Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS54252.roa
File: AS54252.roa (raw, json)
Hash identifier: QxP5UREymGPSfJ74Lfo8CXUYkyVLyD/DXtaMCccSHZ0=
Subject key identifier: F4:94:6F:6C:37:7F:96:12:F4:98:5D:18:60:E3:82:C5:15:0E:06:D5
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 7EFFAB9D29F9683A0FF31C445B366D281FB80339
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS54252.roa
Signing time: Mon 23 Dec 2024 07:53:48 +0000
ROA not before: Mon 23 Dec 2024 07:48:48 +0000
ROA not after: Mon 22 Dec 2025 07:53:48 +0000
asID: 54252
IP address blocks: 147.78.122.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:ff:ab:9d:29:f9:68:3a:0f:f3:1c:44:5b:36:6d:28:1f:b8:03:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Dec 23 07:48:48 2024 GMT
Not After : Dec 22 07:53:48 2025 GMT
Subject: CN=F4946F6C377F9612F4985D1860E382C5150E06D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:0d:35:0c:42:80:ea:90:8e:8e:26:31:27:c5:
41:eb:64:89:ca:74:2b:23:09:1f:a4:14:37:da:c9:
5e:a8:11:5e:09:0f:ff:c1:f8:66:46:25:9f:16:d1:
55:a7:c6:3f:5d:7e:ce:46:a7:a5:40:a6:22:47:fe:
03:e5:41:d0:e7:34:e5:93:0e:15:e1:0a:39:f8:52:
df:c5:b9:2f:70:78:aa:9d:f1:52:27:5d:47:fc:dd:
db:ec:93:f5:79:1c:4e:c8:c6:8b:d4:da:ba:ab:2d:
87:68:57:55:28:9b:73:45:96:c1:2e:d4:8b:41:dd:
cd:f3:94:1c:4d:c1:9f:2a:bf:a2:c2:1e:44:5f:b5:
52:b1:18:28:dc:9b:25:6b:63:9d:d0:7c:87:c2:bf:
a9:88:31:e5:21:4b:22:d4:1b:14:a7:79:36:3e:ac:
0b:3c:f6:de:93:80:8c:1f:3f:66:49:04:27:51:99:
8a:58:6a:44:6e:07:b3:16:a7:cb:11:5a:8d:f6:95:
5e:a5:77:e9:10:83:29:b7:50:c2:73:52:6c:9f:d5:
83:7e:30:bd:c0:6d:f7:4e:b8:50:13:99:a3:01:62:
be:05:70:00:f9:95:ea:55:38:cb:c7:a1:9f:cb:36:
f2:69:32:1c:44:09:0a:f0:89:c0:4b:37:cc:cb:c1:
2d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:94:6F:6C:37:7F:96:12:F4:98:5D:18:60:E3:82:C5:15:0E:06:D5
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS54252.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.122.0/24
Signature Algorithm: sha256WithRSAEncryption
47:67:9f:a8:c5:52:6c:de:f9:40:8e:a1:26:b4:79:36:76:e8:
9b:54:3f:32:6e:8c:19:de:d7:b3:bc:a8:12:2c:de:bd:5c:fa:
00:08:0b:f4:9a:04:da:d7:ff:83:ac:4a:8b:0e:04:59:87:bd:
45:b6:c5:ce:cf:45:df:e8:43:9f:2f:43:82:3a:6e:19:a4:ec:
3b:78:9a:cd:a8:12:b1:8e:fb:e6:f9:7e:10:60:e3:b1:bb:e7:
fe:c9:c5:43:6c:e2:8d:98:20:f8:73:92:bf:a5:df:fb:d3:79:
84:c0:21:bb:b8:56:01:15:9e:93:11:33:9a:3b:af:78:74:ab:
7f:a7:e0:4a:79:89:d6:88:41:38:37:58:df:19:d6:b4:84:5e:
44:74:21:22:2c:6e:7e:07:98:b6:b8:e3:20:9b:55:db:37:1c:
5d:a1:f1:02:4f:76:d3:e6:a1:e5:8e:4c:86:3a:ba:52:25:f4:
2a:a5:b0:89:b2:ff:13:12:80:6f:a4:f5:90:0e:f5:2e:8d:4a:
46:a8:f8:4e:aa:c3:dc:a4:c8:8f:57:58:2d:ad:60:b5:4d:5c:
9a:1d:a6:e9:5a:8d:4d:96:16:9f:13:6e:49:08:7a:3a:9b:36:
cb:86:51:05:b7:4b:1c:91:9e:ac:5a:2f:e8:59:21:ef:b7:95:
26:1e:f7:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:18:25 2025 by rpki-client