Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2e6da5c7-670a-41b1-96eb-3899388b292c/0/352e3135312e302e302f31362d3136203d3e203432363839.roa
File: 352e3135312e302e302f31362d3136203d3e203432363839.roa (raw, json)
Hash identifier: OSkQ9WJKZ8SN3EWNh2e4mAGJzYnDFkB5FPxdPrSsiS0=
Subject key identifier: EC:73:F8:FC:E9:8F:C6:5A:4E:C8:F2:0A:0D:20:76:7C:64:F9:B4:9B
Certificate issuer: /CN=735d93706cbf4688ce7d60fc0ed693d4cc4a9326
Certificate serial: 2483C70DF931971447A32C0AED97B2090C55A227
Authority key identifier: 73:5D:93:70:6C:BF:46:88:CE:7D:60:FC:0E:D6:93:D4:CC:4A:93:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c12TcGy_RojOfWD8DtaT1MxKkyY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2e6da5c7-670a-41b1-96eb-3899388b292c/0/352e3135312e302e302f31362d3136203d3e203432363839.roa
Signing time: Tue 18 Feb 2025 10:21:31 +0000
ROA not before: Tue 18 Feb 2025 10:16:31 +0000
ROA not after: Tue 17 Feb 2026 10:21:31 +0000
asID: 42689
IP address blocks: 5.151.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:83:c7:0d:f9:31:97:14:47:a3:2c:0a:ed:97:b2:09:0c:55:a2:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=735d93706cbf4688ce7d60fc0ed693d4cc4a9326
Validity
Not Before: Feb 18 10:16:31 2025 GMT
Not After : Feb 17 10:21:31 2026 GMT
Subject: CN=EC73F8FCE98FC65A4EC8F20A0D20767C64F9B49B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:cb:2e:4d:05:80:38:7c:13:47:2b:a4:77:75:
7b:f7:65:be:fe:a4:ee:20:38:9b:a6:06:79:f1:50:
2c:96:3d:82:af:a0:7f:0f:6c:ea:15:57:d7:54:45:
9c:24:3e:76:e1:a1:c2:4d:41:04:b6:51:00:8b:c6:
36:30:71:c6:be:e2:ba:92:b3:f1:97:25:37:4a:c6:
aa:8a:27:2f:7a:b3:26:93:b7:95:cc:af:14:86:7f:
08:96:8f:85:20:70:a1:b2:7d:f9:36:d5:c5:a3:a3:
5c:a1:ee:38:bd:31:0a:df:5b:e1:ac:1a:ab:68:5d:
46:9e:36:0a:b3:8c:91:d7:1b:ea:c3:50:82:46:8d:
6f:e7:d2:09:9f:16:b4:d8:8a:e2:27:34:7c:7a:23:
3f:81:ab:18:a1:10:9f:9e:e0:a6:c7:10:7c:06:d3:
cd:1e:d7:3d:c5:db:bf:c3:60:e3:ea:4c:d6:e9:f9:
f7:47:ad:4e:3e:df:8e:62:88:0e:43:60:31:d4:d9:
17:e7:1e:d7:0c:e0:9d:2f:b7:dc:c4:93:b9:a6:67:
0a:64:24:3e:bf:a0:7a:b5:70:76:92:85:e9:e9:f3:
63:c1:90:25:92:ce:c4:02:53:3b:5a:ab:f5:98:6a:
74:3a:78:d3:5c:0b:e9:17:2f:56:71:48:1d:25:fb:
2e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:73:F8:FC:E9:8F:C6:5A:4E:C8:F2:0A:0D:20:76:7C:64:F9:B4:9B
X509v3 Authority Key Identifier:
keyid:73:5D:93:70:6C:BF:46:88:CE:7D:60:FC:0E:D6:93:D4:CC:4A:93:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/2e6da5c7-670a-41b1-96eb-3899388b292c/0/735D93706CBF4688CE7D60FC0ED693D4CC4A9326.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c12TcGy_RojOfWD8DtaT1MxKkyY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2e6da5c7-670a-41b1-96eb-3899388b292c/0/352e3135312e302e302f31362d3136203d3e203432363839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.151.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1d:93:0e:b3:f1:b4:3c:d5:eb:c6:1a:dc:47:da:9d:5c:a4:78:
4c:e2:e9:cc:b7:0c:b4:e8:83:98:61:cd:46:7f:56:46:06:2f:
bc:ff:52:af:65:1f:c3:4a:4a:53:cf:7d:44:26:f0:3e:8b:f7:
11:53:35:e7:ce:c9:47:ba:71:fe:95:9c:27:bb:b2:20:fa:75:
87:d1:e0:f5:06:b7:fa:78:8b:79:34:2a:01:5c:9a:b6:f8:94:
1b:7b:e8:4b:bc:ff:35:42:3b:74:16:f1:10:2e:cc:50:fc:da:
fb:f3:3f:db:8b:27:6c:dc:52:2e:aa:fb:6a:3c:f5:eb:78:64:
c7:58:b5:99:e0:6c:f0:41:7c:89:93:18:f0:e2:9e:41:ec:1d:
4e:34:6d:59:fd:31:76:04:f8:78:3a:56:c7:50:98:89:6e:f5:
e5:bd:d6:5a:66:85:6a:d1:0f:41:d1:9b:4f:97:4a:2a:dc:7d:
a8:f0:8b:fa:aa:9c:21:7f:75:dc:c9:88:fb:16:d6:f3:f2:f8:
1a:f6:9f:bb:b0:c5:cd:fa:78:a0:50:a4:c2:b0:23:75:f4:39:
fc:91:6a:57:92:56:06:24:45:78:6b:e0:69:7e:82:3d:90:52:
38:c4:58:42:ff:37:d8:9c:ef:ff:96:9c:16:27:67:f9:c7:15:
0e:7f:88:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:37 2025 by rpki-client