Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS150289.roa
File: AS150289.roa (raw, json)
Hash identifier: URGx3VdK5RnICCy98RtAuY58k90qTJgSlkGpRIHZyjM=
Subject key identifier: C0:75:2C:B7:3D:70:D5:A7:CC:2B:06:CA:2D:00:4F:F3:CF:3B:E0:EF
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 4E5E0AA96767AA6DE665BB8D585CB4E79D693B15
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS150289.roa
Signing time: Tue 04 Feb 2025 00:17:08 +0000
ROA not before: Tue 04 Feb 2025 00:12:08 +0000
ROA not after: Tue 03 Feb 2026 00:17:08 +0000
asID: 150289
IP address blocks: 2a14:7580:e600::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:5e:0a:a9:67:67:aa:6d:e6:65:bb:8d:58:5c:b4:e7:9d:69:3b:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Feb 4 00:12:08 2025 GMT
Not After : Feb 3 00:17:08 2026 GMT
Subject: CN=C0752CB73D70D5A7CC2B06CA2D004FF3CF3BE0EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:13:f2:38:84:87:5a:7a:d7:8e:16:d1:06:54:
20:cd:a8:ac:9e:df:4f:45:79:33:95:b9:58:a8:75:
9a:51:09:90:7a:b7:94:2e:18:36:fc:0d:19:3a:74:
43:70:99:c2:a3:30:78:56:ac:d6:af:65:66:76:a0:
70:2c:04:5e:74:03:68:2d:a4:ca:52:6a:c9:77:e1:
8b:09:2f:28:b8:8c:f0:47:b1:b8:ac:73:1f:0b:67:
99:15:4d:c9:a1:77:ea:d9:a9:35:a9:5c:98:ce:ef:
94:57:c7:f5:b8:9c:3a:a6:e8:15:3e:92:7a:6b:c2:
0b:65:17:65:83:59:82:e1:58:df:2a:b6:fa:99:63:
51:52:fe:98:58:26:f3:22:bf:43:1f:de:81:11:6f:
87:0b:f3:4c:e4:19:a5:fd:25:9f:d9:ff:d3:34:ca:
88:5a:65:53:d5:f6:87:e3:39:bb:30:12:8d:d6:d7:
68:5f:ca:68:53:58:7c:30:ab:33:45:17:ab:cb:e8:
0e:b3:6e:38:46:56:94:1b:36:69:75:cb:7e:34:5f:
bc:ce:70:47:3e:f3:36:d8:5e:bd:f1:8a:92:5f:e6:
59:92:a4:e6:7b:ea:1c:6b:60:60:d3:8f:8c:1c:d1:
c4:27:13:ee:05:8b:d1:64:ba:97:79:5c:63:00:a3:
12:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:75:2C:B7:3D:70:D5:A7:CC:2B:06:CA:2D:00:4F:F3:CF:3B:E0:EF
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS150289.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:e600::/40
Signature Algorithm: sha256WithRSAEncryption
7e:08:0d:73:10:69:a9:a7:e4:f7:f1:49:8b:6d:6a:3a:7e:fc:
ca:77:a4:41:25:da:8a:6a:c1:a5:e8:53:d9:16:6d:1d:f3:8d:
67:a9:84:b1:0c:a7:98:61:b1:a3:26:e1:75:6c:9c:dc:5c:97:
dd:ef:2e:8b:9c:12:c2:c9:be:83:4e:8c:75:aa:12:76:b4:37:
6d:66:24:1c:32:0e:cc:1c:e7:c1:35:c8:b0:bc:be:43:37:1d:
40:43:02:d7:fe:d8:02:22:da:4b:8f:a0:10:20:aa:33:08:be:
71:87:c6:0f:8d:2a:44:39:95:2c:fc:43:e5:02:ac:6b:e9:00:
6e:c2:8e:c2:b6:59:da:f5:a5:79:1f:8a:50:a9:5b:ef:4d:2b:
c7:e6:07:db:b6:b1:66:a6:60:45:13:ad:1d:8e:1d:9c:de:9b:
15:f7:45:5a:a0:8e:a1:e0:49:14:7b:39:cc:5b:21:67:23:5b:
aa:e6:dc:8d:48:5e:ea:73:13:3b:a0:e2:6b:56:dc:98:fb:55:
90:02:09:4c:46:ab:fb:6b:80:5f:66:f6:db:26:7b:65:cb:76:
38:b0:e4:0e:3b:ac:a8:53:94:fc:03:8e:55:c8:b6:21:0b:cf:
25:62:2a:cd:83:ab:77:cd:bd:f3:d7:1b:96:0f:ee:86:c5:ce:
2b:5b:2e:1d
-----BEGIN CERTIFICATE-----
MIIFAjCCA+qgAwIBAgIUTl4KqWdnqm3mZbuNWFy0551pOxUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj
Y2ZkMzc3MjAeFw0yNTAyMDQwMDEyMDhaFw0yNjAyMDMwMDE3MDhaMDMxMTAvBgNV
BAMTKEMwNzUyQ0I3M0Q3MEQ1QTdDQzJCMDZDQTJEMDA0RkYzQ0YzQkUwRUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjE/I4hIdaeteOFtEGVCDNqKye
309FeTOVuViodZpRCZB6t5QuGDb8DRk6dENwmcKjMHhWrNavZWZ2oHAsBF50A2gt
pMpSasl34YsJLyi4jPBHsbiscx8LZ5kVTcmhd+rZqTWpXJjO75RXx/W4nDqm6BU+
knprwgtlF2WDWYLhWN8qtvqZY1FS/phYJvMiv0Mf3oERb4cL80zkGaX9JZ/Z/9M0
yohaZVPV9ofjObswEo3W12hfymhTWHwwqzNFF6vL6A6zbjhGVpQbNml1y340X7zO
cEc+8zbYXr3xipJf5lmSpOZ76hxrYGDTj4wc0cQnE+4Fi9Fkupd5XGMAoxIBAgMB
AAGjggIMMIICCDAdBgNVHQ4EFgQUwHUstz1w1afMKwbKLQBP88874O8wHwYDVR0j
BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz
ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16
OU4zSS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUt
NDI5OS1iMDc5LTMwOWVkOTdmMzgyNC8wL0FTMTUwMjg5LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1
gOYwDQYJKoZIhvcNAQELBQADggEBAH4IDXMQaamn5PfxSYttajp+/Mp3pEEl2opq
waXoU9kWbR3zjWephLEMp5hhsaMm4XVsnNxcl93vLoucEsLJvoNOjHWqEna0N21m
JBwyDswc58E1yLC8vkM3HUBDAtf+2AIi2kuPoBAgqjMIvnGHxg+NKkQ5lSz8Q+UC
rGvpAG7CjsK2Wdr1pXkfilCpW+9NK8fmB9u2sWamYEUTrR2OHZzemxX3RVqgjqHg
SRR7OcxbIWcjW6rm3I1IXupzEzug4mtW3Jj7VZACCUxGq/trgF9m9tsme2XLdjiw
5A47rKhTlPwDjlXItiELzyViKs2Dq3fNvfPXG5YP7obFzitbLh0=
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:41:56 2025 by rpki-client