Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS211826.roa
File: AS211826.roa (raw, json)
Hash identifier: GEWx/XufT5ffIbvB2HnwDGObUklNe81/kLg3HKkbD4s=
Subject key identifier: 0F:DD:2D:1E:D4:D0:AF:52:25:72:96:8B:70:E6:FF:FC:EC:FD:19:68
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 62B4B3C2300ECB7D4BCFEAA88C1B7191B15EEBEC
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS211826.roa
Signing time: Thu 20 Mar 2025 17:53:58 +0000
ROA not before: Thu 20 Mar 2025 17:48:58 +0000
ROA not after: Thu 19 Mar 2026 17:53:58 +0000
asID: 211826
IP address blocks: 179.61.177.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:b4:b3:c2:30:0e:cb:7d:4b:cf:ea:a8:8c:1b:71:91:b1:5e:eb:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 20 17:48:58 2025 GMT
Not After : Mar 19 17:53:58 2026 GMT
Subject: CN=0FDD2D1ED4D0AF522572968B70E6FFFCECFD1968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e8:31:1d:ca:52:e4:b9:4a:73:e9:9f:27:ed:
2b:19:ab:61:cb:8d:4f:e9:c0:dc:81:4a:de:fe:d4:
5d:be:6d:0e:82:fd:f8:57:08:f4:e0:4f:82:07:ad:
57:0b:e8:bc:48:4e:fe:97:b4:72:10:1c:ab:e6:43:
0d:a0:29:4d:3f:e5:a2:13:bf:0c:9e:52:9d:23:17:
65:e1:ff:d4:5c:5b:a5:b9:61:04:06:9f:ad:2d:0e:
a3:ab:ee:1d:f6:fa:3c:d0:78:4f:43:b3:7c:67:1f:
20:1b:dd:60:f5:8d:a7:5b:4f:c5:a1:15:c8:0d:0c:
ab:30:66:ac:22:d6:31:ba:95:14:a5:92:ac:af:d2:
53:7f:ff:0d:ee:61:e3:55:45:1c:99:95:41:34:2b:
ad:3c:05:b0:6d:0a:d2:8a:69:d6:da:a1:60:dd:f6:
b8:e1:12:95:fc:4b:75:65:93:97:7a:69:17:47:b5:
dc:53:db:a0:86:d5:d7:c2:29:84:ea:45:75:51:7b:
14:27:d2:f9:62:d0:61:bd:6d:df:17:1e:da:28:f9:
c0:e3:75:02:ae:78:a9:d9:04:23:46:75:8b:03:69:
1c:53:26:e3:af:11:df:03:88:14:4f:fb:6a:17:fb:
83:a1:13:04:97:31:12:83:39:81:71:90:19:a5:99:
b3:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:DD:2D:1E:D4:D0:AF:52:25:72:96:8B:70:E6:FF:FC:EC:FD:19:68
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS211826.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.177.0/24
Signature Algorithm: sha256WithRSAEncryption
45:2d:93:81:02:8c:cf:a8:53:35:99:37:8b:a0:49:f8:a7:49:
bc:74:f0:20:f2:d9:9e:a8:9e:fc:41:a3:2b:78:a4:a2:06:f8:
7a:cf:50:0f:ea:d2:1b:2f:6d:8c:c6:ee:4c:56:5a:54:bc:da:
e6:f6:5f:64:e0:4c:41:0c:e5:15:fd:2f:f3:0a:16:72:1d:57:
b8:f2:3a:b5:01:52:69:26:36:ff:d0:5e:39:7c:a8:7c:9b:ae:
a8:3e:c4:a7:37:0f:02:b7:b0:5e:11:9e:3f:b1:b9:cd:8e:7c:
84:73:ac:99:0a:a0:de:f7:d1:0d:15:92:dc:8b:8e:5b:1d:e8:
f8:08:fa:97:69:d2:78:9f:51:fe:db:40:cc:d4:c0:58:46:87:
bb:2c:03:9c:4a:4e:91:9a:b5:21:fb:56:82:ac:0a:ba:48:c4:
a4:ae:62:57:b2:87:2d:0b:ec:0d:7a:3d:1f:77:7e:87:15:db:
3f:2f:9d:93:95:59:e5:a7:f6:ca:27:c3:95:f0:17:39:5e:2a:
3a:94:cc:e3:da:c4:ab:75:f5:ff:df:27:38:71:02:d6:b8:9e:
35:df:2a:a6:c7:55:f5:d5:43:6d:54:63:16:8f:53:d2:0d:1a:
f4:db:d7:5c:db:da:a4:59:7b:9c:d6:34:d0:83:d8:5b:ef:53:
2f:96:27:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:32:40 2025 by rpki-client