Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS44620.roa
File: AS44620.roa (raw, json)
Hash identifier: +5yAlKq9cbg9vl7F9G1RBhw2NITmzFw6z0L/PxfKIkw=
Subject key identifier: D3:1F:80:D0:C6:78:32:5B:33:BB:BA:17:83:E2:F9:D1:A8:78:B6:5B
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 6E178F48C019BB6A3D8A4A02B0D12582584E90AD
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS44620.roa
Signing time: Wed 24 Jul 2024 13:31:09 +0000
ROA not before: Wed 24 Jul 2024 13:26:09 +0000
ROA not after: Wed 23 Jul 2025 13:31:09 +0000
asID: 44620
IP address blocks: 181.215.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:17:8f:48:c0:19:bb:6a:3d:8a:4a:02:b0:d1:25:82:58:4e:90:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jul 24 13:26:09 2024 GMT
Not After : Jul 23 13:31:09 2025 GMT
Subject: CN=D31F80D0C678325B33BBBA1783E2F9D1A878B65B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:fe:12:b1:1d:59:08:9d:9c:13:c5:c2:ba:ff:
51:12:bb:f9:ed:d5:46:0d:ee:1d:8e:ad:a6:d0:ca:
24:f2:7f:7f:a0:c6:98:f6:90:81:7f:ce:df:f1:3f:
2a:44:34:83:6e:7e:8b:c6:23:6f:aa:e3:cb:03:ff:
21:98:73:9a:09:37:da:2f:60:3a:7c:ec:db:19:4c:
3f:37:ed:de:83:08:e6:04:03:a5:d6:ed:95:ff:06:
e7:5e:16:aa:43:16:31:ec:6e:3d:81:16:f4:1c:e8:
5f:e6:12:82:0a:e3:a2:17:45:67:10:e8:84:8a:52:
8c:47:d2:da:6d:0f:fb:9a:3a:0a:6c:55:50:bf:eb:
98:e4:55:df:af:d7:69:82:25:9b:26:6b:f2:32:da:
0e:3b:fa:61:6d:b3:ae:98:e3:09:77:e9:36:8a:6e:
bf:d3:09:67:ee:36:75:5f:a9:23:39:0c:9d:e2:f2:
ce:61:10:07:48:19:4b:0f:4c:49:b3:72:42:0d:a8:
5f:6c:23:db:34:20:26:0f:9b:b1:db:16:4c:f7:b1:
35:43:51:10:3f:6f:80:fc:43:c0:91:9d:95:2a:3f:
2d:85:6e:5d:fb:59:3f:48:96:b7:1d:79:68:db:ce:
93:23:07:d2:58:a7:83:96:94:7f:fd:b5:71:96:91:
8b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:1F:80:D0:C6:78:32:5B:33:BB:BA:17:83:E2:F9:D1:A8:78:B6:5B
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS44620.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.215.59.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:17:e1:1d:b0:d8:8e:35:c9:cf:87:32:10:f8:e7:4a:e4:40:
69:66:50:ae:7f:32:8a:0d:74:72:45:5f:13:71:45:59:5c:60:
50:6f:17:1a:bc:56:65:48:bd:3a:e0:ba:20:5a:67:2a:58:d3:
01:06:a1:6e:6c:01:ec:2f:0c:e1:67:84:d9:5c:af:5d:65:a2:
4f:9d:e0:71:f6:d9:d0:10:fb:5e:39:c7:2d:65:87:cb:e9:52:
77:18:ed:97:3e:34:9a:1e:b7:de:22:ad:75:af:60:e0:6a:32:
a8:57:a9:e3:00:ee:33:e7:de:d1:6f:2b:e8:12:51:04:0c:78:
35:93:6c:df:bd:fb:5f:98:6c:0c:99:ba:84:8e:83:4d:6f:bb:
49:2c:66:99:60:dd:b5:8e:fd:7e:db:fc:a7:4c:2c:8a:9b:b8:
62:c4:45:16:e5:0c:c0:d1:a7:ee:3d:30:d7:19:31:29:d6:a7:
08:f4:c3:42:4e:6d:c3:74:32:17:66:19:eb:e9:51:90:cc:6d:
7b:13:65:ba:59:bb:da:2d:e0:4a:8b:0d:1d:5a:59:8e:e5:7d:
cb:c3:f2:2c:0f:27:96:8e:d1:b8:5c:8f:fb:d1:44:06:5a:0a:
e9:67:80:2a:e5:0c:ea:71:43:83:7b:07:14:c1:20:9a:98:d2:
a8:eb:53:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 17:07:04 2025 by rpki-client