Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213060.roa
File: AS213060.roa (raw, json)
Hash identifier: zt4tlCh7MutWmYQhMjU6UQ92Lz8wfIBXvpiLJjODgho=
Subject key identifier: 0C:1D:BC:95:0F:7A:0D:2C:0D:69:93:9C:14:71:DF:7C:DC:19:D8:8E
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 69F15F77A56D9C5ADBA009F8BA5433C15A7A4675
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213060.roa
Signing time: Wed 26 Mar 2025 08:37:10 +0000
ROA not before: Wed 26 Mar 2025 08:32:10 +0000
ROA not after: Wed 25 Mar 2026 08:37:10 +0000
asID: 213060
IP address blocks: 45.231.206.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:f1:5f:77:a5:6d:9c:5a:db:a0:09:f8:ba:54:33:c1:5a:7a:46:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 26 08:32:10 2025 GMT
Not After : Mar 25 08:37:10 2026 GMT
Subject: CN=0C1DBC950F7A0D2C0D69939C1471DF7CDC19D88E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:98:bc:91:41:1f:d8:4d:1d:4a:bc:2c:8c:36:
97:55:78:e6:7b:59:f7:9d:71:69:94:65:e1:74:cd:
0b:1e:be:26:f8:4d:ae:e2:c7:6b:b7:ce:22:e4:5d:
3d:7a:82:5b:cf:5e:bd:9f:50:81:f5:4b:07:d3:e6:
1b:4a:50:0c:b8:c2:84:be:6d:17:6e:3d:f8:79:3d:
c5:b1:98:dd:a4:8d:4c:c7:c3:85:82:16:90:54:c3:
97:52:0b:25:03:cb:69:19:4a:91:c6:11:2b:e6:7d:
60:a6:8e:ec:36:8d:93:af:ae:87:9c:d4:96:9f:fd:
2a:e0:e5:c1:7b:de:de:18:26:99:11:6a:5c:0c:a1:
ae:66:f7:27:1e:06:2b:20:8e:60:6e:34:21:5b:d1:
41:08:7d:70:88:bd:5f:b0:07:c9:eb:cb:5f:a0:a1:
31:d1:3e:b4:5d:cb:b6:a1:4b:e4:a8:39:17:7f:41:
e6:96:8b:60:59:32:78:fd:c9:8a:8a:fb:87:60:8f:
28:52:22:a6:5a:67:b3:24:b4:ec:c5:38:f1:f3:de:
cb:dd:ee:49:c8:4a:73:f4:6b:46:f4:14:00:c7:a6:
90:64:16:3d:e2:34:c1:9a:0a:1a:f9:75:69:e1:13:
1a:5a:46:6f:2d:13:1c:11:7b:b5:96:c3:fa:9b:0f:
f3:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:1D:BC:95:0F:7A:0D:2C:0D:69:93:9C:14:71:DF:7C:DC:19:D8:8E
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213060.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.231.206.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:3c:5f:55:ef:fe:a9:6f:12:c8:54:29:5b:f0:51:5e:22:bb:
4d:3e:7c:41:b5:c4:21:0c:98:bc:87:c9:be:1d:4e:44:37:21:
d8:d3:15:08:14:c6:fc:7a:5e:61:ee:12:f9:43:39:54:a8:bb:
e2:79:12:7e:8e:ae:80:75:7e:0f:47:ea:40:7a:39:71:85:4a:
d3:3b:84:fa:e4:a1:23:ba:dd:01:e1:b8:02:f0:c2:a9:43:84:
62:58:74:4d:d1:9f:46:96:8a:80:f1:c9:ca:ee:5a:9b:62:81:
2d:38:15:bb:a4:99:66:3e:c8:38:c5:2d:e4:9f:1b:ff:a4:ce:
f0:a7:74:ea:55:7b:85:82:2e:ca:a3:2d:18:45:e0:fe:56:bb:
ab:8b:52:02:44:6a:0b:d9:c2:79:22:4d:f8:d4:0a:db:d7:85:
4e:1f:54:a2:1c:51:d5:30:08:0a:6a:81:fe:67:d8:5c:05:79:
59:5b:54:34:fd:d5:e0:23:aa:e2:06:53:4a:4e:f0:88:da:7e:
6e:23:e8:25:b3:8b:97:10:0a:d1:29:48:6d:a9:13:64:c6:b8:
c0:ef:9c:9f:48:b6:d5:4f:28:0f:a8:16:99:e2:62:69:46:24:
22:9c:d6:d4:52:b2:ae:2d:39:1b:df:ce:81:8b:90:6c:4f:57:
cc:b5:75:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:30:23 2025 by rpki-client