Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138392e302f32342d3234203d3e20313335333931.roa
File: 3137382e3230382e3138392e302f32342d3234203d3e20313335333931.roa (raw, json)
Hash identifier: ZNOXJs0maa1IjonFjO+v5aKtDnAL+99TLcFlQTAPp5U=
Subject key identifier: E2:E0:7B:F0:7C:2A:68:E6:EB:ED:BA:34:DE:87:F4:A7:E8:ED:BB:24
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 297BA2056DB6871B9126A7C5C3A6F078EC1A2645
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138392e302f32342d3234203d3e20313335333931.roa
Signing time: Mon 03 Mar 2025 03:44:11 +0000
ROA not before: Mon 03 Mar 2025 03:39:11 +0000
ROA not after: Mon 02 Mar 2026 03:44:11 +0000
asID: 135391
IP address blocks: 178.208.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:7b:a2:05:6d:b6:87:1b:91:26:a7:c5:c3:a6:f0:78:ec:1a:26:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Mar 3 03:39:11 2025 GMT
Not After : Mar 2 03:44:11 2026 GMT
Subject: CN=E2E07BF07C2A68E6EBEDBA34DE87F4A7E8EDBB24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:52:1f:0f:73:fd:51:87:19:8b:44:c2:0d:88:
9a:02:01:f7:4e:26:de:91:10:cf:be:ba:b6:1a:6e:
ca:fe:77:a4:d3:c9:fd:ef:90:57:ea:09:23:0b:6c:
db:50:2e:fc:31:c9:ca:65:eb:b9:4d:30:0a:fa:c0:
63:b5:6a:3b:93:a5:0f:b6:a5:f3:f9:48:67:a4:f4:
8a:9b:45:df:1e:2c:01:31:f3:f4:be:ca:ec:18:1d:
10:9c:f9:b1:cf:9d:af:ff:63:22:1e:83:9c:d5:4b:
c4:70:39:65:ff:09:ae:88:be:c4:1d:db:95:83:e3:
80:79:ae:13:22:9c:1e:2b:3d:3d:e3:1c:f6:40:9b:
e4:c1:82:db:f6:9e:2b:b3:69:3f:73:71:51:05:77:
23:a0:e7:ae:5a:04:21:91:33:ef:7f:dd:fb:f4:59:
73:5b:34:7f:1d:1b:19:59:10:a0:55:65:0d:f6:28:
d7:08:92:e9:64:aa:46:d1:00:ad:fa:e0:5a:10:4c:
81:ab:1e:4f:92:b3:30:d1:ad:50:4b:39:c2:bf:d9:
68:e0:e2:c7:d0:b2:e9:ed:aa:b4:31:57:9c:06:1a:
dc:4b:ab:7f:f9:ee:01:a6:85:5b:92:bd:75:cc:98:
1b:34:98:02:de:2d:47:63:48:17:6d:24:ff:52:50:
76:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:E0:7B:F0:7C:2A:68:E6:EB:ED:BA:34:DE:87:F4:A7:E8:ED:BB:24
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138392e302f32342d3234203d3e20313335333931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.208.189.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:07:ea:f2:1c:2b:8e:91:a5:ee:9b:14:8a:63:e3:40:93:24:
4d:4c:ba:07:9c:81:18:a3:82:ee:9a:65:31:db:8f:d0:cb:a5:
2c:9b:f7:6b:e7:38:69:8a:db:5c:ae:7b:d1:0c:a2:32:9d:3f:
dc:d9:0b:b0:a5:8a:aa:ec:0f:92:4b:8d:c9:f1:02:01:93:be:
