Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS142111.roa
File: AS142111.roa (raw, json)
Hash identifier: 0+aETepWnf/KG3pJbGlSooyxflcVh88DB7EEFmIkDIQ=
Subject key identifier: CB:81:EE:0F:28:37:E6:76:2B:F8:7A:AF:9A:E1:10:84:AA:50:F1:B1
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 4C330FB1C18C1A80FA45330D9D5A1D373B6A5FA3
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS142111.roa
Signing time: Thu 26 Dec 2024 00:53:48 +0000
ROA not before: Thu 26 Dec 2024 00:48:48 +0000
ROA not after: Thu 25 Dec 2025 00:53:48 +0000
asID: 142111
IP address blocks: 45.146.82.0/24 maxlen: 24
45.158.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:33:0f:b1:c1:8c:1a:80:fa:45:33:0d:9d:5a:1d:37:3b:6a:5f:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Dec 26 00:48:48 2024 GMT
Not After : Dec 25 00:53:48 2025 GMT
Subject: CN=CB81EE0F2837E6762BF87AAF9AE11084AA50F1B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:0d:7c:74:2e:99:de:db:c7:3d:42:e3:a6:ed:
e1:a7:84:e3:45:f3:38:ca:e8:1c:ea:1c:b7:d9:2f:
b9:4b:df:03:42:ad:81:47:5d:e7:b5:32:0a:20:89:
0b:ff:04:81:d1:41:f0:f4:d8:4f:40:f0:46:73:09:
b3:e6:a4:9f:19:0f:42:8f:a1:39:8e:46:46:18:c0:
3c:f4:1b:31:1a:f1:ac:91:a1:85:77:16:6f:0e:67:
57:5f:e8:d9:00:5a:d8:f2:dd:f4:89:e5:48:1b:fa:
18:97:d2:69:3c:be:bc:25:e1:fd:24:99:9a:03:b2:
f2:b1:56:d2:25:8a:e2:27:17:48:03:27:f0:1a:e8:
ed:e2:0e:e2:b0:51:dc:f8:b2:3a:c2:7d:e1:71:e0:
26:75:18:e4:1f:ca:7d:95:44:24:6b:ff:69:3d:b4:
01:73:e0:62:e9:de:da:41:c4:e8:3d:cd:d9:01:73:
0f:4c:9d:7c:b4:33:49:8f:86:f8:89:26:71:ae:78:
ed:86:98:d9:d2:c5:74:84:b8:5a:43:03:db:43:71:
ce:a4:4d:a1:8d:f0:98:df:dd:52:a1:78:e9:ab:e7:
f5:b4:86:d0:a3:e3:39:9b:d0:c1:bb:86:23:87:06:
2d:a5:46:65:48:17:a6:63:6d:2b:66:08:64:e4:92:
27:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:81:EE:0F:28:37:E6:76:2B:F8:7A:AF:9A:E1:10:84:AA:50:F1:B1
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS142111.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.82.0/24
45.158.11.0/24
Signature Algorithm: sha256WithRSAEncryption
85:64:aa:78:43:d1:03:7e:db:0e:c5:78:31:95:2b:e2:86:a0:
ac:a0:dc:17:f0:3c:fd:3d:36:86:f9:8c:ed:9e:c9:b0:da:ab:
ba:90:a9:e4:69:7c:b0:b0:09:d9:32:9c:6e:ab:bb:eb:9d:d0:
a9:7f:f8:82:0a:84:74:2b:bb:f8:1c:be:77:28:e0:c3:5b:b5:
39:e6:71:73:15:90:ec:86:d7:f8:fb:19:bc:78:15:07:cf:5c:
a9:0b:a6:ae:1b:a5:b5:19:9b:8a:22:87:f5:e0:56:e0:5c:2d:
a1:7a:60:02:ae:58:9a:77:58:c6:72:d9:ed:a0:3d:fe:50:44:
c1:9d:70:52:ca:ad:90:23:e5:e0:cc:e5:1b:07:3b:10:ee:e3:
c5:ee:75:ef:4e:27:c6:54:6c:72:1a:ac:15:54:89:21:d2:aa:
f6:84:09:35:ce:05:4b:9b:5f:2c:a4:68:fd:33:89:14:72:7f:
97:7a:f2:43:ee:a4:d4:99:d2:0b:d7:29:f9:b9:c1:e1:65:ee:
50:01:a0:34:d1:dd:2e:2d:d3:31:51:a4:9f:db:6e:4a:9f:ef:
ad:1e:c0:d8:51:d7:8f:cd:54:be:d3:4d:f7:aa:9f:1e:0b:89:
e8:4f:a0:ef:f1:ac:cb:e4:56:d4:86:2f:3c:f9:e8:6a:14:1d:
75:72:b6:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:18:30 2025 by rpki-client