Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS141968.roa
File: AS141968.roa (raw, json)
Hash identifier: KpEnWN85y0sUiH76hzz9ShVsuriXtkB7flnn6LywjHw=
Subject key identifier: 26:3A:7B:4C:28:E4:50:94:92:C7:19:55:31:B7:F6:A5:D6:34:65:75
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 1B0774E82E1902FAAB5720325E8B8E4F57E5D6CC
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS141968.roa
Signing time: Sun 19 Jan 2025 13:39:04 +0000
ROA not before: Sun 19 Jan 2025 13:34:04 +0000
ROA not after: Sun 18 Jan 2026 13:39:04 +0000
asID: 141968
IP address blocks: 45.149.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:07:74:e8:2e:19:02:fa:ab:57:20:32:5e:8b:8e:4f:57:e5:d6:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Jan 19 13:34:04 2025 GMT
Not After : Jan 18 13:39:04 2026 GMT
Subject: CN=263A7B4C28E4509492C7195531B7F6A5D6346575
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2a:24:f4:d6:35:e0:7b:9d:99:46:88:d3:eb:
c0:b2:01:84:a3:07:6c:45:80:f3:2b:9f:11:66:c4:
15:a8:46:59:67:bb:14:5c:ee:c0:21:d7:91:9e:4b:
17:34:a7:42:99:cd:a2:5d:6c:cc:cc:cd:6e:06:c8:
3d:f7:d3:dd:63:d5:eb:3e:1b:4c:df:7f:f1:68:71:
cf:08:c7:e9:38:18:3a:31:b0:d1:a2:b4:a0:da:bc:
5d:d7:af:4b:3f:60:7f:8a:4e:6a:e7:61:12:de:1c:
09:e3:81:cf:f3:15:39:7f:91:e3:89:04:47:93:58:
0f:ec:24:41:7b:ea:c0:90:5c:5e:6d:76:57:32:1b:
d9:14:3c:c8:e0:44:f9:28:de:69:e2:6b:e1:2c:2c:
8c:6b:9f:bd:09:51:5d:d4:19:4f:b4:e0:ef:f1:d0:
0c:d2:c2:cd:76:39:ea:ec:53:c3:5c:67:61:5a:80:
a9:15:cb:b3:86:e4:4b:69:1a:6a:43:62:b7:35:df:
c0:0d:d2:5e:b9:41:33:d6:dd:b0:5e:ce:96:62:68:
a3:a5:e2:7c:27:58:6c:d6:a1:44:d0:39:06:65:24:
f2:e2:77:fa:c8:f8:bf:f2:f2:e1:77:28:f2:c0:f5:
60:32:46:2c:3f:cc:a2:24:2c:8f:76:88:1b:ff:b8:
0c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:3A:7B:4C:28:E4:50:94:92:C7:19:55:31:B7:F6:A5:D6:34:65:75
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS141968.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.187.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:9e:ac:c0:86:16:fa:c3:c1:27:f6:b0:ca:4f:44:e9:b0:42:
68:ef:28:7f:ad:a4:29:12:30:6a:8b:99:8d:86:bd:9b:93:9e:
1d:f2:2d:e6:a0:43:13:2b:47:10:cb:f0:c8:ff:8d:32:06:0c:
fa:37:7c:e2:61:2f:cf:9f:f5:76:f0:dd:5b:f2:f3:c5:32:c4:
9c:b3:3b:97:7b:17:7a:d7:5a:9a:0a:a6:29:53:8d:1b:10:4d:
65:95:f8:c5:03:00:0b:0f:49:cb:76:15:f3:74:48:bc:21:37:
86:80:2a:b4:bd:b8:20:0b:9e:12:52:4e:a6:8d:89:2c:41:9b:
25:72:0d:d6:40:68:20:c6:9e:8d:00:75:bb:e3:b0:6d:9f:80:
95:d2:e9:ab:2a:58:1e:1b:c9:b9:ec:2e:c5:1c:24:28:33:3c:
6b:d6:40:5a:90:65:7d:ae:4b:98:1a:27:ca:92:fe:bc:38:33:
ba:3f:89:0b:8a:e1:ae:24:48:a8:16:99:8e:34:55:bc:ca:ef:
88:c0:d1:c7:d4:d0:5c:35:88:e3:57:cb:28:50:d2:99:51:65:
88:c2:5a:92:d4:f7:35:67:1a:78:72:a7:11:38:fb:5f:e3:cd:
c6:a8:8c:c0:a5:a5:c9:4a:8c:35:9d:6e:72:ef:88:91:84:fc:
17:6d:12:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:18:30 2025 by rpki-client