Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/29f8c1a3-4e13-49d0-a639-5bb5219b8f5b/0/3139342e3134352e3233372e302f32342d3234203d3e20383334.roa
File: 3139342e3134352e3233372e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: k6ZwleVJ4rM1Pbd1HT8PHUZvFh4+jjJuwIqy33Wxvt0=
Subject key identifier: FC:8D:33:AD:35:6D:FF:33:CF:53:D8:16:57:4D:E0:5F:A0:ED:6D:1B
Certificate issuer: /CN=dd3dade2770cfa06e07166668407095f08c274f8
Certificate serial: 428E9693A01465F54946BD52A836EFF7D2397754
Authority key identifier: DD:3D:AD:E2:77:0C:FA:06:E0:71:66:66:84:07:09:5F:08:C2:74:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3T2t4ncM-gbgcWZmhAcJXwjCdPg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/29f8c1a3-4e13-49d0-a639-5bb5219b8f5b/0/3139342e3134352e3233372e302f32342d3234203d3e20383334.roa
Signing time: Fri 01 Dec 2023 00:00:09 +0000
ROA not before: Thu 30 Nov 2023 23:55:09 +0000
ROA not after: Fri 29 Nov 2024 00:00:09 +0000
asID: 834
IP address blocks: 194.145.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:8e:96:93:a0:14:65:f5:49:46:bd:52:a8:36:ef:f7:d2:39:77:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd3dade2770cfa06e07166668407095f08c274f8
Validity
Not Before: Nov 30 23:55:09 2023 GMT
Not After : Nov 29 00:00:09 2024 GMT
Subject: CN=FC8D33AD356DFF33CF53D816574DE05FA0ED6D1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d7:e1:ac:10:7f:61:2f:44:78:df:84:67:f5:
26:75:35:e4:34:cf:81:4f:8f:29:16:75:3d:39:70:
a5:11:32:60:c3:8a:09:b8:82:8d:11:7a:de:82:8a:
73:69:c3:f2:e8:ac:a0:96:18:f9:2d:51:bc:9b:c0:
b9:97:5e:41:f3:e4:79:e9:35:aa:14:eb:df:73:03:
60:b1:c6:b4:4c:c7:38:d9:0f:e6:b5:0d:d9:2d:85:
7d:b1:06:de:75:64:dc:2f:92:dc:0c:f2:37:27:cf:
e8:3f:c2:b4:83:5f:3f:e2:56:15:2d:70:0c:f3:ed:
a4:f9:c1:43:bf:0d:cf:39:08:38:a0:c6:66:24:33:
db:93:50:52:d2:b1:59:1c:e2:94:4d:ec:5f:c9:b5:
4d:69:69:d3:60:26:de:28:91:d1:9f:ee:3f:93:1f:
42:09:47:88:02:3a:19:6e:4a:55:08:3c:e7:b1:1d:
97:0a:09:da:76:9e:b3:16:f7:e1:0c:b8:c3:cd:eb:
9d:f4:99:c7:ea:89:c0:f7:db:32:13:4f:54:28:9c:
69:ba:5d:d8:55:07:5e:d9:12:38:78:4a:df:12:dd:
10:0f:07:c5:e2:03:61:56:3c:c1:8e:c2:fc:0c:16:
2c:db:44:28:fb:21:e6:54:f9:ba:92:fc:e4:f3:f7:
98:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:8D:33:AD:35:6D:FF:33:CF:53:D8:16:57:4D:E0:5F:A0:ED:6D:1B
X509v3 Authority Key Identifier:
keyid:DD:3D:AD:E2:77:0C:FA:06:E0:71:66:66:84:07:09:5F:08:C2:74:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/29f8c1a3-4e13-49d0-a639-5bb5219b8f5b/0/DD3DADE2770CFA06E07166668407095F08C274F8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3T2t4ncM-gbgcWZmhAcJXwjCdPg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/29f8c1a3-4e13-49d0-a639-5bb5219b8f5b/0/3139342e3134352e3233372e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.145.237.0/24
Signature Algorithm: sha256WithRSAEncryption
73:ae:cc:10:90:e2:6a:e0:fb:31:c6:dd:50:f2:51:c6:8e:aa:
25:c7:6f:d2:1c:13:1d:af:c5:7e:1d:f2:63:38:a5:98:07:89:
d1:c0:b0:a3:a3:db:3c:0e:2c:6a:8a:6f:37:3d:d1:a2:f4:ec:
d0:b1:e0:d4:2a:7d:10:85:51:d9:29:6c:9a:ab:5d:03:01:38:
a5:47:ed:ff:ee:61:e2:b0:3f:d8:f0:f5:b2:5d:b3:0d:09:ad:
ab:4d:8d:9d:d2:5e:eb:55:bc:7f:a2:ff:48:ba:7c:6d:fc:b3:
67:d7:6b:a3:70:7d:5e:02:7d:8b:75:3d:29:92:6a:97:08:69:
9d:99:52:61:8b:ef:b8:7f:d7:cd:f6:ae:86:da:21:45:20:af:
c4:1f:fb:0d:f1:c3:85:c1:c4:0f:03:e4:a3:dc:d0:7c:52:03:
f8:12:e3:89:13:d5:54:94:c5:da:11:f7:f6:46:e2:b9:6e:6f:
72:58:2c:06:25:a9:dd:fb:1e:f2:ed:58:24:5a:76:b3:5b:22:
1d:e4:74:8f:0c:5d:fd:44:9e:2e:17:89:f2:ba:9e:c4:0c:ac:
97:2e:e9:b5:3d:d7:cc:ae:d8:56:04:51:4f:d7:3d:fb:f0:86:
7b:ac:76:8c:01:7b:d0:a2:82:9c:1a:ca:44:39:94:fc:75:94:
ae:c3:4b:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:44:28 2025 by rpki-client