Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3136382e302f32342d3234203d3e203232333633.roa
File: 3137382e3230382e3136382e302f32342d3234203d3e203232333633.roa (raw, json)
Hash identifier: bc8U32eYUEs8YwY86bFeetjlhoPcWboOTfw2fugMnac=
Subject key identifier: DF:09:56:C2:6B:CE:84:58:2A:99:EB:4D:9E:D9:3C:95:52:D7:34:45
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 2C559C7DAFDA073270AC0B335EF4FA485A57D081
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3136382e302f32342d3234203d3e203232333633.roa
Signing time: Tue 31 Dec 2024 05:52:06 +0000
ROA not before: Tue 31 Dec 2024 05:47:06 +0000
ROA not after: Tue 30 Dec 2025 05:52:06 +0000
asID: 22363
IP address blocks: 178.208.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:55:9c:7d:af:da:07:32:70:ac:0b:33:5e:f4:fa:48:5a:57:d0:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Dec 31 05:47:06 2024 GMT
Not After : Dec 30 05:52:06 2025 GMT
Subject: CN=DF0956C26BCE84582A99EB4D9ED93C9552D73445
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0c:77:62:23:22:92:eb:c5:1f:2f:ab:4d:4a:
c0:f8:36:6d:60:51:8d:a5:da:18:23:52:b7:45:c4:
95:fa:5c:e4:cc:7b:e3:43:9f:fc:1a:15:53:cc:23:
5a:09:bd:74:98:ce:f3:15:9b:86:34:ac:bb:a2:17:
e8:ba:ab:f4:15:b2:3b:2d:19:dc:ba:23:00:8b:7b:
d1:77:fb:ab:6f:b8:c1:a0:64:61:81:cf:ef:76:6a:
8e:fd:d7:51:57:86:f7:67:e4:50:96:af:e5:cd:ab:
c5:d1:b8:01:1f:00:61:ef:78:70:71:20:d1:de:b8:
a0:3e:8d:04:44:b1:71:63:2d:33:53:bb:5e:4f:d1:
1d:b7:4c:f8:9b:6e:12:f7:5e:f2:19:a3:fc:bb:07:
74:e7:c8:f3:ce:26:d8:92:96:4b:2a:8c:87:ca:aa:
3a:50:b4:16:ff:de:b6:1b:91:94:98:b6:9b:e9:1e:
b5:f6:e4:e1:20:a7:4e:62:d4:82:3f:96:af:09:b5:
c7:b0:87:24:a5:26:8d:a0:69:84:3b:69:ff:2a:5f:
08:31:a6:5e:12:79:5d:db:dc:93:4c:4b:1a:c3:5e:
81:37:a9:50:f6:e5:e9:6f:ac:52:d2:ad:b2:20:e9:
f5:17:76:39:76:1d:03:91:4f:81:e0:c8:db:90:e1:
a5:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:09:56:C2:6B:CE:84:58:2A:99:EB:4D:9E:D9:3C:95:52:D7:34:45
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3136382e302f32342d3234203d3e203232333633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.208.168.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:4b:08:d4:f7:50:8f:15:df:97:68:b5:ed:a7:71:e4:12:86:
82:83:c9:71:5e:52:8f:7c:fc:bd:d2:87:6c:0b:c2:a9:ef:81:
3d:6a:bf:85:15:eb:6a:a3:25:e9:87:14:d5:09:81:25:9f:9d:
4d:e7:e8:38:1d:8c:fa:40:81:38:c8:3d:92:12:e9:64:4c:1f:
5a:81:47:9d:ec:5b:5c:57:00:db:31:bf:a7:c9:c4:eb:84:d9:
27:7f:df:3c:a6:6f:29:43:cc:d4:c0:52:53:81:0f:9f:fc:9d:
ad:fc:88:e3:32:d2:4b:fd:b1:fb:b1:b6:34:2d:c6:b7:cd:5b:
22:d3:c7:c3:29:fb:75:12:c3:2f:52:23:31:9f:2c:2b:23:bc:
24:23:f1:c1:f3:94:e8:7e:64:89:b0:1a:2a:df:4d:4e:68:7f:
45:b1:82:70:cf:2f:7b:f4:6d:54:f3:46:98:8d:e3:00:34:66:
83:f5:73:46:a2:19:3c:fd:0f:33:dc:e0:f8:ec:a5:fe:fb:f2:
ff:00:55:9f:54:99:e8:79:b9:94:6b:91:c0:74:d4:e4:b4:cd:
a7:a2:85:2f:8b:56:6a:5c:b5:00:3e:80:5e:bd:7f:4a:a6:46:
a3:db:f1:9f:da:67:e0:a6:f9:49:03:3b:e6:b1:6c:b8:cc:b6:
14:92:ee:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:11:46 2025 by rpki-client