Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS22781.roa
File: AS22781.roa (raw, json)
Hash identifier: uNUYNZxybBK1tmCFPJAaIO6BtFR62zUOSR9/jkiOV/8=
Subject key identifier: 61:7C:99:BA:C0:B7:5D:0F:04:39:09:27:91:CA:E4:75:D4:C3:8B:13
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 42DE949A24DDCB972ADDC452A558ADF1B58D8EC5
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS22781.roa
Signing time: Mon 12 Aug 2024 00:00:39 +0000
ROA not before: Sun 11 Aug 2024 23:55:39 +0000
ROA not after: Mon 11 Aug 2025 00:00:39 +0000
asID: 22781
IP address blocks: 179.61.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:de:94:9a:24:dd:cb:97:2a:dd:c4:52:a5:58:ad:f1:b5:8d:8e:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Aug 11 23:55:39 2024 GMT
Not After : Aug 11 00:00:39 2025 GMT
Subject: CN=617C99BAC0B75D0F0439092791CAE475D4C38B13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:aa:d2:36:ea:23:ee:58:46:4b:7b:48:b7:d6:
d5:72:5e:c2:0d:0e:5c:4d:66:db:d8:c1:a8:8e:8e:
78:86:88:cc:b6:54:4c:ea:68:02:7e:72:8a:ac:4e:
29:cf:72:24:92:4a:6b:00:a1:e8:30:db:5e:71:97:
19:4a:97:84:bd:04:0a:6f:2b:16:93:0b:e9:99:a4:
71:b8:f8:5f:be:63:5f:d3:c1:61:af:ce:ff:98:17:
5f:40:d2:01:6b:c1:39:50:0d:9a:d2:99:97:4b:74:
0f:db:5a:6e:b2:bf:06:dd:a0:d1:e2:05:19:5c:06:
76:33:80:6c:f5:a8:d5:9b:e6:9f:1e:2b:da:3a:bf:
c7:35:36:3d:68:3a:23:a5:4c:bb:63:5d:96:11:06:
b2:b2:16:e8:64:72:dc:e1:ed:d3:6c:09:14:cb:77:
68:fa:03:42:dc:fd:3a:6a:e4:50:82:e4:d9:9b:5b:
98:64:cf:da:03:28:87:45:02:26:75:dd:fc:09:e6:
f9:10:40:25:0e:bd:20:f8:19:94:d3:26:d0:90:4e:
27:13:b1:93:46:c6:c4:f8:f6:dd:bf:95:2a:9e:f0:
db:26:43:07:9f:d7:14:8c:a1:dc:a7:75:1c:e7:3d:
7a:0b:c3:b2:c3:95:fd:7d:6b:74:68:56:f1:29:52:
99:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:7C:99:BA:C0:B7:5D:0F:04:39:09:27:91:CA:E4:75:D4:C3:8B:13
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS22781.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.148.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:6b:db:58:e6:a3:40:74:77:98:7a:9f:ca:e7:54:e0:ed:cf:
c4:93:c6:3c:49:68:45:2a:0f:d7:c4:37:5d:1e:2d:1d:f0:0c:
3f:d2:90:63:4e:cb:c4:fa:4d:4c:e1:73:23:37:40:0b:c3:2d:
1b:22:3a:44:02:9a:67:c3:91:77:43:a9:8d:3d:7d:58:c6:29:
14:21:e8:50:46:e5:95:62:41:23:5a:d0:c7:48:ea:7d:ec:24:
85:99:b4:c6:26:0a:12:c0:6c:4e:04:1d:a5:77:8b:57:bc:44:
2f:9e:40:95:41:75:98:d3:c9:0d:60:55:73:5b:7c:ea:e8:b8:
2b:5f:27:e4:41:9c:4e:f1:5c:2b:42:a6:14:b2:ad:5a:2f:73:
3a:e1:df:80:2f:80:d2:45:2e:5a:98:c5:c8:98:3a:62:8a:53:
4d:31:a3:2a:20:1c:b0:4e:2c:16:87:ef:03:ba:41:b5:6f:41:
78:ce:f9:6c:3b:42:bf:72:62:9a:a1:05:bc:e8:e1:77:b0:31:
1a:4d:1b:0f:df:92:1a:cb:83:a6:fd:a0:d6:64:cf:bc:e6:8e:
6a:28:1b:4f:56:11:91:74:6b:f1:bf:45:d7:f5:12:6b:f1:a2:
5d:36:cc:86:83:6b:ae:90:3e:93:8c:d0:70:86:86:17:57:76:
17:fb:47:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:26:22 2025 by rpki-client