Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS214734.roa
File: AS214734.roa (raw, json)
Hash identifier: dZsW9ofBRWbvFeb3G5awE6Am4aL9Ax3g4b2JcdjElTo=
Subject key identifier: 7C:24:0C:54:2D:70:2B:11:20:6F:4C:D1:A4:24:5D:07:D5:33:EB:DE
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 7FE79FE055925065C1E1779DE211D9ADFCFE4A62
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS214734.roa
Signing time: Tue 04 Feb 2025 00:17:09 +0000
ROA not before: Tue 04 Feb 2025 00:12:09 +0000
ROA not after: Tue 03 Feb 2026 00:17:09 +0000
asID: 214734
IP address blocks: 2a14:7581:ffc::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:e7:9f:e0:55:92:50:65:c1:e1:77:9d:e2:11:d9:ad:fc:fe:4a:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Feb 4 00:12:09 2025 GMT
Not After : Feb 3 00:17:09 2026 GMT
Subject: CN=7C240C542D702B11206F4CD1A4245D07D533EBDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:99:dc:2d:cb:f9:09:7b:33:19:78:4e:eb:c9:
97:bf:b7:40:20:a6:07:c8:b3:37:ea:fc:1d:3b:af:
44:7f:d2:1a:94:45:ca:9c:95:8f:cb:b1:02:dc:95:
17:1b:9e:0b:72:de:fa:79:60:f6:42:28:0d:3b:61:
14:5d:65:a0:37:98:6e:6e:e4:ce:97:36:30:b3:6b:
d9:e7:c9:66:fe:9d:f7:5d:21:af:15:b0:b4:5e:75:
ff:41:6e:7a:26:e9:81:f2:fc:4e:01:66:ce:8a:88:
c2:70:4d:a0:c4:0d:de:df:8c:68:6c:09:41:00:71:
40:f8:f3:aa:78:b9:36:2e:d6:13:91:8e:64:6f:81:
6a:c7:7f:96:f8:0f:0f:dc:6d:91:c2:fd:3a:1d:55:
b3:41:35:eb:6e:07:4c:2b:43:53:56:44:1b:4f:9c:
7c:cd:05:0b:30:38:ba:65:03:e3:36:cf:15:9a:54:
ac:82:c8:76:03:cd:7d:40:84:b9:47:57:bd:50:58:
04:f7:d8:84:eb:fe:04:18:40:ea:6f:63:32:d0:42:
e9:30:e1:cc:1d:e4:de:01:86:14:7b:69:5e:58:ad:
4c:22:ae:74:6e:49:8a:5f:d1:fb:9d:6e:cf:71:33:
21:ab:cb:41:b9:1d:bf:51:5b:96:be:2b:a1:d0:d5:
16:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:24:0C:54:2D:70:2B:11:20:6F:4C:D1:A4:24:5D:07:D5:33:EB:DE
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS214734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:ffc::/48
Signature Algorithm: sha256WithRSAEncryption
89:de:13:29:ac:67:6e:f7:0a:33:92:53:9b:85:0e:6a:db:37:
d9:4e:5a:98:aa:ea:78:64:fb:41:ff:b8:fb:97:b1:b6:d3:2b:
b4:e0:5d:b8:85:6c:35:14:18:63:0d:40:f0:34:22:21:da:1a:
2f:4d:8e:21:85:21:58:a1:0e:45:ee:99:f1:49:20:85:cf:39:
64:67:1a:71:26:73:52:8c:26:bb:c8:7f:64:e0:23:8a:8d:48:
8f:1b:c3:a8:b2:89:a6:45:11:12:70:e4:4a:51:b5:bb:3e:1b:
ca:a7:6a:d5:44:a1:28:0e:00:17:bd:d0:36:d6:73:55:4a:b7:
bc:62:92:1d:fa:2a:5b:1a:47:68:f6:d9:c4:78:38:05:79:75:
af:7c:60:f2:23:64:a1:e0:6e:f4:95:25:e6:74:4b:95:d4:b0:
d8:14:1c:9f:68:ea:ec:d5:92:9e:37:59:2d:92:e9:97:06:f7:
80:28:2a:6e:d6:9a:73:34:76:30:23:1f:71:bd:4e:5a:9a:62:
eb:08:49:a3:f1:f0:19:48:05:b5:ba:e0:fd:ab:4c:b4:e1:30:
43:d4:b4:26:6b:88:57:12:73:22:87:9b:50:e6:8b:14:b2:42:
7e:f5:a9:83:8d:9c:f4:7e:b2:56:78:6e:16:11:7c:74:8d:b7:
f0:4c:0f:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 05:13:54 2025 by rpki-client