Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS26548.roa
File: AS26548.roa (raw, json)
Hash identifier: syqdoXJk1qW2tCxRZGq+ewp+X4hAcSY4+BifGdwZyDU=
Subject key identifier: 71:92:CF:E9:75:5A:A2:C6:A3:B0:29:C0:FF:6A:93:B8:81:D8:B2:B8
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 79F290C8863DFC3110DF8F650D00EB5346D9F9AA
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS26548.roa
Signing time: Wed 01 Jan 2025 08:53:49 +0000
ROA not before: Wed 01 Jan 2025 08:48:49 +0000
ROA not after: Wed 31 Dec 2025 08:53:49 +0000
asID: 26548
IP address blocks: 191.96.196.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:f2:90:c8:86:3d:fc:31:10:df:8f:65:0d:00:eb:53:46:d9:f9:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jan 1 08:48:49 2025 GMT
Not After : Dec 31 08:53:49 2025 GMT
Subject: CN=7192CFE9755AA2C6A3B029C0FF6A93B881D8B2B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:63:5e:12:1d:2e:ad:76:89:06:86:3b:ca:62:
e8:e6:80:c7:4b:f8:4d:37:f3:e9:93:18:f1:1f:b1:
18:fa:88:c5:da:34:21:c0:09:5e:f1:bb:c2:db:b1:
89:e5:68:8c:d9:db:a5:cd:18:50:71:90:c1:77:2c:
49:51:4a:5f:d4:42:d4:8a:ba:68:f7:b8:60:85:5a:
cf:6d:c0:69:1c:9b:c9:f5:85:10:67:20:91:76:b2:
35:82:1b:92:7b:85:61:5a:9b:97:64:f3:9e:a1:71:
82:49:e3:bb:c2:8b:84:48:93:cf:cd:b8:8e:8b:f9:
22:6a:3b:00:f2:c8:86:f6:d4:c5:8a:b8:19:a1:27:
90:d8:57:1a:e1:b9:1d:c4:08:cc:a5:0b:db:5e:2f:
28:39:c9:e9:de:5d:20:d9:ff:06:61:a0:a4:a8:81:
80:ea:2a:35:2e:fd:42:1a:d9:5c:a7:e2:70:13:b1:
75:74:8b:60:b2:ac:c5:17:d7:16:ea:aa:9f:45:79:
88:5f:09:0f:3a:35:30:ca:ac:b8:b4:9f:b8:db:33:
08:65:e0:eb:e7:e4:74:b2:a8:49:e7:6e:78:9b:a9:
e9:33:33:ad:6b:39:1b:e5:85:41:48:f9:cd:4b:71:
41:8b:ad:cc:e5:d0:ac:4c:81:d6:d8:9f:d3:25:0e:
82:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:92:CF:E9:75:5A:A2:C6:A3:B0:29:C0:FF:6A:93:B8:81:D8:B2:B8
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS26548.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.96.196.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:00:60:9f:d8:13:c4:63:ee:70:ae:95:c2:0f:6c:f3:c7:6f:
f2:90:b6:f5:02:58:c2:29:d5:6e:a7:c9:ff:6b:af:81:8f:be:
bb:e6:a3:c5:10:74:30:93:5f:f9:5b:99:18:14:48:46:05:5d:
e8:64:f7:86:f3:6c:e3:42:f4:60:fd:19:51:a7:55:25:1a:cb:
15:91:5e:d1:99:7a:05:5d:ec:9a:16:03:ff:75:80:0b:e7:8f:
71:1b:8c:2b:18:8b:3e:80:fe:5f:7b:ad:d1:fd:79:02:e1:0c:
e2:1b:b7:bf:23:f4:94:7d:00:13:c1:24:f2:bb:de:8b:f0:d5:
04:f9:e1:7e:15:2f:87:db:f8:13:73:42:b9:2d:8f:98:43:11:
95:54:ce:2e:af:33:90:2c:7f:47:18:bf:d8:80:c6:00:b4:e4:
4a:7b:e0:d5:0b:84:59:e8:77:b2:86:03:83:ce:20:25:cc:ef:
65:6b:ea:1b:ae:74:94:5c:73:bf:0a:ff:56:ff:0c:a1:ce:89:
f3:f9:c3:09:89:99:8e:b4:38:99:66:28:d5:5c:dd:d1:f6:5b:
f7:84:af:a5:9c:36:72:33:75:35:98:d7:db:77:4c:60:2e:b9:
b0:7c:da:b8:04:6b:c7:8f:22:41:cc:18:26:f5:fd:db:b1:58:
80:3f:b9:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:41:45 2025 by rpki-client