Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS199737.roa
File: AS199737.roa (raw, json)
Hash identifier: gYuOdCObeH65IlKoRI2OWrzRF5QjQp7ETPWqkIsmnLM=
Subject key identifier: 9A:EC:69:87:D2:F1:FC:63:F3:E1:0F:23:2E:FF:FA:3C:9E:78:7A:B2
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 1C222AEB9F6926117D257A7BEDE6109C69658C47
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS199737.roa
Signing time: Sun 09 Mar 2025 08:53:57 +0000
ROA not before: Sun 09 Mar 2025 08:48:57 +0000
ROA not after: Sun 08 Mar 2026 08:53:57 +0000
asID: 199737
IP address blocks: 181.214.155.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:22:2a:eb:9f:69:26:11:7d:25:7a:7b:ed:e6:10:9c:69:65:8c:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 9 08:48:57 2025 GMT
Not After : Mar 8 08:53:57 2026 GMT
Subject: CN=9AEC6987D2F1FC63F3E10F232EFFFA3C9E787AB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f9:f8:a6:7d:c6:8f:f6:8e:0e:90:6f:e8:91:
20:f6:08:1e:36:b9:9e:8a:a7:f7:98:23:d6:7f:9a:
a2:ff:6f:6b:67:98:ab:8d:32:67:00:f1:34:76:8b:
ee:9f:da:ac:cb:9e:ea:1c:98:36:0c:fa:a1:78:88:
b8:a9:5e:76:dc:68:66:6b:22:63:25:b0:fb:9b:0b:
22:8b:16:de:2d:4e:34:66:70:76:55:62:ed:3f:85:
3a:e8:50:d3:32:3b:27:4e:3e:75:37:c4:f3:fc:94:
48:03:b1:e4:dc:e2:51:ce:75:2a:8b:56:11:ac:54:
58:43:be:8b:61:f7:29:f4:7b:95:59:0e:e6:90:68:
6e:89:2d:f5:e2:60:0a:b6:8b:be:69:09:d1:ec:50:
e6:23:c6:46:cf:7e:d5:3b:34:7e:8d:6b:71:6b:27:
69:22:66:97:24:d9:3c:7d:ff:e8:96:5c:2c:c4:44:
53:fb:2c:79:07:a1:29:be:fb:dd:3a:9f:0e:4d:46:
f4:82:63:44:bd:df:f1:e5:0d:52:ce:d6:63:0a:31:
00:c0:9f:d7:52:d8:83:75:66:f8:a0:9e:9c:b6:2b:
d5:16:02:9d:55:19:17:a2:38:9f:65:92:c0:28:3c:
9b:ee:96:d0:f9:5f:b4:d1:48:c4:ba:ed:da:0c:85:
3a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:EC:69:87:D2:F1:FC:63:F3:E1:0F:23:2E:FF:FA:3C:9E:78:7A:B2
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS199737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.214.155.0/24
Signature Algorithm: sha256WithRSAEncryption
83:65:ca:f0:0a:c3:32:4d:f0:0e:ec:11:7d:2c:a5:de:a3:48:
96:60:ba:9c:ef:43:86:65:1b:c9:04:df:ae:d7:c7:3e:29:ba:
71:f1:f3:e5:f7:f3:24:42:c8:42:5d:28:58:df:fd:9d:d9:26:
c4:7c:6b:b4:8e:e3:96:ac:9f:e5:5c:00:f0:40:40:f0:d2:a7:
c1:ba:73:5a:29:f0:16:69:30:03:92:b0:e1:da:f0:db:94:cb:
52:fd:e5:86:82:df:b5:be:d6:cf:b9:76:d7:a6:15:d2:20:ee:
e6:59:96:4c:b2:bd:97:c4:64:44:30:2d:da:35:b3:57:6e:45:
2c:9e:04:67:ed:c9:a2:9b:dc:44:23:ef:b2:29:53:84:84:d7:
c8:c1:77:83:74:c6:e1:1e:99:47:a7:6b:65:e5:db:88:94:3c:
b0:5f:58:59:38:ad:0b:a0:5e:d8:a4:a3:c4:e9:fe:2d:28:f8:
43:47:5f:f0:93:cc:db:e1:0c:02:49:f4:6d:6f:b7:41:b4:76:
8e:f3:22:38:aa:12:21:aa:9a:fc:62:06:bb:bc:da:7e:02:88:
78:2f:2a:7e:6e:5e:d8:bc:ed:5c:76:5d:50:16:fb:12:ae:98:
a8:17:41:1b:59:06:cf:b1:1e:f7:34:a8:3e:1c:84:bd:b1:09:
7e:0a:ed:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:27:06 2025 by rpki-client