Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS203647.roa
File: AS203647.roa (raw, json)
Hash identifier: RShjSKdmdF4jdIGKqzy5d83To/39CiZ6EkXTZXz2pe0=
Subject key identifier: D9:DC:1D:B1:26:1C:D6:9B:32:73:71:5B:BD:1B:83:E3:03:88:B3:13
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 76FADA8739392BF8581C08E106CA6FD0DE57E2B7
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS203647.roa
Signing time: Wed 01 Jan 2025 08:53:49 +0000
ROA not before: Wed 01 Jan 2025 08:48:49 +0000
ROA not after: Wed 31 Dec 2025 08:53:49 +0000
asID: 203647
IP address blocks: 181.215.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:fa:da:87:39:39:2b:f8:58:1c:08:e1:06:ca:6f:d0:de:57:e2:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jan 1 08:48:49 2025 GMT
Not After : Dec 31 08:53:49 2025 GMT
Subject: CN=D9DC1DB1261CD69B3273715BBD1B83E30388B313
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:96:af:ff:42:81:48:13:c2:0e:a0:7b:7d:91:
01:e0:04:26:95:f4:a8:fe:98:c5:d8:8f:8e:7c:d2:
2e:17:35:b8:29:50:83:3b:de:ed:3f:57:f9:84:2c:
34:73:4b:70:9d:eb:27:3d:c3:7a:3d:d5:ff:11:ba:
93:dd:c9:62:9b:b7:d5:ac:4b:e4:16:b8:89:7e:b6:
6b:23:1c:21:5e:c4:78:04:58:43:43:fe:04:70:6a:
c9:d8:31:eb:f5:d7:e1:03:a1:40:50:b2:b1:46:d3:
d1:5d:8a:61:c2:fe:14:7d:42:04:e0:e7:ed:9b:00:
29:11:59:f3:91:63:7f:d7:d1:23:6a:de:07:40:8d:
b1:9f:cc:c9:de:6d:32:b0:c5:dc:a1:92:c0:e6:63:
4b:11:0b:32:25:52:cb:b6:76:36:d3:55:e9:07:17:
ba:af:2f:26:d3:52:d8:cf:a8:de:0a:72:7c:76:e2:
ee:5b:32:34:74:3f:cc:fb:8f:76:a9:98:c8:9d:19:
ab:51:af:f5:17:db:d7:94:29:bf:35:fe:89:4a:bb:
6e:fb:fa:8b:3a:f5:0b:08:53:09:7d:e9:b6:c7:2e:
4d:9a:8a:ee:76:79:38:42:b1:8c:68:2c:cf:d5:4b:
f0:2a:39:e3:df:07:43:c8:6b:11:bf:27:b3:ac:92:
ed:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:DC:1D:B1:26:1C:D6:9B:32:73:71:5B:BD:1B:83:E3:03:88:B3:13
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS203647.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.215.15.0/24
Signature Algorithm: sha256WithRSAEncryption
12:70:51:ec:18:81:11:52:d6:ed:8e:4d:9c:b6:18:a6:15:6c:
a0:99:9c:2a:af:d3:11:f1:8e:05:41:9f:58:9d:6f:ff:ca:13:
5e:25:20:29:15:35:cf:f8:9b:d1:af:8e:6c:a4:0a:40:f1:32:
c6:ae:7f:1a:61:e5:42:18:f6:57:0f:a1:cb:88:73:b4:6b:73:
a6:6e:7c:a1:1a:81:7b:c9:93:de:ec:93:f6:3d:fc:54:b6:11:
b1:83:3b:c1:f1:62:3f:5a:6f:0f:21:8c:75:2b:7d:28:35:f8:
45:a9:77:6c:b6:1c:b9:b3:39:60:27:1d:6f:34:0d:01:e2:02:
c3:62:ff:6b:f1:40:e2:ba:4f:6f:e9:3c:60:97:3b:d9:9d:36:
69:9e:18:18:42:fd:09:f8:2b:5a:c9:33:a1:88:4b:d4:96:3c:
e8:53:7a:ff:34:1d:99:e8:f7:82:ca:73:cd:15:de:a4:df:51:
99:c5:4e:b1:a2:de:cd:03:74:38:75:4d:f9:11:c2:80:bf:63:
4b:eb:1b:5e:6d:e0:c7:c7:ae:0f:a8:b4:da:3e:3f:a6:ab:ff:
96:04:a1:11:50:06:3d:99:7c:d9:a9:2e:f4:d9:80:2a:04:b4:
c5:d7:7c:6a:b2:93:31:9b:aa:80:03:c5:3e:33:32:c8:50:37:
63:45:1f:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:30:07 2025 by rpki-client