Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS211373.roa
File: AS211373.roa (raw, json)
Hash identifier: YSpEz6TC9ef8MEv0DmY8jjojGZtX35pPnybenhhbkQM=
Subject key identifier: 5C:5D:57:AB:20:B8:B9:86:6C:64:8A:21:BB:C4:DD:39:5E:B0:57:C5
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 4A8DE23C501603A982EAECB5FC2CF41B9E2E3985
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS211373.roa
Signing time: Tue 14 Jan 2025 08:28:45 +0000
ROA not before: Tue 14 Jan 2025 08:23:45 +0000
ROA not after: Tue 13 Jan 2026 08:28:45 +0000
asID: 211373
IP address blocks: 45.149.100.0/24 maxlen: 24
45.149.102.0/24 maxlen: 24
176.105.227.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:8d:e2:3c:50:16:03:a9:82:ea:ec:b5:fc:2c:f4:1b:9e:2e:39:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Jan 14 08:23:45 2025 GMT
Not After : Jan 13 08:28:45 2026 GMT
Subject: CN=5C5D57AB20B8B9866C648A21BBC4DD395EB057C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:08:16:15:fc:d8:1c:30:94:26:a7:03:03:5c:
a5:76:8b:e4:ee:14:ac:99:7e:0e:1d:cf:63:8d:77:
c7:bb:3a:b7:34:ba:08:1e:45:aa:71:04:37:39:07:
60:61:55:dd:ba:6f:10:89:11:d4:1e:d3:0c:2d:55:
da:10:d1:37:a9:c8:f8:de:ff:50:51:eb:7f:c9:7e:
7c:cf:e4:21:04:8b:3b:f9:37:67:dc:a5:d4:f7:88:
eb:c6:a4:e5:2d:30:b5:29:a9:3c:fa:01:51:a8:3d:
12:51:8a:2c:14:3a:9e:30:3b:e1:30:1f:76:09:8b:
1a:12:e3:cc:6e:10:ec:c5:55:56:12:7d:05:4c:68:
7b:10:28:ca:91:93:0b:92:8e:3c:83:5b:9f:39:bb:
f4:85:b5:7c:1b:25:ee:15:8f:c9:d9:b0:62:4c:bf:
55:b0:bc:a8:c3:6d:51:36:b7:ff:da:43:d9:e0:3d:
27:4c:1c:d0:21:9c:17:91:7d:83:a6:19:ee:87:94:
cf:81:5a:62:25:4a:32:c2:3b:b5:85:07:b6:2b:ff:
05:2e:e0:aa:40:04:bd:ec:84:cd:68:ef:24:f1:fb:
26:df:55:d5:85:f5:f9:10:85:98:46:b1:d4:ec:6e:
5e:ef:c3:00:88:40:a3:7b:4b:5a:a9:14:f8:f5:05:
01:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:5D:57:AB:20:B8:B9:86:6C:64:8A:21:BB:C4:DD:39:5E:B0:57:C5
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS211373.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.100.0/24
45.149.102.0/24
176.105.227.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:53:a5:21:95:d4:86:78:16:28:5f:3c:d5:de:d6:60:54:82:
2a:cc:e9:6c:3b:6e:de:f7:71:c7:52:08:41:56:a5:64:c9:15:
36:34:ad:0e:f8:eb:c1:d3:19:d5:ee:c3:47:6d:98:a2:96:f3:
6e:39:c4:16:00:83:0e:6f:c8:b2:9d:b2:6f:59:7e:6a:0f:f2:
22:61:3e:b7:b9:bb:c2:84:42:83:e5:4a:cd:cb:60:f2:72:34:
a1:cc:8b:30:6b:ce:5f:91:d7:4c:c8:5a:2a:44:b2:c0:00:5e:
d0:7e:84:33:2d:a7:76:df:86:60:4a:03:47:78:fd:90:da:b4:
49:45:32:3a:91:09:06:bd:21:3d:e5:a3:3e:60:75:20:cd:96:
24:9e:d5:dd:7a:62:71:15:9e:f5:8a:bf:92:04:46:4d:60:35:
e7:cd:7d:46:95:2b:86:c7:11:d7:ae:73:51:37:f0:42:04:2b:
d5:c9:29:e6:e0:83:36:97:82:d4:2f:d8:f9:9b:12:a8:f7:9a:
dd:bd:c3:9a:2c:53:27:5c:13:91:71:f5:f8:30:8e:48:07:d1:
f8:9b:f9:9c:3c:8f:2a:64:67:60:de:e4:ec:ca:09:88:8b:f2:
01:fe:e0:3a:95:57:ef:d3:b9:86:5e:d6:43:11:ca:d8:fc:96:
45:a8:15:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:49:44 2025 by rpki-client