Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS9280.roa
File: AS9280.roa (raw, json)
Hash identifier: jSIDBGwtUlddAgrKUchVE3S7L215ukPEObBD0MdsFpE=
Subject key identifier: 1F:45:ED:FA:F5:E2:85:AB:0B:6D:97:00:E4:6E:E3:74:F0:11:87:FC
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 45DBBEB5C95A645DE33982CB12FEAD31D1061A64
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS9280.roa
Signing time: Wed 01 Jan 2025 08:53:49 +0000
ROA not before: Wed 01 Jan 2025 08:48:49 +0000
ROA not after: Wed 31 Dec 2025 08:53:49 +0000
asID: 9280
IP address blocks: 191.96.214.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:db:be:b5:c9:5a:64:5d:e3:39:82:cb:12:fe:ad:31:d1:06:1a:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jan 1 08:48:49 2025 GMT
Not After : Dec 31 08:53:49 2025 GMT
Subject: CN=1F45EDFAF5E285AB0B6D9700E46EE374F01187FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:87:eb:9b:8c:06:4b:db:46:a5:6b:c3:07:e4:
f5:08:a2:aa:09:d7:4b:ef:32:05:b1:c7:81:78:60:
7d:ad:02:31:65:92:56:0a:c4:ca:36:b1:2c:34:05:
b5:ef:f4:d5:da:cd:ff:87:1f:8b:76:3d:45:33:dc:
14:4a:12:83:44:35:86:ed:29:de:8e:f7:a3:62:7f:
0c:da:16:5e:7c:b7:c7:08:5a:cb:51:4d:59:73:e3:
ee:db:39:b5:a7:46:4c:21:c2:94:29:d8:a3:02:d0:
27:68:ac:0b:c3:79:48:bc:54:c2:8b:fe:6d:d4:62:
c7:93:a1:89:95:1f:18:8e:8c:bd:74:60:04:b5:a5:
ba:eb:8a:36:6b:bd:cc:bd:54:c0:e4:17:ca:bf:3b:
06:8a:3a:72:9e:3a:b8:f5:94:fc:d8:37:d0:56:a5:
df:a4:3e:89:12:02:73:9c:cf:0d:34:2e:64:0f:b5:
9e:ae:10:d4:f6:6b:24:2e:e1:05:38:d2:d8:eb:1d:
23:e3:e2:fd:01:23:73:c3:f3:31:c8:fc:65:fe:c2:
a0:ba:e0:a3:cd:a1:2e:5a:10:16:47:70:fe:cb:64:
4d:80:bd:09:0b:68:b9:c0:f4:56:81:1c:39:c1:c7:
de:2a:e9:1f:f5:e1:61:a5:f5:13:9b:3a:4f:3b:3d:
70:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:45:ED:FA:F5:E2:85:AB:0B:6D:97:00:E4:6E:E3:74:F0:11:87:FC
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS9280.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.96.214.0/24
Signature Algorithm: sha256WithRSAEncryption
36:1d:bc:f4:c2:8f:61:77:45:76:46:77:e6:ff:7b:8e:65:99:
b4:5d:67:d6:c1:6a:de:29:20:37:71:21:85:b1:47:3b:74:39:
1a:d4:f7:69:42:82:3f:63:e2:d5:8b:f5:e7:64:b6:84:7a:16:
26:dd:50:8c:62:cd:5f:8b:fc:0d:d6:46:cd:13:90:84:6a:58:
db:59:eb:e9:a8:5d:5b:25:6f:42:6e:c5:a3:2e:5a:aa:62:56:
c7:1b:00:38:31:28:12:99:28:40:93:96:e0:3f:8d:52:2b:e7:
61:6e:1a:f5:c2:32:d1:65:f5:80:38:69:4a:63:bf:f6:4b:e3:
2e:ce:36:ce:b2:45:5e:5e:ec:f7:c1:88:7b:d4:6c:37:5f:46:
f0:5d:4a:05:74:d4:76:13:08:86:12:58:13:83:10:2c:8c:d1:
71:ff:c2:46:12:49:d9:99:f2:ae:86:15:b6:85:34:17:54:fa:
94:86:a6:f5:8b:56:21:59:16:a5:36:76:31:af:33:18:b6:85:
f3:0e:dd:bf:53:c7:63:7d:39:d3:48:22:19:24:b6:b1:bd:5f:
a6:f7:c1:19:a6:5d:e7:c2:9c:d1:ac:29:3e:9f:e0:9c:99:e3:
e4:b6:d8:37:9c:26:8e:e7:25:a6:26:cb:64:e1:04:87:e2:16:
41:4c:07:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:15 2025 by rpki-client