Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS393942.roa
File: AS393942.roa (raw, json)
Hash identifier: Ca/Cb1+EKVihxGtLLAHlg9S3G8+1Ay1iHsNL52haeDE=
Subject key identifier: EE:E2:71:C8:60:77:93:FE:03:89:2C:65:40:D2:32:68:70:05:DD:3F
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 1150E29D1056D3CA03E4064E47AE5A348BF4C59A
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS393942.roa
Signing time: Mon 30 Dec 2024 02:55:55 +0000
ROA not before: Mon 30 Dec 2024 02:50:55 +0000
ROA not after: Mon 29 Dec 2025 02:55:55 +0000
asID: 393942
IP address blocks: 45.135.250.0/24 maxlen: 24
192.166.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:50:e2:9d:10:56:d3:ca:03:e4:06:4e:47:ae:5a:34:8b:f4:c5:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Dec 30 02:50:55 2024 GMT
Not After : Dec 29 02:55:55 2025 GMT
Subject: CN=EEE271C8607793FE03892C6540D232687005DD3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:76:b2:fe:64:46:ba:8b:23:6a:44:fb:01:65:
ca:a4:89:99:82:ca:ce:cd:85:a1:16:15:81:0d:98:
67:08:c5:48:4d:35:8d:59:fc:04:44:7d:b7:ac:81:
3b:94:01:1f:1b:fe:bf:19:7e:a1:ea:12:65:e9:5b:
b1:ba:94:ba:85:90:d3:2f:8c:a6:4d:f1:5d:82:10:
b2:38:f4:d5:de:4a:db:d8:31:cd:94:41:8a:c7:d4:
b1:34:49:eb:c1:a1:4e:6d:2c:e4:07:d8:e5:1b:ab:
5d:73:02:c1:a4:3f:05:b8:f7:3f:86:69:27:8e:f1:
9f:b4:9a:5c:83:fe:8c:8b:a3:3f:0f:1e:2f:28:1a:
d6:f8:f0:1a:5c:61:63:bc:c8:fd:d0:a3:cb:68:95:
a3:97:e1:65:9f:0d:49:b2:3d:67:c9:2c:72:f0:d5:
58:94:96:7f:46:7e:3d:2d:82:a2:5e:1f:d7:18:46:
39:ef:4a:26:d5:9d:d1:f8:50:fd:25:cb:91:a2:c0:
e0:35:6b:6c:c0:5d:75:44:fd:c0:ea:06:75:71:a9:
c1:e3:75:da:0e:b8:77:f5:31:3c:67:93:d5:9b:86:
75:94:d3:fa:4a:8d:7c:1a:97:6e:e9:f9:08:9a:db:
fb:d2:60:fc:eb:e1:8a:11:c8:e8:f2:cc:ca:bb:0a:
c5:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:E2:71:C8:60:77:93:FE:03:89:2C:65:40:D2:32:68:70:05:DD:3F
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS393942.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.250.0/24
192.166.82.0/24
Signature Algorithm: sha256WithRSAEncryption
50:4d:e7:80:a8:00:af:ca:37:26:37:19:22:4a:bb:9c:c6:d3:
de:0c:e8:26:7f:18:c3:b9:94:30:15:c5:8b:3f:ff:a9:ab:e9:
b6:32:ea:63:d1:c1:af:cc:2f:5b:c6:1a:28:e5:53:44:3c:ab:
2d:11:29:c6:cb:92:09:a8:2a:cf:d4:ef:17:d9:52:4e:65:36:
