Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS25369.roa
File: AS25369.roa (raw, json)
Hash identifier: TU7o7fuBW1jZ65y8PsrzMqG9JtXiPmWb6r3v6a7x8kM=
Subject key identifier: 63:DB:5C:61:B4:B4:CC:69:A8:A6:1B:54:05:F1:DB:44:7A:BE:3A:6F
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 7900FA1E66E2B7174D15DF8CC2F0CB336E423DFE
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS25369.roa
Signing time: Wed 28 Aug 2024 00:00:20 +0000
ROA not before: Tue 27 Aug 2024 23:55:20 +0000
ROA not after: Wed 27 Aug 2025 00:00:20 +0000
asID: 25369
IP address blocks: 191.96.66.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:00:fa:1e:66:e2:b7:17:4d:15:df:8c:c2:f0:cb:33:6e:42:3d:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Aug 27 23:55:20 2024 GMT
Not After : Aug 27 00:00:20 2025 GMT
Subject: CN=63DB5C61B4B4CC69A8A61B5405F1DB447ABE3A6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d2:d5:56:ba:90:72:d1:e8:48:86:7d:c8:9e:
9f:3b:42:ac:bb:d9:2a:fa:9e:3a:32:48:10:1a:01:
0b:39:72:d7:75:c8:60:69:11:64:ec:92:49:e8:73:
92:85:e4:1b:34:c3:e0:2c:1d:e8:94:70:21:40:fc:
2a:8d:c1:02:1c:48:e9:83:04:85:26:17:f8:88:11:
90:ed:8f:59:ab:dc:e0:e3:b9:89:95:28:36:3c:ae:
98:07:1a:4d:23:48:a2:45:d8:38:b3:12:7f:69:25:
fe:e6:45:23:22:86:71:25:a2:18:7d:37:26:20:d6:
cd:3d:01:e5:ec:02:e8:08:fc:d3:e3:ff:a5:00:b1:
c7:6c:b7:54:6b:c8:d1:91:59:1a:04:1e:48:bb:d5:
8c:88:3e:4b:a4:c1:7b:37:30:fa:0e:d8:13:30:06:
c1:68:e9:5b:06:5a:7f:f3:3d:da:b1:5f:e4:a0:7d:
1b:f6:54:06:11:d2:de:7d:a8:a7:31:1d:53:79:fe:
5a:ca:36:7c:bc:ac:92:3e:b3:c7:7e:5f:41:d5:38:
9f:0f:16:93:83:da:26:2a:cb:fc:91:6b:f1:dc:71:
fd:73:91:e7:c5:3c:a7:bf:d3:c7:38:e3:bd:b8:c1:
b9:02:39:e2:c8:0e:6b:e5:de:98:0d:fb:4c:ee:24:
9a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:DB:5C:61:B4:B4:CC:69:A8:A6:1B:54:05:F1:DB:44:7A:BE:3A:6F
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS25369.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.96.66.0/24
Signature Algorithm: sha256WithRSAEncryption
10:19:33:82:f5:5b:b3:e5:ab:74:03:00:92:25:e8:d9:58:82:
8e:aa:29:54:24:84:aa:71:83:11:e0:75:51:60:c0:18:52:e9:
e1:ad:8e:44:48:db:8a:c1:98:7f:89:a5:d4:85:33:50:01:a8:
dc:1c:a1:64:c9:e9:7f:9d:2b:ac:92:a3:5e:7e:08:b7:0e:64:
ce:d9:d9:3e:57:31:1d:67:e1:a1:73:9b:81:04:70:9f:e8:f2:
8c:d7:26:c6:e1:f2:a3:7c:82:3d:2f:8d:d8:c2:96:0b:1c:b2:
6c:a1:70:61:30:5c:80:f9:27:9e:c7:53:ec:e7:5b:7e:27:df:
3f:21:03:f3:68:4b:8a:f7:64:73:ad:74:57:f2:23:5e:4e:34:
be:8b:e1:4d:c6:fe:bc:2d:de:43:47:40:16:79:06:4e:63:b2:
8c:df:f3:75:d8:ad:99:d3:f3:c3:41:70:b4:50:bc:9b:3a:86:
7b:e3:21:7a:a8:12:49:86:54:cf:51:fc:7b:34:dd:f0:29:d6:
f8:1b:bf:b0:1b:1f:9b:33:e9:ef:1b:eb:51:b7:6d:b0:0b:5f:
be:88:de:58:f9:11:8d:84:eb:30:4f:14:0b:ca:e4:89:1f:67:
6a:d2:14:3b:c2:49:b5:05:8a:71:39:db:78:7c:78:a2:1b:de:
00:7b:68:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:31:27 2025 by rpki-client