Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS142146.roa
File: AS142146.roa (raw, json)
Hash identifier: kVvx1LUrvqtoky8xxfU6xN0XzFxZRg1q2wZOSEoxT8E=
Subject key identifier: 45:9B:8B:3A:87:B1:00:E4:CA:5A:0F:ED:DA:94:E2:FE:D5:AC:0E:69
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 7CC2DE782C0E26673E09C78C76B586766651C777
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS142146.roa
Signing time: Wed 19 Mar 2025 00:00:14 +0000
ROA not before: Tue 18 Mar 2025 23:55:14 +0000
ROA not after: Wed 18 Mar 2026 00:00:14 +0000
asID: 142146
IP address blocks: 179.61.176.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:c2:de:78:2c:0e:26:67:3e:09:c7:8c:76:b5:86:76:66:51:c7:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 18 23:55:14 2025 GMT
Not After : Mar 18 00:00:14 2026 GMT
Subject: CN=459B8B3A87B100E4CA5A0FEDDA94E2FED5AC0E69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:c3:73:e7:8b:b8:81:ef:d2:76:15:28:75:b2:
ef:9a:68:80:bf:cb:56:fd:b5:33:c9:d4:ff:e0:e9:
84:f0:01:d0:80:d1:6f:53:2a:35:a8:2a:bf:cc:a4:
74:24:ca:1d:d7:14:2f:cb:ad:f8:94:b3:bf:0c:d8:
05:66:c7:e8:82:c7:f1:74:5b:55:c0:eb:dc:ed:a5:
71:b1:73:4f:74:be:6a:82:86:4e:0e:7c:47:36:da:
02:87:7f:38:c5:09:b1:43:bf:34:99:77:d7:7e:b3:
0e:f4:5d:08:c3:bb:83:2c:3c:83:51:5b:a4:d3:23:
a9:a1:4a:ff:05:ab:73:65:a7:1d:36:ba:cd:a8:7b:
9a:32:92:9a:71:1a:86:cf:44:36:ac:2b:7f:4c:55:
75:88:b6:99:95:c8:fe:af:d0:87:50:27:67:f6:c2:
06:e7:1e:37:98:1d:de:a8:2e:c8:02:f8:b9:be:5c:
b9:43:20:60:46:21:cc:06:b4:b0:cb:04:c5:6f:96:
50:45:ef:c0:d6:85:36:05:2a:20:3e:64:94:8f:f7:
40:c7:77:f0:88:b8:28:2f:aa:6e:4e:88:d6:34:96:
01:60:20:91:70:98:e4:7a:df:97:41:21:e0:b7:3e:
04:48:1c:0b:2a:9f:f8:4f:5c:1c:ac:6c:6a:5c:2f:
5a:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:9B:8B:3A:87:B1:00:E4:CA:5A:0F:ED:DA:94:E2:FE:D5:AC:0E:69
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS142146.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.176.0/24
Signature Algorithm: sha256WithRSAEncryption
61:53:48:83:3b:78:62:c6:f3:e5:e3:05:63:aa:a4:db:6e:cf:
13:03:70:c5:34:fb:ee:0d:a0:ed:d5:f0:d3:7e:af:15:a1:8a:
5c:14:b6:9c:f0:71:2e:dd:83:79:e8:e8:b0:43:85:d5:07:0b:
a2:58:d0:d5:40:07:17:43:12:76:79:24:01:4d:3a:a0:59:40:
e8:3e:00:a2:31:b5:6b:a9:04:eb:31:5d:c0:a8:17:eb:0c:75:
14:5e:c0:90:e5:9e:b4:31:98:4e:0e:b9:96:8f:6f:d6:87:72:
53:f6:f9:8e:17:6d:6f:1b:18:a2:ab:1d:dd:9e:2b:fa:fc:66:
ab:c1:15:d1:cf:0d:4b:15:26:c6:fc:59:dd:30:07:06:5b:9a:
b3:86:f2:39:f3:c4:ec:98:f5:64:f6:bf:ae:b0:63:e7:81:bd:
df:2b:1c:38:dc:15:c6:3d:d5:63:19:98:53:df:fe:f3:5a:8b:
57:96:cf:70:35:cb:41:54:25:05:b7:c6:27:fb:4a:5e:f9:97:
da:8a:48:e5:97:cf:b6:a4:d9:44:2d:60:a3:38:cc:7f:a3:03:
b5:0d:87:38:52:a6:d7:bb:5a:55:e2:7b:1a:6c:31:2e:ac:cd:
46:31:6d:88:fd:1b:23:51:27:59:4c:e2:3c:9d:b0:95:fd:7c:
30:0d:42:b3
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUfMLeeCwOJmc+CceMdrWGdmZRx3cwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNTAzMTgyMzU1MTRaFw0yNjAzMTgwMDAwMTRaMDMxMTAvBgNV
BAMTKDQ1OUI4QjNBODdCMTAwRTRDQTVBMEZFRERBOTRFMkZFRDVBQzBFNjkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOw3Pni7iB79J2FSh1su+aaIC/
y1b9tTPJ1P/g6YTwAdCA0W9TKjWoKr/MpHQkyh3XFC/LrfiUs78M2AVmx+iCx/F0
W1XA69ztpXGxc090vmqChk4OfEc22gKHfzjFCbFDvzSZd9d+sw70XQjDu4MsPINR
W6TTI6mhSv8Fq3Nlpx02us2oe5oykppxGobPRDasK39MVXWItpmVyP6v0IdQJ2f2
wgbnHjeYHd6oLsgC+Lm+XLlDIGBGIcwGtLDLBMVvllBF78DWhTYFKiA+ZJSP90DH
d/CIuCgvqm5OiNY0lgFgIJFwmOR635dBIeC3PgRIHAsqn/hPXBysbGpcL1p3AgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQURZuLOoexAOTKWg/t2pTi/tWsDmkwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMTQyMTQ2LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsz2w
MA0GCSqGSIb3DQEBCwUAA4IBAQBhU0iDO3hixvPl4wVjqqTbbs8TA3DFNPvuDaDt
1fDTfq8VoYpcFLac8HEu3YN56OiwQ4XVBwuiWNDVQAcXQxJ2eSQBTTqgWUDoPgCi
MbVrqQTrMV3AqBfrDHUUXsCQ5Z60MZhODrmWj2/Wh3JT9vmOF21vGxiiqx3dniv6
/GarwRXRzw1LFSbG/FndMAcGW5qzhvI588TsmPVk9r+usGPngb3fKxw43BXGPdVj
GZhT3/7zWotXls9wNctBVCUFt8Yn+0pe+Zfaikjll8+2pNlELWCjOMx/owO1DYc4
UqbXu1pV4nsabDEurM1GMW2I/RsjUSdZTOI8nbCV/XwwDUKz
-----END CERTIFICATE-----
Generated at Sat Apr 5 04:32:05 2025 by rpki-client