Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS53667.roa
File: AS53667.roa (raw, json)
Hash identifier: xmxcY/P7XTCc7hKwMn4uvLCB37pHi0SCyU1EO14WAPw=
Subject key identifier: C2:F1:44:D4:95:12:71:D4:29:9F:7F:07:FE:89:24:50:70:31:7F:09
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 55E2B5581DC0DB82F4C30303CE37C8D3193E1C6A
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS53667.roa
Signing time: Tue 04 Feb 2025 00:17:08 +0000
ROA not before: Tue 04 Feb 2025 00:12:08 +0000
ROA not after: Tue 03 Feb 2026 00:17:08 +0000
asID: 53667
IP address blocks: 2a14:7581:f80::/44 maxlen: 48
2a14:7581:f90::/44 maxlen: 48
2a14:7581:fa0::/44 maxlen: 48
2a14:7581:fb0::/44 maxlen: 48
2a14:7581:fd0::/44 maxlen: 48
2a14:7581:9e00::/40 maxlen: 48
2a14:7581:9f10::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:e2:b5:58:1d:c0:db:82:f4:c3:03:03:ce:37:c8:d3:19:3e:1c:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Feb 4 00:12:08 2025 GMT
Not After : Feb 3 00:17:08 2026 GMT
Subject: CN=C2F144D4951271D4299F7F07FE89245070317F09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:78:3f:32:f3:aa:36:b7:ee:37:a8:28:5f:0e:
8d:1a:2f:06:bf:a4:a1:ed:e9:48:bd:97:56:59:64:
b5:76:51:21:be:7d:26:3c:21:94:1e:e8:58:c7:03:
3b:2c:62:e1:0e:0b:2d:37:c7:22:bf:08:31:51:9f:
7d:f4:d7:82:d3:95:63:69:8f:84:44:b2:f8:84:0e:
63:8f:38:56:2b:48:f6:f2:c9:6b:e6:a5:bc:08:cd:
4e:03:87:38:96:a6:0c:70:94:4d:4d:b4:54:b1:ee:
cb:ec:9f:7b:22:99:04:96:08:1b:de:ec:49:8d:e2:
f5:82:e2:68:c9:cc:bd:04:4a:e3:d3:64:ad:d8:fb:
cc:89:c0:f9:8f:09:71:1f:3b:75:c8:cf:b0:5d:c9:
3f:5d:42:cb:fb:30:ee:b1:0c:fb:5f:b4:8d:4d:d9:
e9:a9:6a:b1:10:cd:58:a7:80:9b:4b:dc:ac:93:bc:
e0:60:2e:4d:7b:eb:87:92:5a:de:7e:47:02:58:06:
f5:23:7c:bc:73:bd:28:f0:0d:cd:0e:6f:7e:fd:e2:
6b:19:fe:3c:9f:6c:1f:40:28:d9:90:45:67:e8:09:
8f:66:39:af:07:f0:5d:0a:b0:70:10:64:4f:e6:d7:
00:ee:9b:17:da:40:be:ad:67:7f:bd:22:0c:e4:0d:
3c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:F1:44:D4:95:12:71:D4:29:9F:7F:07:FE:89:24:50:70:31:7F:09
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS53667.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:f80::/42
2a14:7581:fd0::/44
2a14:7581:9e00::/40
2a14:7581:9f10::/44
Signature Algorithm: sha256WithRSAEncryption
14:2b:62:3e:ba:db:60:69:fc:dd:cc:0f:9a:c5:9d:08:43:76:
30:e1:39:95:5e:f3:76:e9:7f:a1:54:48:e1:20:3f:47:c7:77:
47:78:8a:17:4f:2f:f0:54:47:dd:53:75:6c:2d:b6:bb:1a:70:
28:fc:a6:0b:d9:2b:e6:f0:26:33:6d:f9:b6:a0:c3:dc:4d:48:
9c:2e:8e:a5:11:c2:89:9a:48:32:8e:0d:6d:5c:8f:8b:b9:25:
5f:8d:66:5f:56:b2:77:18:df:1d:d8:0b:1e:05:4d:c6:b8:2c:
60:6f:ad:49:59:01:2a:e4:8c:86:13:d8:4c:ef:dd:30:48:2b:
df:78:9e:6a:6f:1d:35:30:8e:89:15:2b:ac:9f:72:89:77:bc:
f4:c0:f0:b8:e8:ee:e5:e0:a9:fc:b5:27:a3:e0:f6:f3:59:6f:
4b:0d:76:92:dd:49:04:42:9a:f2:7d:d4:bf:f7:e2:05:6e:8e:
d0:cf:8f:fd:1e:d4:7d:39:03:ea:93:ea:07:af:f9:26:55:1c:
45:44:04:98:4f:91:5f:a2:52:57:8f:f0:67:72:8e:cb:e5:8e:
8b:f1:13:4c:7a:18:15:0d:07:60:c3:a9:06:08:7d:24:23:2b:
8f:0a:1f:57:99:1c:c2:4f:87:05:16:6d:ad:db:b2:1d:20:af:
e9:a8:82:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:41:54 2025 by rpki-client