Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231362e302f32342d3234203d3e203630353538.roa
File: 38332e3135302e3231362e302f32342d3234203d3e203630353538.roa (raw, json)
Hash identifier: JKcEyzkTVqyttDFURXSxmaVQ+BAZuAcc4gW4DE+3N8E=
Subject key identifier: CA:E5:C1:5E:7D:F8:18:FC:0D:63:9C:55:A4:8A:CE:63:78:07:FA:71
Certificate issuer: /CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Certificate serial: 7E0F0F75A4E6B84FF71C1B63D34F258DDFED71A4
Authority key identifier: 5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231362e302f32342d3234203d3e203630353538.roa
Signing time: Fri 29 Nov 2024 15:43:28 +0000
ROA not before: Fri 29 Nov 2024 15:38:28 +0000
ROA not after: Fri 28 Nov 2025 15:43:28 +0000
asID: 60558
IP address blocks: 83.150.216.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:0f:0f:75:a4:e6:b8:4f:f7:1c:1b:63:d3:4f:25:8d:df:ed:71:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Validity
Not Before: Nov 29 15:38:28 2024 GMT
Not After : Nov 28 15:43:28 2025 GMT
Subject: CN=CAE5C15E7DF818FC0D639C55A48ACE637807FA71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:22:05:82:e2:00:a2:65:82:07:fb:c2:52:1f:
84:88:df:85:1b:1c:b3:7d:21:17:77:83:97:f9:e3:
b5:38:d5:c8:0a:fe:eb:e7:b9:38:6c:b0:a8:5c:0f:
60:00:56:ed:d2:16:08:1a:0a:d1:e7:eb:6d:13:c7:
52:d3:d2:17:0d:42:b5:0b:11:66:58:14:38:a9:85:
55:cf:fe:b9:7f:02:6d:12:7c:f3:39:4d:78:97:18:
fe:64:81:14:75:0e:61:99:8d:13:08:89:9a:1d:29:
db:57:31:ca:87:01:ba:e7:49:8a:fc:14:4e:20:7a:
6d:89:b2:42:f1:fa:e3:99:c4:a6:77:7c:ff:59:76:
ef:09:61:4a:31:f9:67:85:79:48:b9:b6:2e:bb:a1:
64:03:dc:73:8a:15:79:d8:bb:30:8f:fb:a6:61:ae:
31:a3:78:9f:43:06:5c:4d:af:99:66:8c:24:75:98:
8e:bf:bb:88:d8:23:f7:50:f4:b0:03:35:24:07:dd:
b8:f8:18:ab:c9:53:9d:2f:fc:df:62:5c:ab:ca:17:
f0:cf:c9:2c:d2:68:2c:3c:73:e8:24:18:33:7b:cd:
13:c4:9a:99:f6:42:cb:f6:b6:bf:48:6e:4f:82:b0:
41:49:c7:46:d2:20:d9:23:55:a4:1c:86:17:3b:35:
b5:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:E5:C1:5E:7D:F8:18:FC:0D:63:9C:55:A4:8A:CE:63:78:07:FA:71
X509v3 Authority Key Identifier:
keyid:5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231362e302f32342d3234203d3e203630353538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.150.216.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:2a:54:ce:51:2e:34:e9:d8:b2:f0:14:3d:42:41:c7:65:e0:
d6:25:ee:26:1a:98:94:1b:cb:22:0c:21:63:87:b9:59:93:23:
da:5e:52:22:15:c1:15:29:95:95:f9:68:76:ce:3a:1a:8b:be:
fc:de:53:01:03:7b:e4:38:d0:15:6a:ae:3a:d6:55:d4:b2:4e:
e9:14:1f:2d:f1:75:88:1c:b6:86:25:f5:e4:0d:19:d2:86:d4:
0c:91:c2:4a:a5:d1:12:b8:b9:2e:8f:17:45:96:1d:0e:7f:9b:
35:64:de:34:1a:97:0d:77:85:a1:53:3d:d3:7d:65:46:40:ba:
b7:55:22:11:9e:f3:35:76:11:66:81:6f:74:ad:de:20:00:b4:
30:23:fa:89:ea:8a:80:a3:54:f6:8d:77:e4:a8:97:7e:4f:17:
d0:e6:6b:dd:63:7d:0a:94:62:69:ff:aa:59:43:55:d2:e1:d9:
93:18:14:f2:da:04:71:42:b9:7c:1c:3e:e2:47:7d:45:59:b5:
68:82:df:5f:aa:7c:cc:bd:37:1d:47:bc:9e:84:bd:38:9d:e8:
46:ba:8a:de:90:a1:87:92:38:88:6c:ed:66:5a:2a:65:af:d1:
62:ed:ea:53:bd:52:ab:a6:3e:27:29:1c:20:1e:5e:a9:5e:dd:
8f:83:71:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 13:04:12 2025 by rpki-client