Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS137409.roa
File: AS137409.roa (raw, json)
Hash identifier: eWZ4JUWm/qDaeDk7/wdhJdITRIqXpWJaZU/998hHjS8=
Subject key identifier: 81:E6:1E:0F:07:A9:1C:D1:AB:BA:18:44:D8:AE:E3:E4:C9:C0:CB:4B
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 2F18D4A0B7566AC4682E001E746441AEC087DEF5
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS137409.roa
Signing time: Thu 06 Mar 2025 18:53:56 +0000
ROA not before: Thu 06 Mar 2025 18:48:56 +0000
ROA not after: Thu 05 Mar 2026 18:53:56 +0000
asID: 137409
IP address blocks: 185.155.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:18:d4:a0:b7:56:6a:c4:68:2e:00:1e:74:64:41:ae:c0:87:de:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Mar 6 18:48:56 2025 GMT
Not After : Mar 5 18:53:56 2026 GMT
Subject: CN=81E61E0F07A91CD1ABBA1844D8AEE3E4C9C0CB4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:fe:8d:76:4a:81:d2:28:7c:ae:09:21:39:a4:
4e:b7:6f:cc:3e:e4:15:27:ed:11:a2:9f:73:06:fd:
06:46:da:49:ea:be:2e:53:52:a6:9e:b6:75:9c:1d:
78:d7:38:06:fd:82:79:77:95:c3:22:5f:06:c6:c4:
33:bd:d4:9c:e3:de:97:cd:5b:f4:27:3f:3c:14:5c:
9c:6c:61:62:b2:ca:05:2e:2c:27:84:a4:64:21:ba:
94:ad:1b:e1:40:cd:60:c0:9b:4f:b1:7f:22:ad:43:
52:5c:e8:aa:26:83:b0:e3:e6:e6:ad:50:21:ab:73:
05:d0:d8:52:f1:d9:9c:30:cf:a9:a9:53:54:30:39:
15:1e:78:f2:6c:c0:24:84:8b:b8:c0:50:57:a1:93:
22:82:00:ba:e6:66:4e:66:b3:88:69:1b:bc:3c:86:
dc:04:a6:21:72:67:ed:e7:40:ce:74:ef:72:82:ea:
2a:64:db:3a:0c:3c:6b:64:df:fa:1a:65:fa:b8:7c:
0e:49:f5:f0:30:1e:76:9a:cc:68:80:49:30:0d:f7:
86:4a:02:74:9a:d3:3c:fc:c8:28:1a:93:da:50:26:
8f:0a:f3:ab:ff:23:2e:f6:a0:2e:52:68:03:aa:0b:
fa:91:37:de:bd:0e:b4:2e:d1:50:f5:83:a8:dd:90:
5d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E6:1E:0F:07:A9:1C:D1:AB:BA:18:44:D8:AE:E3:E4:C9:C0:CB:4B
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS137409.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.220.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:21:37:c1:0f:58:dd:03:36:ca:f6:33:f4:77:c8:e7:7a:60:
02:ab:7a:9f:de:12:32:45:2a:c4:12:a3:f5:7e:e0:64:75:ca:
20:94:d5:06:76:24:b0:4a:0c:fd:03:c7:c0:29:b2:85:7a:b6:
90:b6:ca:19:08:e6:d2:f3:48:c1:d8:a3:cb:a3:83:97:95:56:
88:4d:49:c0:66:82:19:7b:31:7b:26:aa:f4:ba:82:7c:ea:09:
77:4a:42:e2:b7:11:a5:9a:f9:01:7b:09:cc:e3:a0:cd:03:26:
bc:f7:c5:e3:25:23:d3:75:58:a0:05:02:15:23:94:56:60:fb:
b0:b0:6a:32:d3:a0:61:3d:1d:ec:c8:3d:26:93:fc:60:cb:b4:
5b:d2:3b:a4:4d:e7:1d:9d:7a:95:6c:1a:fb:e3:8f:8e:ed:37:
04:8c:8c:ca:7e:bc:43:2f:f4:fd:58:4d:e3:83:d2:fa:35:34:
91:b8:ec:b3:a3:e5:9d:2c:f7:85:db:32:76:b8:14:dc:f4:b1:
c5:41:46:68:3a:8c:27:8e:55:c1:f6:96:1d:5b:3a:8d:67:ca:
b3:9a:7d:d4:91:31:36:4b:76:4a:42:b0:ee:17:df:78:bc:10:
85:08:20:04:89:b9:40:8b:f4:5d:fd:1c:4a:9f:2c:ad:a0:08:
56:1d:a6:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:18:14 2025 by rpki-client