b0:49:53:b9:82:e4:f0:ee:07:4e:9a:ae:77:fb:0c:15:db:55:
1d:c7:96:04:70:63:79:8d:e2:20:52:4c:f9:f3:3b:8b:1b:e1:
0a:f3:1f:c1:07:ea:fd:2b:d1:50:5e:55:d4:2d:7c:b4:fe:2f:
26:cd:05:75:a4:3b:d4:51:0c:6c:ad:c6:48:35:c7:19:54:1e:
33:c4:77:20:fd:f0:f4:b7:34:16:5d:53:14:db:c6:cf:a1:c1:
43:02:ce:d1:11:f6:28:bd:ea:af:a4:e4:d7:86:c3:88:dd:7b:
7d:f6:fb:0d:b6:2e:06:fa:52:04:c0:d3:c1:69:fa:c4:2f:f8:
e5:21:64:75:47:57:2e:09:ca:c6:b5:61:69:31:e3:9e:e5:bc:
f1:33:62:5a:5a:f4:e5:0c:d3:5e:d0:f7:fb:4f:65:ec:95:55:
b7:64:e9:be:34:1a:82:69:93:dc:41:19:5e:69:2c:c2:00:e7:
ea:91:ef:3f
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgIUKXuiBW22hxuRJqfFw6bweOwaJkUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDQ4YWY2NjViZjhiMTg2YjcwMjIwNzU5ZDI2YzU3OGY0
MGI1ZjNlMzAeFw0yNTAzMDMwMzM5MTFaFw0yNjAzMDIwMzQ0MTFaMDMxMTAvBgNV
BAMTKEUyRTA3QkYwN0MyQTY4RTZFQkVEQkEzNERFODdGNEE3RThFREJCMjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6Uh8Pc/1RhxmLRMINiJoCAfdO
Jt6REM++urYabsr+d6TTyf3vkFfqCSMLbNtQLvwxycpl67lNMAr6wGO1ajuTpQ+2
pfP5SGek9IqbRd8eLAEx8/S+yuwYHRCc+bHPna//YyIeg5zVS8RwOWX/Ca6IvsQd
25WD44B5rhMinB4rPT3jHPZAm+TBgtv2niuzaT9zcVEFdyOg565aBCGRM+9/3fv0
WXNbNH8dGxlZEKBVZQ32KNcIkulkqkbRAK364FoQTIGrHk+SszDRrVBLOcK/2Wjg
4sfQsuntqrQxV5wGGtxLq3/57gGmhVuSvXXMmBs0mALeLUdjSBdtJP9SUHZnAgMB
AAGjggJBMIICPTAdBgNVHQ4EFgQU4uB78HwqaObr7bo03of0p+jtuyQwHwYDVR0j
BBgwFoAUBIr2Zb+LGGtwIgdZ0mxXj0C18+MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODJhOWJmNWItMzljMS00MDUwLWIwNzMtNDgwNzViODYx
ZDg3LzAvMDQ4QUY2NjVCRjhCMTg2QjcwMjIwNzU5RDI2QzU3OEY0MEI1RjNFMy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0JJcjJaYi1MR0d0d0lnZFowbXhYajBD
MTgtTS5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODJhOWJmNWIt
MzljMS00MDUwLWIwNzMtNDgwNzViODYxZDg3LzAvMzEzNzM4MmUzMjMwMzgyZTMx
MzgzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNTMzMzkzMS5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEALLQvTANBgkqhkiG9w0BAQsFAAOCAQEAPgfq8hwrjpGl7psUimPjQJMkTUy6
B5yBGKOC7pplMduP0MulLJv3a+c4aYrbXK570QyiMp0/3NkLsKWKquwPkkuNyfEC
AZO+sElTuYLk8O4HTpqud/sMFdtVHceWBHBjeY3iIFJM+fM7ixvhCvMfwQfq/SvR
UF5V1C18tP4vJs0FdaQ71FEMbK3GSDXHGVQeM8R3IP3w9Lc0Fl1TFNvGz6HBQwLO
0RH2KL3qr6Tk14bDiN17ffb7DbYuBvpSBMDTwWn6xC/45SFkdUdXLgnKxrVhaTHj
nuW88TNiWlr05QzTXtD3+09l7JVVt2TpvjQagmmT3EEZXmkswgDn6pHvPw==
-----END CERTIFICATE-----
Generated at Sat Apr 5 08:16:32 2025 by rpki-client