4c:a3:36:a9:1b:5b:8e:ea:35:b4:fb:9d:72:af:ca:b4:54:a7:
43:1c:f0:14:bf:56:a3:dd:4a:03:79:bb:22:44:fa:ee:57:52:
2a:ac:b5:dc:b4:8a:33:5a:42:9b:06:ee:97:2b:13:c2:74:4a:
63:af:0e:5a:0c:30:52:de:b3:f1:78:6d:f0:80:a8:3b:33:d1:
60:63:d4:85:0c:f9:eb:80:41:ed:d1:78:23:32:88:d4:3e:4f:
5b:73:09:1e:8c:13:cd:79:17:81:4e:f0:e0:c3:54:ab:f1:d0:
6a:35:33:df:fd:e8:98:20:f2:b1:62:d8:56:00:b1:b0:2a:15:
91:13:b1:8f:87:98:e7:16:14:65:e0:ff:07:05:81:d3:b2:8d:
69:a6:83:8e:bc:6f:aa:38:5d:5f:84:6b:9d:97:7a:a7:d5:4b:
9f:b5:fe:63:3d:ac:43:08:07:25:b7:98:ee:e5:3e:a0:8b:1d:
08:fb:af:9e
-----BEGIN CERTIFICATE-----
MIIFBjCCA+6gAwIBAgIUEVDinRBW08oD5AZOR65aNIv0xZowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDNiMWJhM2ZkYjkxZDhkOWVhNzZjNTc3NjMyMGViN2Vi
MmQ2ZWQ5ZDAeFw0yNDEyMzAwMjUwNTVaFw0yNTEyMjkwMjU1NTVaMDMxMTAvBgNV
BAMTKEVFRTI3MUM4NjA3NzkzRkUwMzg5MkM2NTQwRDIzMjY4NzAwNUREM0YwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmdrL+ZEa6iyNqRPsBZcqkiZmC
ys7NhaEWFYENmGcIxUhNNY1Z/AREfbesgTuUAR8b/r8ZfqHqEmXpW7G6lLqFkNMv
jKZN8V2CELI49NXeStvYMc2UQYrH1LE0SevBoU5tLOQH2OUbq11zAsGkPwW49z+G
aSeO8Z+0mlyD/oyLoz8PHi8oGtb48BpcYWO8yP3Qo8tolaOX4WWfDUmyPWfJLHLw
1ViUln9Gfj0tgqJeH9cYRjnvSibVndH4UP0ly5GiwOA1a2zAXXVE/cDqBnVxqcHj
ddoOuHf1MTxnk9WbhnWU0/pKjXwal27p+Qia2/vSYPzr4YoRyOjyzMq7CsVNAgMB
AAGjggIQMIICDDAdBgNVHQ4EFgQU7uJxyGB3k/4DiSxlQNIyaHAF3T8wHwYDVR0j
BBgwFoAUA7G6P9uR2NnqdsV3YyDrfrLW7Z0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2ZmMGY1NTUtZGJhNy00MTkyLWEwMWQtZjY5MTZkNWJi
ODRlLzAvMDNCMUJBM0ZEQjkxRDhEOUVBNzZDNTc3NjMyMEVCN0VCMkQ2RUQ5RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0E3RzZQOXVSMk5ucWRzVjNZeURyZnJM
VzdaMC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzdmZjBmNTU1LWRiYTct
NDE5Mi1hMDFkLWY2OTE2ZDViYjg0ZS8wL0FTMzkzOTQyLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALYf6
AwQAwKZSMA0GCSqGSIb3DQEBCwUAA4IBAQBQTeeAqACvyjcmNxkiSrucxtPeDOgm
fxjDuZQwFcWLP/+pq+m2Mupj0cGvzC9bxhoo5VNEPKstESnGy5IJqCrP1O8X2VJO
ZTZMozapG1uO6jW0+51yr8q0VKdDHPAUv1aj3UoDebsiRPruV1IqrLXctIozWkKb
Bu6XKxPCdEpjrw5aDDBS3rPxeG3wgKg7M9FgY9SFDPnrgEHt0XgjMojUPk9bcwke
jBPNeReBTvDgw1Sr8dBqNTPf/eiYIPKxYthWALGwKhWRE7GPh5jnFhRl4P8HBYHT
so1ppoOOvG+qOF1fhGudl3qn1Uuftf5jPaxDCAclt5ju5T6gix0I+6+e
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:18:17 2025 by rpki-client