Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS7018.roa
File: AS7018.roa (raw, json)
Hash identifier: wQzynQpmPon7Sgaoak7oHT4eheyX38AQPs/To0DzZXw=
Subject key identifier: 5F:66:33:CC:B3:B4:79:AE:3E:80:F7:98:4C:70:18:83:82:D7:1D:2F
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 1449EFB0ED7A8A1EA0F36957B41C32219D28D34C
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS7018.roa
Signing time: Fri 21 Mar 2025 00:00:11 +0000
ROA not before: Thu 20 Mar 2025 23:55:11 +0000
ROA not after: Fri 20 Mar 2026 00:00:11 +0000
asID: 7018
IP address blocks: 179.61.155.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:49:ef:b0:ed:7a:8a:1e:a0:f3:69:57:b4:1c:32:21:9d:28:d3:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 20 23:55:11 2025 GMT
Not After : Mar 20 00:00:11 2026 GMT
Subject: CN=5F6633CCB3B479AE3E80F7984C70188382D71D2F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:4f:26:95:47:a8:ef:95:81:e0:cc:2c:92:34:
2d:5f:38:ea:22:d7:d3:aa:91:1e:6d:5f:05:7e:60:
9f:f8:24:fa:7a:15:b4:4a:bc:9e:6f:c0:be:72:53:
bb:2b:a2:41:57:92:e5:6c:14:11:a4:d7:37:df:64:
30:bf:ca:1e:49:8b:04:51:eb:84:78:c1:81:f7:35:
98:78:6e:71:17:32:8b:d8:8e:74:88:94:73:18:9b:
89:b1:cf:4a:8e:ec:57:4e:bf:51:fc:6f:bd:23:ef:
c6:f0:40:f6:a3:08:d6:4d:14:b7:e8:e3:ff:0f:8a:
84:29:4d:bc:0b:ab:1f:8d:4c:5d:b6:09:d6:c0:e2:
3f:16:df:24:a9:65:cc:9a:7f:34:53:f7:35:6e:73:
a6:da:21:d7:74:42:01:b3:76:95:b6:bf:79:b8:ee:
86:f1:57:e1:5e:3b:5e:d2:76:a9:a1:b5:4c:e6:e5:
cc:b8:58:25:e8:0f:a2:fc:e5:88:57:50:55:61:df:
d7:f2:3f:e0:8c:7f:0e:c6:66:4b:6a:a9:3e:de:0c:
37:4a:6a:7e:70:81:7a:5e:de:00:4c:5b:cc:c1:13:
6c:bc:a1:57:f7:6a:04:f8:53:b7:1d:ca:de:eb:9b:
9b:c2:23:06:e5:5e:cb:43:b5:9b:f2:5b:22:5d:9e:
e5:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:66:33:CC:B3:B4:79:AE:3E:80:F7:98:4C:70:18:83:82:D7:1D:2F
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS7018.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.155.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:d3:68:b8:bc:be:8f:06:44:6c:f0:b4:0d:5b:36:5a:3d:16:
46:ec:31:2c:61:b9:d6:12:a7:f1:54:11:e8:55:4b:71:95:82:
86:a1:df:9b:42:11:cc:66:19:d3:66:16:4f:3e:17:1e:bc:74:
1b:97:da:fc:27:e7:05:33:71:57:c6:e4:66:06:2f:99:a0:78:
4d:2a:b5:39:f0:fe:c0:cc:6d:3c:28:4f:64:fc:f5:c7:29:e7:
69:96:3f:46:4d:50:5f:bd:26:67:a5:5e:b9:dd:b9:db:d1:fe:
cf:0a:70:5c:d7:92:15:88:89:66:d0:9e:6e:91:29:28:0c:02:
b8:7f:94:65:4a:09:b6:cf:8a:05:70:fb:f6:3a:d1:9f:a3:67:
b4:ec:b4:c8:49:50:6e:81:1a:8b:2c:0d:23:4f:1c:c6:f6:bb:
51:44:73:9a:53:aa:dc:3e:58:3f:cd:a6:64:4b:38:38:93:e2:
51:14:99:cb:7e:ff:18:bb:7e:5a:8b:88:a9:64:57:2c:6b:e2:
66:89:48:ef:66:0f:89:08:0e:c3:16:51:fd:45:a7:f0:79:73:
f2:cf:b5:ba:32:d2:8d:51:ea:0b:7a:71:2b:62:41:f2:fd:61:
60:d3:ac:be:b2:bc:36:74:2e:d7:97:17:6b:42:54:a8:c0:95:
5f:67:17:6d
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIUFEnvsO16ih6g82lXtBwyIZ0o00wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNTAzMjAyMzU1MTFaFw0yNjAzMjAwMDAwMTFaMDMxMTAvBgNV
BAMTKDVGNjYzM0NDQjNCNDc5QUUzRTgwRjc5ODRDNzAxODgzODJENzFEMkYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDTyaVR6jvlYHgzCySNC1fOOoi
19OqkR5tXwV+YJ/4JPp6FbRKvJ5vwL5yU7srokFXkuVsFBGk1zffZDC/yh5JiwRR
64R4wYH3NZh4bnEXMovYjnSIlHMYm4mxz0qO7FdOv1H8b70j78bwQPajCNZNFLfo
4/8PioQpTbwLqx+NTF22CdbA4j8W3ySpZcyafzRT9zVuc6baIdd0QgGzdpW2v3m4
7obxV+FeO17SdqmhtUzm5cy4WCXoD6L85YhXUFVh39fyP+CMfw7GZktqqT7eDDdK
an5wgXpe3gBMW8zBE2y8oVf3agT4U7cdyt7rm5vCIwblXstDtZvyWyJdnuWZAgMB
AAGjggIIMIICBDAdBgNVHQ4EFgQUX2YzzLO0ea4+gPeYTHAYg4LXHS8wHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTNzAxOC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALM9mzAN
BgkqhkiG9w0BAQsFAAOCAQEAndNouLy+jwZEbPC0DVs2Wj0WRuwxLGG51hKn8VQR
6FVLcZWChqHfm0IRzGYZ02YWTz4XHrx0G5fa/CfnBTNxV8bkZgYvmaB4TSq1OfD+
wMxtPChPZPz1xynnaZY/Rk1QX70mZ6Veud2529H+zwpwXNeSFYiJZtCebpEpKAwC
uH+UZUoJts+KBXD79jrRn6NntOy0yElQboEaiywNI08cxva7UURzmlOq3D5YP82m
ZEs4OJPiURSZy37/GLt+WouIqWRXLGviZolI72YPiQgOwxZR/UWn8Hlz8s+1ujLS
jVHqC3pxK2JB8v1hYNOsvrK8NnQu15cXa0JUqMCVX2cXbQ==
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:55:07 2025 by rpki-client