Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS14618.roa
File: AS14618.roa (raw, json)
Hash identifier: /BzHj2ueiLUvgVlibds/X2lIEquJOR/QYTxqWnEn5zc=
Subject key identifier: 0E:36:A4:06:6C:F8:0C:F0:8E:F7:F1:77:67:EB:F3:95:85:81:26:C8
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 514C35DB7A8377BF1420C718F973FE2AF05C27E3
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS14618.roa
Signing time: Thu 27 Mar 2025 02:34:10 +0000
ROA not before: Thu 27 Mar 2025 02:29:10 +0000
ROA not after: Thu 26 Mar 2026 02:34:10 +0000
asID: 14618
IP address blocks: 45.155.17.0/24 maxlen: 24
193.111.117.0/24 maxlen: 24
193.164.10.0/24 maxlen: 24
194.5.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:4c:35:db:7a:83:77:bf:14:20:c7:18:f9:73:fe:2a:f0:5c:27:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Mar 27 02:29:10 2025 GMT
Not After : Mar 26 02:34:10 2026 GMT
Subject: CN=0E36A4066CF80CF08EF7F17767EBF395858126C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:7e:40:3b:6d:77:28:60:52:de:c4:a1:e2:e0:
e3:a1:67:1f:51:82:04:f5:57:2c:40:c8:43:d9:95:
e2:28:d3:4a:f4:23:d3:15:18:9b:3e:6c:f0:7f:bf:
89:97:b0:2b:be:37:ca:40:c0:66:59:50:5d:1c:8a:
7a:14:a8:20:e5:4f:df:48:ee:e4:d9:91:b3:df:84:
3a:f5:f6:36:5b:ee:7b:51:99:87:7b:2b:7a:bd:4f:
2a:ea:cc:07:7a:37:5c:0f:d7:ea:ea:5e:16:f9:5c:
f3:04:56:56:bf:1c:42:77:fa:6f:7c:ce:64:a6:40:
f0:25:4b:fe:f6:c1:03:cf:64:35:2a:77:07:84:1c:
43:73:e8:88:15:ce:44:79:9c:46:86:a4:20:85:74:
c5:84:39:5f:f5:d2:f0:b3:45:83:b0:98:0b:f0:db:
06:09:cd:53:bd:ce:af:ca:6b:aa:d5:de:91:e4:9d:
0a:1b:fe:80:ce:de:7e:a1:4c:f4:bb:97:2e:41:0f:
27:53:e5:cd:bd:68:c9:36:2a:53:70:6d:5b:c9:b2:
fd:ab:0d:9a:a9:e9:3a:f4:c9:5f:12:76:a2:6d:91:
dd:16:e1:b0:c8:dc:af:b9:d7:08:2b:f9:16:46:94:
21:74:ab:64:98:52:bf:4c:c3:28:65:a5:1e:dd:29:
25:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:36:A4:06:6C:F8:0C:F0:8E:F7:F1:77:67:EB:F3:95:85:81:26:C8
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS14618.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.17.0/24
193.111.117.0/24
193.164.10.0/24
194.5.147.0/24
Signature Algorithm: sha256WithRSAEncryption
76:87:f9:e0:08:42:63:de:85:4c:3a:fb:88:e0:98:e2:21:8a:
af:27:95:ac:38:4c:38:4d:6b:33:df:64:a7:df:99:3f:45:27:
73:c7:56:11:8e:46:55:b3:ae:8a:58:f8:45:20:24:9e:36:5b:
cd:d2:35:80:9d:79:5c:10:1a:f9:f9:a7:50:fb:58:7b:be:2d:
cf:ee:e1:fb:a5:8d:d4:d7:d2:81:0a:6c:37:14:5b:a7:1d:a9:
de:19:92:f0:01:5c:9d:5d:4c:a3:86:5e:29:d5:fe:61:24:9f:
6d:bc:df:5a:f0:d1:79:e7:6b:d9:c9:a1:79:e1:39:3e:fc:30:
1b:b8:1e:a1:ba:ff:bd:da:1e:15:bd:58:09:db:b6:57:70:81:
b1:01:94:31:d1:46:b4:5e:de:89:3f:91:77:a5:dc:9e:32:e4:
ed:aa:97:16:7a:6c:29:6b:f8:2b:82:7b:e7:d8:94:c8:1b:b4:
1b:bc:1f:97:b6:d0:fb:ab:e8:ac:64:eb:a8:1a:5c:ae:53:7a:
4c:53:05:14:b0:81:dd:77:d7:12:7a:4e:69:31:b3:9c:ea:59:
df:08:87:59:a6:75:8c:e6:79:23:c4:cf:70:81:f9:dc:4b:d8:
db:8d:3c:20:66:32:76:d1:e6:23:8d:f9:17:37:3a:a1:48:33:
57:db:dc:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 12:09:56 2025 by rpki-client