Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS7393.roa
File: AS7393.roa (raw, json)
Hash identifier: L6SNtZ/yQpOWM46Lq/qgW5T3G3kuwIX2unY8ZoI3fr4=
Subject key identifier: EB:DF:73:D7:0B:9B:8D:31:52:55:65:20:CB:61:DA:44:53:F6:77:CF
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 48C1B5679E4E669237367A92E993B1846658B6E2
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS7393.roa
Signing time: Mon 17 Mar 2025 15:53:58 +0000
ROA not before: Mon 17 Mar 2025 15:48:58 +0000
ROA not after: Mon 16 Mar 2026 15:53:58 +0000
asID: 7393
IP address blocks: 185.158.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:c1:b5:67:9e:4e:66:92:37:36:7a:92:e9:93:b1:84:66:58:b6:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 17 15:48:58 2025 GMT
Not After : Mar 16 15:53:58 2026 GMT
Subject: CN=EBDF73D70B9B8D3152556520CB61DA4453F677CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:45:e0:b4:b1:41:fc:76:4d:c9:ef:bf:76:c4:
bf:96:c1:6a:51:24:40:fe:43:07:4a:99:47:08:57:
46:7c:d0:fc:99:95:ff:47:ba:71:c9:1c:8e:b8:4c:
96:07:f3:13:88:7a:a2:7e:77:6a:bb:32:cf:fb:a8:
82:17:e6:eb:d4:b2:bf:3d:db:b2:45:2c:46:6b:c7:
b7:16:a6:af:74:1a:85:8f:0d:86:85:cd:c7:fd:67:
a7:64:73:00:ac:ba:dc:4d:b9:13:fd:2d:86:04:64:
38:87:d6:cf:ff:2c:9c:c8:7b:e5:62:fd:67:e2:f9:
83:d9:fd:36:03:15:e9:85:f3:31:9e:0e:ed:f9:ba:
1c:8b:e7:e9:de:0f:d8:10:02:75:f1:4b:09:6f:a5:
af:8f:9d:0c:b7:e2:6c:e1:97:9b:61:d0:f6:cd:5d:
2e:fe:52:53:92:9a:d1:80:ea:a5:33:2c:b0:fc:1a:
cf:fe:61:72:36:b1:6a:a2:ac:cf:bf:c9:6a:0b:fd:
a4:d3:53:3f:1d:79:bf:50:76:7a:c3:20:eb:49:19:
d0:79:70:f7:dc:dc:e7:f4:37:de:59:e6:5d:87:ce:
0b:f7:f1:c9:ef:19:ef:da:43:c2:8e:d5:23:0b:71:
0b:a9:34:57:5d:4b:80:89:54:3e:aa:fd:13:17:be:
36:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:DF:73:D7:0B:9B:8D:31:52:55:65:20:CB:61:DA:44:53:F6:77:CF
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS7393.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.158.151.0/24
Signature Algorithm: sha256WithRSAEncryption
00:47:a2:a0:2c:54:98:2b:c8:d8:7e:6a:34:a8:6e:0b:02:53:
9c:6a:bd:85:3a:da:63:b3:57:f3:14:45:64:94:f1:ed:fd:2e:
b0:4a:90:e4:23:46:30:fa:24:7e:2a:39:ed:56:a2:9a:64:1e:
8c:f9:a1:58:e6:8d:41:8e:06:76:69:7b:86:4b:f8:34:77:8d:
72:f6:16:f5:3d:02:c5:79:b7:d6:6f:1e:0a:1c:84:6c:d0:2e:
87:1d:b6:7b:b1:5c:68:81:dc:a7:33:e4:8b:1f:56:8c:9b:10:
91:9f:f9:55:10:f5:e9:3f:26:45:d5:06:52:58:ec:00:3a:e2:
5e:c8:39:41:1b:f1:d6:e0:3a:a8:02:d8:80:70:9e:92:53:5a:
c7:5a:30:72:5a:b3:b2:b4:32:ea:2a:c1:1e:20:cc:db:0b:95:
13:62:95:e3:b7:82:20:3a:78:f6:32:a4:7b:db:31:e1:26:bc:
ce:b5:9e:57:62:53:42:db:ff:a0:9b:00:b2:1a:df:73:f2:73:
a7:a1:99:68:f1:68:be:49:90:15:ed:76:47:8f:53:fb:ec:1e:
ba:90:7d:79:08:c5:e7:a5:0d:32:b7:79:79:ff:09:c6:67:74:
a1:cb:72:f8:3b:ef:a0:11:af:fd:5b:0c:64:d2:66:51:cd:67:
68:a9:02:b9
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIUSMG1Z55OZpI3NnqS6ZOxhGZYtuIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNTAzMTcxNTQ4NThaFw0yNjAzMTYxNTUzNThaMDMxMTAvBgNV
BAMTKEVCREY3M0Q3MEI5QjhEMzE1MjU1NjUyMENCNjFEQTQ0NTNGNjc3Q0YwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkReC0sUH8dk3J7792xL+WwWpR
JED+QwdKmUcIV0Z80PyZlf9HunHJHI64TJYH8xOIeqJ+d2q7Ms/7qIIX5uvUsr89
27JFLEZrx7cWpq90GoWPDYaFzcf9Z6dkcwCsutxNuRP9LYYEZDiH1s//LJzIe+Vi
/Wfi+YPZ/TYDFemF8zGeDu35uhyL5+neD9gQAnXxSwlvpa+PnQy34mzhl5th0PbN
XS7+UlOSmtGA6qUzLLD8Gs/+YXI2sWqirM+/yWoL/aTTUz8deb9QdnrDIOtJGdB5
cPfc3Of0N95Z5l2Hzgv38cnvGe/aQ8KO1SMLcQupNFddS4CJVD6q/RMXvjaFAgMB
AAGjggIIMIICBDAdBgNVHQ4EFgQU699z1wubjTFSVWUgy2HaRFP2d88wHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTNzM5My5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmelzAN
BgkqhkiG9w0BAQsFAAOCAQEAAEeioCxUmCvI2H5qNKhuCwJTnGq9hTraY7NX8xRF
ZJTx7f0usEqQ5CNGMPokfio57VaimmQejPmhWOaNQY4Gdml7hkv4NHeNcvYW9T0C
xXm31m8eChyEbNAuhx22e7FcaIHcpzPkix9WjJsQkZ/5VRD16T8mRdUGUljsADri
Xsg5QRvx1uA6qALYgHCeklNax1owclqzsrQy6irBHiDM2wuVE2KV47eCIDp49jKk
e9sx4Sa8zrWeV2JTQtv/oJsAshrfc/Jzp6GZaPFovkmQFe12R49T++weupB9eQjF
56UNMrd5ef8Jxmd0octy+DvvoBGv/VsMZNJmUc1naKkCuQ==
-----END CERTIFICATE-----
Generated at Sat Apr 5 04:30:05 2025 by rpki-client