Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213168.roa
File: AS213168.roa (raw, json)
Hash identifier: asSPdDNxRVUrtH5bCJPUmSeTREVrcx1IK2ebkxAxqbw=
Subject key identifier: 6D:3C:C0:86:BD:A8:D7:F2:B9:E5:6B:19:F1:FC:1B:13:DD:28:13:61
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 13AD37BFF8BB2EFEA046CB9A1BB1D93A983079C2
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213168.roa
Signing time: Sun 05 Jan 2025 11:53:51 +0000
ROA not before: Sun 05 Jan 2025 11:48:51 +0000
ROA not after: Sun 04 Jan 2026 11:53:51 +0000
asID: 213168
IP address blocks: 181.214.197.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:ad:37:bf:f8:bb:2e:fe:a0:46:cb:9a:1b:b1:d9:3a:98:30:79:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jan 5 11:48:51 2025 GMT
Not After : Jan 4 11:53:51 2026 GMT
Subject: CN=6D3CC086BDA8D7F2B9E56B19F1FC1B13DD281361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:47:59:6b:66:f6:52:e0:42:5b:c0:ef:b6:02:
af:86:cb:c8:41:8f:6b:26:f3:19:8a:cc:94:2a:68:
5b:28:78:ca:22:30:be:33:20:11:44:bf:00:55:bf:
8d:d3:46:b5:09:bd:85:47:30:dd:43:00:cf:f9:49:
6e:12:53:a9:a7:86:3a:89:7d:6f:fa:e0:8d:5c:b1:
20:48:91:ef:cd:f4:d8:90:f8:d3:02:3c:e7:cf:91:
08:03:1e:7f:aa:ba:a5:88:c4:9e:cb:fd:21:e4:44:
24:3c:c8:c5:5c:c1:c0:08:55:42:13:93:67:62:9d:
22:db:68:e6:b2:d4:b1:47:53:00:a1:0e:69:de:77:
54:3c:aa:42:19:80:67:3f:4f:57:ae:1b:a7:39:8a:
15:79:30:e1:cc:49:41:53:3c:ab:f0:7d:8b:57:81:
0b:ea:d4:cb:eb:5a:b5:5c:c9:76:b6:24:f6:55:d5:
dd:59:9a:4f:3d:eb:ef:f8:0b:75:a8:54:ea:2a:ba:
4b:9e:2e:22:c4:3d:42:fc:c2:4b:0d:d0:29:2a:51:
69:9a:c0:bf:d3:35:4a:9a:1f:27:1a:52:03:d0:78:
43:c1:bb:36:bb:8c:7f:74:ad:3d:47:b2:3e:42:6a:
b3:64:48:00:ad:ae:6e:59:ee:dc:87:c5:5d:5b:8a:
e1:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:3C:C0:86:BD:A8:D7:F2:B9:E5:6B:19:F1:FC:1B:13:DD:28:13:61
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213168.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.214.197.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:fb:22:87:22:0d:7a:45:a7:5f:73:75:3a:13:f0:58:bd:60:
c5:9c:d1:e5:a6:c1:32:e6:35:94:fe:09:da:40:f0:50:67:1c:
30:c4:7b:36:c5:03:65:ff:a7:2a:a0:12:40:24:1f:c8:7f:69:
60:6d:ae:c3:fa:93:0b:a8:df:fb:29:90:3b:91:a6:e2:57:f6:
dd:59:36:7b:1b:89:03:83:ed:06:cc:21:c9:87:d6:32:d5:50:
d4:80:f2:fb:2b:7d:5b:ee:d7:35:6c:64:87:3d:4e:ab:a3:92:
2d:cb:70:3b:47:93:43:40:1f:b0:55:6e:95:92:50:2f:fe:fe:
1d:0e:ee:56:d5:54:f1:d3:3a:a9:92:8e:db:78:37:f6:41:0e:
ff:43:45:c1:54:da:32:39:ad:0f:d4:38:3e:ec:4b:15:ef:cd:
88:9e:a4:01:38:9b:9f:18:d2:b3:3b:94:56:e3:c0:09:00:d0:
31:c5:45:70:fd:63:4a:62:ba:32:e4:83:a5:bf:10:60:a0:df:
24:bf:96:37:57:31:aa:1d:d3:38:19:5f:01:c9:40:d1:fa:56:
e0:a3:01:18:f1:13:5f:60:09:60:b4:2b:78:c6:10:dd:20:b4:
72:74:b7:bb:fa:b3:1e:4c:14:bf:06:f5:68:03:d3:c0:55:3c:
ed:95:d2:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:31:25 2025 by rpki-client