Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/2/3139342e35382e36352e302f32342d3234203d3e20323134373638.roa
File: 3139342e35382e36352e302f32342d3234203d3e20323134373638.roa (raw, json)
Hash identifier: y/fox/NDWEI298o75eeGijkFXnfs+27YTJMVLS6ZcwQ=
Subject key identifier: 9C:68:9A:D5:2E:FB:FE:F6:56:86:56:32:E8:59:B4:6E:18:9A:0A:F3
Certificate issuer: /CN=974E186C2E15C12700D0165ACC54D7A585EE383C
Certificate serial: 151AD6D5C218F88319042FC30AC22B67DCC47CF7
Authority key identifier: 97:4E:18:6C:2E:15:C1:27:00:D0:16:5A:CC:54:D7:A5:85:EE:38:3C
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/974E186C2E15C12700D0165ACC54D7A585EE383C.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/2/3139342e35382e36352e302f32342d3234203d3e20323134373638.roa
Signing time: Fri 13 Sep 2024 10:59:36 +0000
ROA not before: Fri 13 Sep 2024 10:54:36 +0000
ROA not after: Fri 12 Sep 2025 10:59:36 +0000
asID: 214768
IP address blocks: 194.58.65.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:1a:d6:d5:c2:18:f8:83:19:04:2f:c3:0a:c2:2b:67:dc:c4:7c:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=974E186C2E15C12700D0165ACC54D7A585EE383C
Validity
Not Before: Sep 13 10:54:36 2024 GMT
Not After : Sep 12 10:59:36 2025 GMT
Subject: CN=9C689AD52EFBFEF656865632E859B46E189A0AF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5b:76:8f:42:55:ca:5a:4e:f1:de:bd:17:65:
22:e5:27:03:f4:27:c1:f6:6b:30:8f:00:dd:5a:6d:
2a:56:60:1a:11:9a:b4:f6:7d:87:07:cc:10:0f:e7:
97:f9:25:6a:fe:3e:7d:d1:82:2e:4f:aa:88:61:21:
f5:65:11:65:93:87:3f:ae:c6:de:da:db:92:c8:c7:
d1:34:ce:4c:40:ee:1d:48:2f:a9:0e:24:d8:9f:69:
4d:0a:19:09:1a:f3:4a:b5:8a:9b:9b:d1:64:66:35:
d6:46:c0:59:52:80:63:88:21:34:8b:c9:e9:16:39:
27:8e:a2:0c:45:c7:00:4d:d4:4d:73:1b:f0:da:12:
8b:87:19:03:2f:7d:bc:25:3c:5d:25:55:1d:37:e2:
20:3b:09:db:16:01:e5:e5:da:ee:c9:38:be:ec:10:
f6:67:66:ec:9f:5d:3d:00:83:ef:b1:f0:46:bd:ba:
cd:b3:90:b8:9f:8d:3b:68:aa:53:40:bd:78:10:f8:
22:c9:08:82:3a:22:44:41:bd:3f:cc:4d:51:41:46:
f8:8b:1e:8f:68:d7:84:52:54:49:62:7c:83:87:76:
8c:ab:5d:80:cf:bb:b8:99:d1:d3:68:26:c6:3c:63:
cf:f6:50:fa:24:b3:96:1a:ee:75:ce:ec:48:61:25:
7a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:68:9A:D5:2E:FB:FE:F6:56:86:56:32:E8:59:B4:6E:18:9A:0A:F3
X509v3 Authority Key Identifier:
keyid:97:4E:18:6C:2E:15:C1:27:00:D0:16:5A:CC:54:D7:A5:85:EE:38:3C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/2/974E186C2E15C12700D0165ACC54D7A585EE383C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/974E186C2E15C12700D0165ACC54D7A585EE383C.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/2/3139342e35382e36352e302f32342d3234203d3e20323134373638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.58.65.0/24
