Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e31322e302f32342d3234203d3e20323132333335.roa
File: 33312e362e31322e302f32342d3234203d3e20323132333335.roa (raw, json)
Hash identifier: QzWT3/m/21TiMLeE2ES7XjWOMBoCMi0BOKWPly0vrUw=
Subject key identifier: 4F:AF:EE:A9:5A:2F:8F:72:70:A9:2B:E5:97:59:34:F1:15:B4:32:B8
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 052CE0B8C5DE5C4928C57751913184115102A297
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e31322e302f32342d3234203d3e20323132333335.roa
Signing time: Thu 20 Feb 2025 07:53:55 +0000
ROA not before: Thu 20 Feb 2025 07:48:55 +0000
ROA not after: Thu 19 Feb 2026 07:53:55 +0000
asID: 212335
IP address blocks: 31.6.12.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:2c:e0:b8:c5:de:5c:49:28:c5:77:51:91:31:84:11:51:02:a2:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Feb 20 07:48:55 2025 GMT
Not After : Feb 19 07:53:55 2026 GMT
Subject: CN=4FAFEEA95A2F8F7270A92BE5975934F115B432B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:6c:4b:ba:6e:e5:59:e0:ec:1a:d4:8b:12:59:
35:cb:ef:49:49:79:e9:a3:7f:b6:a8:fb:07:4e:88:
de:36:49:9a:f5:5d:67:e6:f1:6f:10:db:4c:6f:93:
da:8b:1a:64:0a:a1:4b:20:80:17:9e:59:b2:9c:5c:
3f:98:48:30:01:6e:b1:82:95:80:db:f9:7a:04:e7:
b7:bd:4e:88:dd:59:f5:b9:f1:92:86:29:86:ca:1c:
20:b9:41:2e:31:c3:7d:83:c4:6c:29:00:2e:53:1b:
42:e4:3b:44:2a:dd:48:b7:b5:c4:40:62:d6:ae:ce:
35:99:75:b3:d4:41:bf:bb:26:81:33:78:21:f6:67:
19:57:51:0e:89:70:9b:81:36:9d:ff:db:f7:d2:1f:
8a:8e:81:19:56:f5:a1:6a:d9:ba:82:c9:c7:3c:8f:
5d:e9:a8:bd:41:07:08:2f:11:4d:e6:83:1a:cb:83:
90:07:ec:11:1b:a0:62:c1:a5:ed:2d:f4:24:9d:c3:
98:1d:d9:bf:f6:b0:2c:b8:8f:71:4a:b3:19:e6:15:
5e:b6:6a:1f:74:20:db:82:8e:f7:0f:bf:f4:01:84:
6a:65:2b:19:19:e7:89:37:ee:ba:f0:1a:c7:e3:c6:
40:00:39:0f:b6:9b:e1:a5:44:e7:d7:a2:18:f2:21:
2b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:AF:EE:A9:5A:2F:8F:72:70:A9:2B:E5:97:59:34:F1:15:B4:32:B8
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e31322e302f32342d3234203d3e20323132333335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.12.0/24
Signature Algorithm: sha256WithRSAEncryption
09:ca:ca:98:80:f6:6a:60:e2:bc:21:25:b5:bf:ed:31:b0:4f:
27:be:04:2b:c5:37:0c:de:a5:23:9a:3e:88:d2:9f:7a:ab:3d:
bf:73:d9:6a:54:57:10:91:fe:74:72:d5:7d:cf:ba:56:2c:9a:
bb:d5:c3:dd:4d:f3:5e:d0:17:17:f9:95:3f:b9:ae:17:32:74:
a7:51:5c:75:a5:f3:26:76:b5:51:0d:ad:60:7f:72:a7:b7:66:
96:f2:a6:95:dc:04:d0:47:a0:e4:c4:c4:29:de:be:f2:04:71:
36:19:10:d1:d5:76:2e:ee:34:51:82:29:f5:e9:58:a8:80:f2:
09:d9:66:7e:82:5c:39:a5:e4:d2:bf:0e:41:13:2a:89:e6:0f:
65:c7:28:cb:ea:29:2b:e6:f6:10:37:7f:a5:19:72:86:97:59:
16:d8:ce:1e:48:10:c0:40:39:6e:a1:19:92:8e:45:32:ee:d1:
cb:16:1f:6e:e9:29:f6:4d:58:36:53:73:af:98:57:c3:db:97:
50:c7:2a:a8:91:32:5f:5b:0b:d8:79:58:4d:12:02:85:61:92:
85:2b:05:ba:e4:33:f4:50:9a:8e:94:da:a3:6a:04:7b:15:53:
ad:8b:4f:10:7b:c2:5a:b0:21:5b:9b:bc:6d:29:68:0d:8f:45:
9c:31:27:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:54:25 2025 by rpki-client