Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e34382e302f32342d3234203d3e203630393439.roa
File: 33312e362e34382e302f32342d3234203d3e203630393439.roa (raw, json)
Hash identifier: FPMO+NrCqZ4qPcDk60BvGTSDOhXXYhX3oza9/1lkDCI=
Subject key identifier: 24:24:83:E7:FA:62:E2:31:DB:BF:95:1F:CD:56:13:52:14:B9:DB:FA
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 4F730EAA7C43704CC0573888D3ABA46DFAA27FD9
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e34382e302f32342d3234203d3e203630393439.roa
Signing time: Thu 02 Jan 2025 06:53:51 +0000
ROA not before: Thu 02 Jan 2025 06:48:51 +0000
ROA not after: Thu 01 Jan 2026 06:53:51 +0000
asID: 60949
IP address blocks: 31.6.48.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:73:0e:aa:7c:43:70:4c:c0:57:38:88:d3:ab:a4:6d:fa:a2:7f:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Jan 2 06:48:51 2025 GMT
Not After : Jan 1 06:53:51 2026 GMT
Subject: CN=242483E7FA62E231DBBF951FCD56135214B9DBFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:82:ee:f1:72:52:61:7b:fd:70:63:69:1a:f4:
5c:b7:db:c3:38:32:33:c2:15:a5:e1:f5:b3:12:e4:
27:1a:d3:c5:5b:06:f5:2a:cf:81:e8:4f:63:f9:8f:
9d:26:48:e6:98:46:d1:98:22:38:c9:9c:21:47:a8:
e1:77:79:3c:b2:64:d7:ec:76:1a:bc:aa:08:4e:27:
5d:9d:a0:4a:29:25:e1:c8:b5:7c:78:86:a6:ff:70:
f7:4a:11:ef:8e:5d:15:c5:f9:0f:95:39:cc:5f:9d:
90:13:3e:6d:8d:4c:b9:97:01:b7:27:14:37:03:7a:
77:e0:8c:e3:d0:df:ca:4d:87:79:5b:62:6d:7b:8e:
48:0e:2a:da:4a:57:87:02:40:5d:76:fb:2e:45:ef:
52:93:74:23:44:1b:48:15:cf:13:02:9c:f6:a0:f9:
04:96:db:17:ef:28:b2:25:6c:55:ad:a4:ad:6e:ee:
0b:43:9f:6e:b7:48:8b:2e:3c:43:7e:8c:f0:48:a2:
24:fc:c4:2b:9c:4b:17:e0:f0:5e:a4:b2:d6:5e:05:
56:48:d4:25:3b:17:33:48:94:ec:2a:9f:67:2a:d6:
c2:1f:6c:c8:fa:5c:1c:47:85:59:a6:b7:75:c6:1d:
9c:4d:c0:69:a1:35:6d:da:7a:9b:06:17:b6:ad:79:
bc:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:24:83:E7:FA:62:E2:31:DB:BF:95:1F:CD:56:13:52:14:B9:DB:FA
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e34382e302f32342d3234203d3e203630393439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.48.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:ad:95:15:1d:06:f5:dc:d8:30:88:ac:90:6b:c0:0f:88:14:
da:79:cf:bb:95:ed:a1:e3:92:3c:a0:d5:88:a2:c7:41:41:79:
35:df:13:ea:cc:2b:97:0d:bf:08:d1:3c:0f:13:c4:4e:0f:39:
50:35:bc:55:76:7c:44:15:b5:cf:96:a8:73:88:0f:7f:33:34:
13:54:7d:1b:f7:c8:67:4f:a8:2a:be:26:78:8a:cc:9b:7d:2e:
5b:02:bd:22:23:c3:8e:ed:74:c1:82:a3:6f:2f:e0:5b:06:18:
dc:d6:37:a6:9d:07:88:2c:0f:8d:1b:d9:77:5f:a9:86:2e:a2:
f0:8c:d5:7b:24:52:ee:f6:eb:89:bb:c2:36:44:d1:0a:84:84:
ab:77:37:5b:ba:5a:55:9c:c9:b0:e8:73:ce:c4:45:63:3b:38:
b0:52:cb:59:89:bc:be:e5:62:10:bc:89:58:da:cc:75:37:a1:
fa:85:63:ef:49:16:93:15:b7:bd:dc:da:8f:b5:07:57:c4:1f:
46:45:3c:cd:3a:7d:02:fa:dc:30:cf:22:e1:d5:2d:c7:e3:2b:
64:a7:8d:67:53:62:36:6b:59:d3:4d:5c:77:86:3b:3e:b5:09:
60:74:a7:d6:02:1a:f7:3e:bb:9b:ad:2e:e3:6a:7a:80:17:9c:
8a:8f:33:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:07:49 2025 by rpki-client