Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS202662.roa
File: AS202662.roa (raw, json)
Hash identifier: UwT/UcU4rEv0KjjCHjS2aAxuurrK59KmpQsrR2FXU0Q=
Subject key identifier: 85:0C:D3:39:3F:FC:72:CA:59:FE:32:D3:5A:BE:49:E3:B4:3D:C1:5B
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 28E5185B362D928FA680DD841E05E557627C96EB
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS202662.roa
Signing time: Wed 22 Jan 2025 18:53:51 +0000
ROA not before: Wed 22 Jan 2025 18:48:51 +0000
ROA not after: Wed 21 Jan 2026 18:53:51 +0000
asID: 202662
IP address blocks: 192.166.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:e5:18:5b:36:2d:92:8f:a6:80:dd:84:1e:05:e5:57:62:7c:96:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Jan 22 18:48:51 2025 GMT
Not After : Jan 21 18:53:51 2026 GMT
Subject: CN=850CD3393FFC72CA59FE32D35ABE49E3B43DC15B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1d:79:7a:0e:08:3c:d5:3d:c1:5c:67:e3:27:
9e:8a:9d:52:da:59:97:ed:b9:b8:81:9e:95:d6:2b:
92:77:45:ed:98:bd:72:4b:aa:68:c4:ad:63:7d:10:
06:27:a6:2d:2b:27:ad:04:c6:f4:4d:f0:07:ce:38:
a9:65:96:00:80:bf:73:2f:9d:bb:82:13:81:71:ac:
31:7c:57:1a:ad:28:49:00:34:02:a5:cd:af:cc:12:
8f:7f:1c:26:db:d4:aa:7a:ea:0a:34:1f:95:fa:33:
df:ea:0f:9a:36:8c:a9:b7:d8:15:7d:75:03:89:15:
63:95:ad:8a:8e:86:1a:1e:f6:30:f5:4d:65:bd:c7:
e0:9e:47:0d:65:5b:b2:e3:12:2e:c3:de:a5:58:b6:
d6:fe:57:b6:f5:fa:5e:2f:c6:ee:12:9a:78:b7:9f:
b0:d2:1a:60:2e:29:20:52:55:e3:2e:b1:e3:76:20:
a6:c8:29:08:fe:e0:af:90:da:6a:81:4a:08:3d:01:
3b:76:55:fc:2d:1e:44:0d:29:3f:27:70:3a:66:c1:
9e:4a:d6:09:d3:e3:98:5b:07:d6:dc:9c:b1:9f:58:
5c:ec:12:27:76:00:cc:95:19:96:3f:43:2a:b8:16:
ab:32:5f:13:d5:b8:64:60:73:1a:4c:27:07:2d:bd:
7b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:0C:D3:39:3F:FC:72:CA:59:FE:32:D3:5A:BE:49:E3:B4:3D:C1:5B
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS202662.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.166.114.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:7b:43:fa:6e:11:32:05:8c:19:e5:1d:b8:53:2d:2f:af:5b:
02:0f:70:1e:b8:74:d8:9b:10:e7:8f:19:23:55:67:f2:a2:2b:
5a:51:8f:3f:99:f4:f5:d0:bc:d8:bc:f6:13:a7:b2:5b:fa:d8:
24:89:a8:63:ff:1b:b3:93:ec:e0:26:5b:4f:c0:6a:1e:db:f9:
1f:c1:0e:de:8e:04:36:f9:c4:20:62:6e:78:11:58:1b:52:88:
00:aa:62:9c:75:2a:3b:ac:03:94:40:06:ca:b7:5d:3e:41:26:
4f:46:a3:3d:d7:80:4e:cf:d1:d1:68:14:3d:48:a6:dc:a1:a4:
1c:37:21:bd:5f:d5:0a:a4:8a:4f:15:87:3c:6e:3f:1a:0b:bd:
0d:d0:eb:e9:ad:5c:2c:46:0a:0b:c2:c0:30:cf:5b:78:97:64:
fe:17:49:d4:a7:2a:f2:5c:66:b5:91:59:f5:5d:5e:c7:a1:a0:
21:36:18:4a:0a:27:99:ba:bb:0d:12:e0:38:a8:0b:e9:da:82:
07:ef:d2:c3:8e:13:21:e9:ec:24:65:22:21:10:62:73:15:74:
f5:5c:87:0d:50:73:37:aa:c0:a1:a3:28:d2:ce:12:48:2c:19:
e8:4d:fa:c3:b8:65:67:14:49:fe:7f:c8:41:47:2e:bd:94:d7:
46:be:fd:93
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUKOUYWzYtko+mgN2EHgXlV2J8luswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDNiMWJhM2ZkYjkxZDhkOWVhNzZjNTc3NjMyMGViN2Vi
MmQ2ZWQ5ZDAeFw0yNTAxMjIxODQ4NTFaFw0yNjAxMjExODUzNTFaMDMxMTAvBgNV
BAMTKDg1MENEMzM5M0ZGQzcyQ0E1OUZFMzJEMzVBQkU0OUUzQjQzREMxNUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7HXl6Dgg81T3BXGfjJ56KnVLa
WZftubiBnpXWK5J3Re2YvXJLqmjErWN9EAYnpi0rJ60ExvRN8AfOOKlllgCAv3Mv
nbuCE4FxrDF8VxqtKEkANAKlza/MEo9/HCbb1Kp66go0H5X6M9/qD5o2jKm32BV9
dQOJFWOVrYqOhhoe9jD1TWW9x+CeRw1lW7LjEi7D3qVYttb+V7b1+l4vxu4Smni3
n7DSGmAuKSBSVeMuseN2IKbIKQj+4K+Q2mqBSgg9ATt2VfwtHkQNKT8ncDpmwZ5K
1gnT45hbB9bcnLGfWFzsEid2AMyVGZY/Qyq4FqsyXxPVuGRgcxpMJwctvXvvAgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQUhQzTOT/8cspZ/jLTWr5J47Q9wVswHwYDVR0j
BBgwFoAUA7G6P9uR2NnqdsV3YyDrfrLW7Z0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2ZmMGY1NTUtZGJhNy00MTkyLWEwMWQtZjY5MTZkNWJi
ODRlLzAvMDNCMUJBM0ZEQjkxRDhEOUVBNzZDNTc3NjMyMEVCN0VCMkQ2RUQ5RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0E3RzZQOXVSMk5ucWRzVjNZeURyZnJM
VzdaMC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzdmZjBmNTU1LWRiYTct
NDE5Mi1hMDFkLWY2OTE2ZDViYjg0ZS8wL0FTMjAyNjYyLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwKZy
MA0GCSqGSIb3DQEBCwUAA4IBAQBNe0P6bhEyBYwZ5R24Uy0vr1sCD3AeuHTYmxDn
jxkjVWfyoitaUY8/mfT10LzYvPYTp7Jb+tgkiahj/xuzk+zgJltPwGoe2/kfwQ7e
jgQ2+cQgYm54EVgbUogAqmKcdSo7rAOUQAbKt10+QSZPRqM914BOz9HRaBQ9SKbc
oaQcNyG9X9UKpIpPFYc8bj8aC70N0OvprVwsRgoLwsAwz1t4l2T+F0nUpyryXGa1
kVn1XV7HoaAhNhhKCieZursNEuA4qAvp2oIH79LDjhMh6ewkZSIhEGJzFXT1XIcN
UHM3qsChoyjSzhJILBnoTfrDuGVnFEn+f8hBRy69lNdGvv2T
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:18:08 2025 by rpki-client