:b8:8c:a8:3a:04:50:81:ca:b4:0e:e8:c3:
2f:da:72:f6:72:72:fc:f6:b6:ed:a5:68:fe:03:9d:
08:9d:49:a9:08:2e:d3:62:03:11:75:f5:f6:4f:b1:
99:ea:df:a1:89:77:b5:d3:b9:80:c5:b4:48:40:df:
43:5b:52:1e:d0:d7:dd:e0:eb:96:af:96:3f:ac:a1:
73:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:7E:87:CB:47:D9:A6:CB:D8:E4:93:4D:08:F1:70:4E:9A:35:66:09
X509v3 Authority Key Identifier:
keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/352e3138312e3138342e302f32342d3234203d3e20323132333335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.184.0/24
Signature Algorithm: sha256WithRSAEncryption
64:22:f3:4f:09:0a:74:ff:39:6e:c6:e9:83:0c:bc:e5:38:9a:
2f:7f:69:9c:1a:cc:06:b8:6b:4c:d5:c8:c6:64:04:ca:6c:73:
b2:d7:49:9e:23:7f:12:91:3c:5f:55:71:a0:05:9b:0d:2d:a7:
fe:cd:9f:d0:48:4a:5b:ec:30:af:46:ab:99:c8:35:03:ed:e5:
6f:9a:7a:be:ea:20:67:0e:0a:5c:e0:33:3f:28:d5:c0:fc:d1:
db:c9:f7:87:b3:1d:1c:7a:7e:6e:ff:e8:e5:4a:12:29:c8:9b:
dd:5b:44:55:bc:55:87:f8:ad:8e:9f:fc:e2:2d:37:e5:19:fd:
07:3d:31:b3:db:24:b7:f6:93:de:af:f9:0f:3c:c9:13:fe:ce:
99:d6:d1:dd:ea:26:d4:e9:a3:21:df:b9:ed:6b:47:08:4e:b5:
25:a3:bc:6f:51:31:cb:e6:46:01:86:52:40:c0:77:de:f6:03:
03:e6:56:a4:8a:09:c8:a9:4b:8b:da:cc:9e:ba:68:91:33:45:
ee:02:44:e2:da:01:3d:a2:c3:66:70:88:f7:49:15:f4:06:0c:
8d:39:35:e6:91:4f:34:38:cf:90:ed:18:65:a3:46:9d:8c:3a:
10:89:13:40:44:28:e2:10:78:90:cc:3b:e8:6c:c9:a5:00:da:
9f:09:8c:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:31:19 2025 by rpki-client