Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS5065.roa
File: AS5065.roa (raw, json)
Hash identifier: AoOkYHpKIwHOVy/OS7S4BxVufM3Vsf/U4Lp1XmkHjxU=
Subject key identifier: 51:B8:DF:57:09:47:EF:E3:F7:05:A0:21:53:F7:02:EE:FC:2C:34:04
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 412393B2CC60BC18BC38241A0FC211B753E01F6E
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS5065.roa
Signing time: Tue 07 Jan 2025 10:30:06 +0000
ROA not before: Tue 07 Jan 2025 10:25:06 +0000
ROA not after: Tue 06 Jan 2026 10:30:06 +0000
asID: 5065
IP address blocks: 179.61.157.0/24 maxlen: 24
179.61.203.0/24 maxlen: 24
181.215.64.0/24 maxlen: 24
181.215.212.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:23:93:b2:cc:60:bc:18:bc:38:24:1a:0f:c2:11:b7:53:e0:1f:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jan 7 10:25:06 2025 GMT
Not After : Jan 6 10:30:06 2026 GMT
Subject: CN=51B8DF570947EFE3F705A02153F702EEFC2C3404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:19:4b:6c:f4:03:da:e3:8e:28:43:4d:19:74:
5d:7a:3d:d0:7f:4d:e8:6d:fe:25:74:6b:2e:b2:02:
30:e1:7b:e6:76:65:8d:c5:d6:6f:a3:cb:a3:04:41:
1d:5d:4a:98:8b:d1:78:14:ec:96:7b:02:02:68:15:
7d:fb:55:ac:3c:54:6b:04:1a:0c:c7:2d:ff:65:9f:
f8:18:ed:81:17:02:bd:e4:22:f9:7a:d9:72:43:56:
77:b4:a6:b6:48:ac:9a:7f:3b:2e:40:4e:fc:b4:32:
33:2e:2f:8f:57:fc:55:3b:e6:ca:a3:ac:38:77:83:
a5:21:cd:4d:fd:a8:5b:43:cc:3b:c2:11:b3:d0:f1:
aa:64:70:54:31:cb:e1:91:4c:1e:75:01:e4:02:73:
8f:ff:d1:bf:75:7f:94:14:0b:76:6a:e1:1a:89:5f:
3c:41:fa:17:6a:f9:7f:7b:fb:fb:c1:83:07:5c:e7:
3d:47:e4:66:87:c8:86:5c:18:65:59:68:08:e0:2d:
f5:24:92:fd:fd:08:22:d2:79:11:df:53:7f:07:b0:
ae:d3:72:73:32:41:5a:d2:12:19:91:f1:b7:90:1a:
4e:d7:d7:19:f6:06:f2:b3:c5:33:6d:31:c5:b8:b7:
53:c2:7e:35:24:d8:fc:cb:0d:8a:9a:9d:bb:ae:82:
71:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:B8:DF:57:09:47:EF:E3:F7:05:A0:21:53:F7:02:EE:FC:2C:34:04
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS5065.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.157.0/24
179.61.203.0/24
181.215.64.0/24
181.215.212.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:48:f1:36:91:43:e7:02:ee:7b:ae:e5:2e:42:ae:98:58:a9:
cf:b8:19:83:e6:c0:07:17:27:ff:6c:73:d4:6f:ad:de:61:fb:
fb:d4:1c:f5:7c:ac:8e:e2:d0:5e:d7:08:16:e0:25:6e:ef:6b:
f4:73:40:d1:fd:66:34:1b:92:54:d4:5b:77:71:18:ca:2a:97:
ac:35:6c:6f:b9:6d:c5:f9:37:da:c6:9f:e6:fc:ed:31:5c:c1:
36:db:01:52:fa:18:bf:02:dc:82:a7:4c:f0:5c:02:d6:16:14:
19:e4:94:e4:c6:0d:4d:ad:8f:f5:6a:d3:69:e8:32:ca:1f:a7:
2e:3a:b6:cc:f0:8c:5a:e3:52:ee:4e:23:0e:65:c8:59:f5:d2:
53:b1:35:b5:2d:0b:23:ad:c5:7f:b3:01:81:f4:6b:d8:a7:a3:
d4:12:96:bc:d8:34:82:1d:61:5f:41:ec:0d:9f:97:dd:d8:a8:
26:4a:2e:c4:ff:5a:a0:d1:8e:c4:1f:06:a6:d0:54:ba:91:7f:
3e:cb:cd:c2:31:9d:93:4a:7d:82:6e:bc:59:0d:5f:2d:b6:ac:
ad:ef:b5:cf:5f:a7:4d:32:42:93:ab:b0:fb:c7:2a:eb:54:f1:
40:70:0c:20:92:a4:8b:4e:b5:c7:1b:4d:13:45:96:3c:d7:c4:
82:e6:5c:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:24:14 2025 by rpki-client