Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2e6da5c7-670a-41b1-96eb-3899388b292c/0/3139352e3138322e342e302f32342d3234203d3e203432363839.roa
File: 3139352e3138322e342e302f32342d3234203d3e203432363839.roa (raw, json)
Hash identifier: IyJWCF6vOb5XAnkphh9JpBDn9FsqWDOTudWgznHRXF4=
Subject key identifier: 02:AE:72:DF:9C:87:1B:EC:ED:E4:22:D3:E5:1C:00:E7:83:9A:13:A2
Certificate issuer: /CN=735d93706cbf4688ce7d60fc0ed693d4cc4a9326
Certificate serial: 0BC3DC2E37E658B4F9075EC0ABABE6FA26A4DBB1
Authority key identifier: 73:5D:93:70:6C:BF:46:88:CE:7D:60:FC:0E:D6:93:D4:CC:4A:93:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c12TcGy_RojOfWD8DtaT1MxKkyY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2e6da5c7-670a-41b1-96eb-3899388b292c/0/3139352e3138322e342e302f32342d3234203d3e203432363839.roa
Signing time: Tue 18 Feb 2025 11:21:32 +0000
ROA not before: Tue 18 Feb 2025 11:16:32 +0000
ROA not after: Tue 17 Feb 2026 11:21:32 +0000
asID: 42689
IP address blocks: 195.182.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:c3:dc:2e:37:e6:58:b4:f9:07:5e:c0:ab:ab:e6:fa:26:a4:db:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=735d93706cbf4688ce7d60fc0ed693d4cc4a9326
Validity
Not Before: Feb 18 11:16:32 2025 GMT
Not After : Feb 17 11:21:32 2026 GMT
Subject: CN=02AE72DF9C871BECEDE422D3E51C00E7839A13A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:26:08:79:ce:23:b1:61:35:40:60:b2:19:12:
73:11:7c:24:d6:87:0b:62:20:da:44:73:7f:f5:22:
21:6c:5b:05:f4:57:e5:48:33:9b:32:d2:c6:a0:d8:
c8:85:94:9e:a8:10:49:1a:dc:67:c3:34:3a:6d:18:
72:b1:3e:c7:38:84:10:18:a9:97:87:cc:aa:45:22:
dd:dc:e1:54:ab:19:77:59:6c:f1:82:2b:80:5b:a4:
95:93:1e:a6:54:12:96:6d:87:89:5f:56:95:5f:2a:
9a:b9:97:d2:32:d4:4e:89:cd:b0:31:8b:0d:44:29:
c6:9f:54:16:6e:49:99:ea:25:7f:0e:f4:31:2c:4f:
c7:1e:4e:2c:92:bb:d3:66:15:22:de:a6:36:c1:41:
3a:c4:f3:8c:93:78:07:78:5b:51:8c:f7:80:ad:f2:
95:eb:d9:68:23:84:97:69:9f:ed:19:f9:5b:1f:68:
29:dc:3e:80:c7:9f:14:a6:04:3b:4f:2e:2f:be:40:
bf:db:58:65:a3:6f:ab:80:6e:c8:71:f0:c4:d0:5f:
ae:83:84:cd:c6:f7:79:ed:7d:71:62:74:7f:40:d1:
7e:19:df:c8:43:36:bc:2a:80:5c:39:23:e4:b6:38:
5c:da:fb:bb:f8:7d:bf:03:2f:ba:dd:a5:46:0d:f4:
8f:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:AE:72:DF:9C:87:1B:EC:ED:E4:22:D3:E5:1C:00:E7:83:9A:13:A2
X509v3 Authority Key Identifier:
keyid:73:5D:93:70:6C:BF:46:88:CE:7D:60:FC:0E:D6:93:D4:CC:4A:93:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/2e6da5c7-670a-41b1-96eb-3899388b292c/0/735D93706CBF4688CE7D60FC0ED693D4CC4A9326.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c12TcGy_RojOfWD8DtaT1MxKkyY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2e6da5c7-670a-41b1-96eb-3899388b292c/0/3139352e3138322e342e302f32342d3234203d3e203432363839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.182.4.0/24
Signature Algorithm: sha256WithRSAEncryption
07:54:6b:11:73:66:1b:a6:37:6c:94:36:12:5e:c9:41:7e:1f:
b1:23:ad:dd:1f:5c:3d:53:59:10:e9:2c:3c:51:d6:a6:39:4e:
58:c3:5e:ae:9d:a5:7c:65:ed:08:5d:0e:51:b4:60:ba:4e:45:
82:f9:40:08:15:6f:8a:f4:0d:a4:57:ee:c6:bc:93:ad:2b:8b:
a1:48:f6:66:0a:0f:17:87:71:8f:7f:81:aa:1c:31:45:14:76:
ce:af:59:31:72:1d:44:04:18:39:6f:dc:25:a6:fa:fd:72:6b:
f4:0e:4e:cf:2b:92:22:25:70:4d:a5:0a:8b:9b:21:74:49:f3:
6b:4e:bb:33:05:13:21:07:01:41:09:a7:63:8e:5d:dc:9e:71:
c2:33:34:40:0a:6a:19:99:86:9a:93:91:da:6f:97:b8:8e:2f:
dd:81:7c:d4:f0:81:76:35:d9:43:9a:47:c3:13:9f:44:c5:b8:
08:fa:fb:37:16:71:03:d6:0f:20:9b:ed:14:3f:93:ec:4e:4d:
17:11:83:1e:d5:62:3a:a1:17:ff:12:ed:36:e9:8c:f5:13:cb:
89:88:f1:bf:b7:1f:b4:42:fa:2a:1a:03:3a:9b:37:b1:4a:1f:
3d:d6:d1:00:9e:be:11:46:6a:71:67:49:f6:97:e1:8c:46:ac:
fb:a1:42:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 05:50:19 2025 by rpki-client