Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS211826.roa
File: AS211826.roa (raw, json)
Hash identifier: KMrQMj2+5uXTVe6a6yA3apQ8ePcoi2IdGb1EFt4TiHc=
Subject key identifier: 3A:1B:B0:0C:1C:B5:6A:98:7A:E5:18:97:04:74:00:F8:94:C3:9B:F4
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 587253D450CFE68D94E3BD2421AFA4E995E0346A
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS211826.roa
Signing time: Mon 30 Dec 2024 21:53:48 +0000
ROA not before: Mon 30 Dec 2024 21:48:48 +0000
ROA not after: Mon 29 Dec 2025 21:53:48 +0000
asID: 211826
IP address blocks: 45.153.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:72:53:d4:50:cf:e6:8d:94:e3:bd:24:21:af:a4:e9:95:e0:34:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Dec 30 21:48:48 2024 GMT
Not After : Dec 29 21:53:48 2025 GMT
Subject: CN=3A1BB00C1CB56A987AE51897047400F894C39BF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:82:b2:dd:1c:56:9a:5b:75:8b:0b:33:61:60:
b1:8c:da:fa:bc:2d:58:38:a5:a5:c2:19:99:28:cf:
72:64:92:67:9c:ac:d4:9d:3e:8c:48:03:2c:54:3b:
eb:35:15:ac:1e:aa:68:17:9e:39:77:ba:1c:ae:cc:
44:d6:2d:d6:b8:69:5a:6e:a9:d6:b4:75:cf:d3:dc:
13:62:1f:3e:b8:3e:67:45:c6:ec:f1:ee:7a:66:f8:
9c:05:d2:ba:8d:74:ae:11:38:a5:38:ac:c4:76:db:
8d:63:06:22:ea:09:7e:01:4c:eb:20:a7:3f:93:81:
82:c1:63:4a:16:3a:7a:42:3a:72:29:28:fc:cc:4a:
ea:86:fd:72:38:c9:4a:50:99:d7:50:7a:10:36:97:
c2:4c:cc:63:d4:8e:61:68:02:7e:d7:e2:8b:cf:f2:
a8:ce:c8:76:4c:54:1f:e7:7e:a3:d1:eb:43:cc:38:
11:8d:e7:f8:ce:33:86:b9:94:0f:09:ed:e8:09:59:
0a:97:ab:f2:59:96:ee:87:3e:e4:9f:99:da:c1:d3:
58:9c:d3:09:b5:bb:8a:d2:85:84:36:50:6d:dc:59:
09:aa:de:60:6e:84:87:d4:45:41:0b:b2:6a:48:2a:
11:f0:37:1f:83:ef:b5:c3:b6:a7:b7:51:ac:0c:74:
db:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:1B:B0:0C:1C:B5:6A:98:7A:E5:18:97:04:74:00:F8:94:C3:9B:F4
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS211826.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.4.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:57:ee:08:61:2b:94:c0:38:cf:a1:4c:4e:22:af:e5:3b:77:
f0:58:bd:78:8e:d4:ee:85:aa:cb:ce:5f:cb:77:10:15:70:31:
a9:7a:94:67:ad:e5:cb:af:44:29:00:2f:68:97:cf:ff:13:34:
04:b6:c0:f4:31:91:a0:af:e1:f6:85:e7:fe:92:a2:71:a7:50:
3a:0b:61:f4:72:5d:b7:48:69:74:30:d2:1e:ad:ad:2a:fd:f5:
1a:3f:0e:bd:5a:cd:a7:50:78:08:cc:a1:68:74:c0:e8:90:7f:
94:fa:bb:5c:b5:f9:d6:6b:44:73:39:99:54:e8:08:43:22:f0:
10:ec:8b:d6:06:c0:6f:d7:9a:bd:85:67:da:ab:5a:27:70:a0:
9c:d0:a4:a6:f5:1e:42:75:43:aa:02:37:f5:fb:8d:40:9b:18:
93:38:b0:17:e0:09:82:6a:22:74:15:86:6c:30:57:93:43:7e:
e5:6b:ac:13:29:1b:ff:cd:93:78:e9:1a:e7:90:a2:6b:b1:88:
2d:52:dc:e7:e1:e8:0d:f8:32:43:56:48:87:1b:a1:3d:08:3b:
dc:b9:bb:68:ad:db:da:9b:6f:ed:aa:f0:ea:f1:36:29:b6:60:
74:8d:5b:a7:26:a9:2f:17:96:69:50:74:36:16:52:84:15:ec:
b3:51:8c:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:38 2025 by rpki-client