Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/38332e3134322e33312e302f32342d3234203d3e20323135303835.roa
File: 38332e3134322e33312e302f32342d3234203d3e20323135303835.roa (raw, json)
Hash identifier: DeNLRbWhS9WKIEvlMBYaR+2p0F2qMHWNHV7i4if0F4Q=
Subject key identifier: 53:83:44:D3:CF:39:94:AA:63:35:BE:36:FB:B0:C1:06:AE:E7:2A:94
Certificate issuer: /CN=75D5C2ECD30F680DB5D16987F457FEB45D8BA970
Certificate serial: 56AA0EE8CF6B5C670E66D4FBA273CCF006296374
Authority key identifier: 75:D5:C2:EC:D3:0F:68:0D:B5:D1:69:87:F4:57:FE:B4:5D:8B:A9:70
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/38332e3134322e33312e302f32342d3234203d3e20323135303835.roa
Signing time: Mon 02 Sep 2024 09:08:01 +0000
ROA not before: Mon 02 Sep 2024 09:03:01 +0000
ROA not after: Mon 01 Sep 2025 09:08:01 +0000
asID: 215085
IP address blocks: 83.142.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:aa:0e:e8:cf:6b:5c:67:0e:66:d4:fb:a2:73:cc:f0:06:29:63:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75D5C2ECD30F680DB5D16987F457FEB45D8BA970
Validity
Not Before: Sep 2 09:03:01 2024 GMT
Not After : Sep 1 09:08:01 2025 GMT
Subject: CN=538344D3CF3994AA6335BE36FBB0C106AEE72A94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3b:55:4d:b8:7b:7a:ba:53:cd:62:65:ed:f9:
d0:3c:64:b9:7b:de:89:06:79:1f:65:e0:e4:d9:b9:
0a:19:76:d6:e4:e0:c7:af:8b:95:1a:bc:9a:ca:82:
a1:ce:b9:1b:5b:4b:f4:e0:b5:0a:de:14:d2:2b:a0:
26:39:71:fc:7f:6b:71:cc:65:3b:6a:fc:d1:d4:f7:
ab:4c:b2:f8:48:d2:64:b6:fc:08:70:65:6c:26:38:
48:b2:0f:d2:96:81:bd:6e:b9:9a:53:3a:b5:ca:fd:
ad:5a:4b:2b:6f:e9:4f:f3:dd:1b:f0:c1:1f:82:37:
ed:ec:19:b2:7f:f0:0a:88:30:aa:83:7c:9f:28:e0:
2e:8b:ca:02:bb:35:13:6c:7f:56:3c:5f:4f:a7:5c:
2d:81:23:4a:15:d9:a3:d0:e0:24:7b:7c:ba:c7:45:
44:ac:64:d8:1f:e6:8e:ca:d8:70:f6:b6:15:c4:c8:
f4:03:b4:58:73:3a:55:ba:17:91:ae:79:d1:d9:2d:
cf:ba:4f:f7:62:b7:4d:9d:2a:ef:ee:86:0a:30:5f:
dd:12:8b:cd:4d:50:64:00:c0:29:ea:ee:83:c9:a7:
f6:ab:44:5b:d5:ea:d5:88:d1:6f:4a:de:36:6c:c2:
f7:5a:1e:d0:82:a8:2e:91:89:46:77:f2:ca:ac:75:
d7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:83:44:D3:CF:39:94:AA:63:35:BE:36:FB:B0:C1:06:AE:E7:2A:94
X509v3 Authority Key Identifier:
keyid:75:D5:C2:EC:D3:0F:68:0D:B5:D1:69:87:F4:57:FE:B4:5D:8B:A9:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/38332e3134322e33312e302f32342d3234203d3e20323135303835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.142.31.0/24
Signature Algorithm: sha256WithRSAEncryption
20:09:67:d7:1c:26:3e:5d:42:80:45:94:ee:07:ff:27:61:c8:
3d:d1:58:a9:16:53:a1:b3:e3:87:61:df:91:5c:e0:69:40:7c:
d3:2c:cc:36:d7:41:6e:2b:f1:a9:8f:29:99:21:4a:41:5e:dc:
ca:2f:55:3a:b8:f7:bf:f7:60:e8:ed:b1:4d:58:0c:14:40:50:
3c:97:81:01:23:ce:d4:9d:94:24:e1:c5:68:a1:a4:c5:b4:61:
36:de:d5:0b:40:25:97:6a:5a:f9:06:0b:85:6c:35:4d:6a:02:
62:da:2f:32:dc:ec:21:51:1e:46:fe:df:3b:3b:e3:29:e0:d9:
95:c1:10:24:dc:59:6c:d6:1f:da:d1:f0:85:fb:52:51:a1:8e:
87:e7:dc:61:00:52:d8:b7:af:4e:68:07:31:2a:c9:cb:eb:c7:
d3:59:ce:9a:04:a4:7a:bb:cd:7f:37:32:b0:59:26:2d:8d:d9:
dd:c9:b6:4f:dc:14:8b:29:5c:de:be:ca:4f:34:eb:de:43:aa:
3f:21:f5:dc:80:10:f2:31:8e:94:e4:ac:7c:3d:b6:1e:18:fc:
fe:d6:45:07:13:0a:c1:b3:36:23:b9:22:62:7f:67:9e:78:86:
5b:b0:30:67:0a:45:aa:7d:72:69:3b:c9:0c:b0:70:a9:3a:e8:
8f:fa:2b:ef
-----BEGIN CERTIFICATE-----
MIIFYzCCBEugAwIBAgIUVqoO6M9rXGcOZtT7onPM8AYpY3QwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzVENUMyRUNEMzBGNjgwREI1RDE2OTg3RjQ1N0ZFQjQ1
RDhCQTk3MDAeFw0yNDA5MDIwOTAzMDFaFw0yNTA5MDEwOTA4MDFaMDMxMTAvBgNV
BAMTKDUzODM0NEQzQ0YzOTk0QUE2MzM1QkUzNkZCQjBDMTA2QUVFNzJBOTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfO1VNuHt6ulPNYmXt+dA8ZLl7
3okGeR9l4OTZuQoZdtbk4Mevi5UavJrKgqHOuRtbS/TgtQreFNIroCY5cfx/a3HM
ZTtq/NHU96tMsvhI0mS2/AhwZWwmOEiyD9KWgb1uuZpTOrXK/a1aSytv6U/z3Rvw
wR+CN+3sGbJ/8AqIMKqDfJ8o4C6LygK7NRNsf1Y8X0+nXC2BI0oV2aPQ4CR7fLrH
RUSsZNgf5o7K2HD2thXEyPQDtFhzOlW6F5GuedHZLc+6T/dit02dKu/uhgowX90S
i81NUGQAwCnq7oPJp/arRFvV6tWI0W9K3jZswvdaHtCCqC6RiUZ38sqsdddzAgMB
AAGjggJtMIICaTAdBgNVHQ4EFgQUU4NE0885lKpjNb42+7DBBq7nKpQwHwYDVR0j
BBgwFoAUddXC7NMPaA210WmH9Ff+tF2LqXAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQtN2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2
YWJmLzEvNzVENUMyRUNEMzBGNjgwREI1RDE2OTg3RjQ1N0ZFQjQ1RDhCQTk3MC5j
cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp
LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1
YzkxYmUzZjlkLzIvNzVENUMyRUNEMzBGNjgwREI1RDE2OTg3RjQ1N0ZFQjQ1RDhC
QTk3MC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQt
N2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2YWJmLzEvMzgzMzJlMzEzNDMyMmUzMzMx
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMTM1MzAzODM1LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
U44fMA0GCSqGSIb3DQEBCwUAA4IBAQAgCWfXHCY+XUKARZTuB/8nYcg90VipFlOh
s+OHYd+RXOBpQHzTLMw210FuK/GpjymZIUpBXtzKL1U6uPe/92Do7bFNWAwUQFA8
l4EBI87UnZQk4cVooaTFtGE23tULQCWXalr5BguFbDVNagJi2i8y3OwhUR5G/t87
O+Mp4NmVwRAk3Fls1h/a0fCF+1JRoY6H59xhAFLYt69OaAcxKsnL68fTWc6aBKR6
u81/NzKwWSYtjdndybZP3BSLKVzevspPNOveQ6o/IfXcgBDyMY6U5Kx8PbYeGPz+
1kUHEwrBszYjuSJif2eeeIZbsDBnCkWqfXJpO8kMsHCpOuiP+ivv
-----END CERTIFICATE-----
Generated at Thu Apr 3 11:20:16 2025 by rpki-client