Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS132335.roa
File: AS132335.roa (raw, json)
Hash identifier: WB8ymaQS+xKvy7NRFQX9KqfUQ2EMlplVxzZmQHZ0X78=
Subject key identifier: DB:4E:73:09:C4:1B:3B:67:19:EB:A6:67:EA:52:5A:DD:62:77:95:3C
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 68F327FA95D6D07820CE338BA33FD70959D2701A
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS132335.roa
Signing time: Mon 24 Mar 2025 21:53:58 +0000
ROA not before: Mon 24 Mar 2025 21:48:58 +0000
ROA not after: Mon 23 Mar 2026 21:53:58 +0000
asID: 132335
IP address blocks: 181.214.44.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:f3:27:fa:95:d6:d0:78:20:ce:33:8b:a3:3f:d7:09:59:d2:70:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 24 21:48:58 2025 GMT
Not After : Mar 23 21:53:58 2026 GMT
Subject: CN=DB4E7309C41B3B6719EBA667EA525ADD6277953C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:30:95:97:97:09:70:e6:22:10:75:84:6a:92:
40:f6:5d:4e:02:b8:0a:45:4f:18:10:bd:5e:fc:a0:
8f:5e:d6:91:75:ab:1e:79:b3:87:63:a5:94:97:1d:
c3:b1:f4:75:cd:4c:9e:e8:ad:94:7c:b9:64:1f:f7:
71:18:b4:b5:72:0c:da:18:27:d0:35:6a:43:f3:ec:
b5:a5:66:9d:8a:ac:45:32:2a:d7:da:22:39:6a:2e:
60:49:53:f8:aa:fc:a9:a2:fd:aa:c4:fc:da:19:38:
7d:c8:59:49:6f:81:7b:c2:73:ca:48:f3:95:f4:5c:
5d:0d:d2:34:f3:79:3f:ac:1d:e8:d3:f1:32:40:43:
cc:e5:c0:18:7b:56:b3:a8:be:31:09:33:b4:f4:a3:
d4:82:64:06:6c:69:78:0a:5a:c0:d5:04:13:0c:72:
86:74:64:65:82:e8:16:30:c7:5c:3b:e4:0b:74:03:
2a:32:c8:33:29:e0:2c:d9:aa:ef:ad:73:4b:24:01:
fd:ba:97:7d:50:f4:dd:9e:d4:9a:a2:63:96:ff:a4:
f4:ed:8b:1d:b9:2e:b1:d5:f1:c1:70:8d:74:d2:02:
35:52:4e:2d:bc:c3:1d:6b:c6:01:85:c2:d0:3d:26:
9a:55:a6:8e:5f:cb:62:d1:b5:ae:eb:33:5d:12:64:
f2:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:4E:73:09:C4:1B:3B:67:19:EB:A6:67:EA:52:5A:DD:62:77:95:3C
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS132335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.214.44.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:20:92:4a:c1:29:16:cc:07:91:40:db:e7:af:85:ce:b7:c3:
f3:fa:7d:4a:59:bd:1b:2f:56:11:03:de:9a:93:16:fe:02:85:
f0:15:d6:c2:b2:09:cc:36:47:95:f1:9b:f8:56:30:87:01:93:
84:4f:d3:b6:28:ba:c4:65:e6:5b:6d:e6:81:1c:4d:fe:a3:e7:
24:33:66:9a:e2:87:fa:e2:a3:06:c6:e6:23:c7:e4:07:f1:8e:
d4:0f:c3:1b:2c:48:41:c6:46:1d:2b:52:99:0e:e8:34:10:b4:
e6:69:b6:d6:c5:ad:95:22:b6:76:31:50:02:82:ee:77:6b:60:
3c:d6:17:e3:ef:fa:6c:60:49:ce:74:a1:e5:55:a2:79:0c:21:
7c:e9:d5:f3:2b:01:cf:88:86:5f:dc:9c:7c:8d:7e:fe:1d:c6:
8d:d7:c7:0e:75:73:dd:c2:47:58:1b:49:bb:2d:68:23:76:c8:
2b:a0:1d:2f:b8:e5:ce:24:b1:d3:41:69:17:32:dd:9a:63:80:
fe:c5:1a:4b:1c:7b:e6:b0:62:a9:53:82:ca:14:12:74:68:19:
34:da:e2:fd:fa:65:5e:44:24:c9:23:d5:39:b7:b2:77:ca:88:
bd:03:41:4d:40:b8:6e:02:8b:27:93:01:15:fa:1a:2a:6a:c0:
18:21:e6:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:29 2025 by rpki-client