Signature Algorithm: sha256WithRSAEncryption
37:94:05:28:c3:c2:9c:d6:a9:34:44:ab:d7:eb:33:e3:fc:ed:
27:c5:97:7a:ed:fe:61:32:0e:41:a7:ed:2a:3c:3c:17:4c:eb:
d8:7c:70:5e:eb:65:ba:b0:fb:5c:2f:66:21:0d:8b:59:47:d7:
77:9b:ad:02:87:a7:50:27:a1:fb:43:78:50:44:2f:17:e7:31:
69:65:24:71:fa:5d:eb:ff:94:b7:a9:61:7f:57:a7:1d:87:3c:
8e:08:2d:da:01:cc:bb:2c:b1:fa:ee:a7:6b:16:46:20:59:9b:
24:61:93:b3:2e:4a:7e:da:25:4d:47:98:cb:91:f2:ba:7c:35:
fe:c8:8b:2b:72:da:d1:6d:27:1e:9d:d4:4e:6a:1b:75:93:b3:
8f:0c:56:92:93:96:21:c9:d7:5b:80:4f:66:42:79:3c:f9:e4:
e9:dd:c2:cf:e9:00:be:2b:ad:78:58:2d:d4:b1:d0:bc:66:57:
7b:69:1e:e6:0d:75:28:7b:0f:15:83:0e:83:7e:b6:fd:91:2f:
1b:30:8c:16:82:81:78:d6:44:84:bf:d3:64:ec:3c:c5:f6:55:
9c:ab:3b:95:54:36:d7:49:14:ea:a0:1c:d0:3d:bd:6c:b5:f5:
b2:af:e6:b0:b4:bd:6d:f4:9c:a0:03:c0:a4:85:d9:24:fb:f6:
b3:0b:37:13
-----BEGIN CERTIFICATE-----
MIIFYzCCBEugAwIBAgIUFRrW1cIY+IMZBC/DCsIrZ9zEfPcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTc0RTE4NkMyRTE1QzEyNzAwRDAxNjVBQ0M1NEQ3QTU4
NUVFMzgzQzAeFw0yNDA5MTMxMDU0MzZaFw0yNTA5MTIxMDU5MzZaMDMxMTAvBgNV
BAMTKDlDNjg5QUQ1MkVGQkZFRjY1Njg2NTYzMkU4NTlCNDZFMTg5QTBBRjMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpW3aPQlXKWk7x3r0XZSLlJwP0
J8H2azCPAN1abSpWYBoRmrT2fYcHzBAP55f5JWr+Pn3Rgi5PqohhIfVlEWWThz+u
xt7a25LIx9E0zkxA7h1IL6kOJNifaU0KGQka80q1ipub0WRmNdZGwFlSgGOIITSL
yekWOSeOogxFxwBN1E1zG/DaEouHGQMvfbwlPF0lVR034iA7CdsWAeXl2u7JOL7s
EPZnZuyfXT0Ag++x8Ea9us2zkLifjTtoqlNAvXgQ+CLJCII6IkRBvT/MTVFBRviL
Ho9o14RSVElifIOHdoyrXYDPu7iZ0dNoJsY8Y8/2UPoks5Ya7nXO7EhhJXq/AgMB
AAGjggJtMIICaTAdBgNVHQ4EFgQUnGia1S77/vZWhlYy6Fm0bhiaCvMwHwYDVR0j
BBgwFoAUl04YbC4VwScA0BZazFTXpYXuODwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMjNjZGY5Y2EtZGQ2NC00ZjMxLWFiZjMtMGYzMmI4ZTdm
ZTc5LzIvOTc0RTE4NkMyRTE1QzEyNzAwRDAxNjVBQ0M1NEQ3QTU4NUVFMzgzQy5j
cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp
LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1
YzkxYmUzZjlkLzIvOTc0RTE4NkMyRTE1QzEyNzAwRDAxNjVBQ0M1NEQ3QTU4NUVF
MzgzQy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMjNjZGY5Y2Et
ZGQ2NC00ZjMxLWFiZjMtMGYzMmI4ZTdmZTc5LzIvMzEzOTM0MmUzNTM4MmUzNjM1
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMTM0MzczNjM4LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
wjpBMA0GCSqGSIb3DQEBCwUAA4IBAQA3lAUow8Kc1qk0RKvX6zPj/O0nxZd67f5h
Mg5Bp+0qPDwXTOvYfHBe62W6sPtcL2YhDYtZR9d3m60Ch6dQJ6H7Q3hQRC8X5zFp
ZSRx+l3r/5S3qWF/V6cdhzyOCC3aAcy7LLH67qdrFkYgWZskYZOzLkp+2iVNR5jL
kfK6fDX+yIsrctrRbScendROaht1k7OPDFaSk5YhyddbgE9mQnk8+eTp3cLP6QC+
K614WC3UsdC8Zld7aR7mDXUoew8Vgw6Dfrb9kS8bMIwWgoF41kSEv9Nk7DzF9lWc
qzuVVDbXSRTqoBzQPb1stfWyr+awtL1t9JygA8Ckhdkk+/azCzcT
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:33:58 2025 by rpki-client