Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/3138352e3235302e34312e302f32342d3234203d3e2037303138.roa
File: 3138352e3235302e34312e302f32342d3234203d3e2037303138.roa (raw, json)
Hash identifier: 472NYYGv0C/3B2qITHOxxHP7TJ1kODHDvPJfJ6twel8=
Subject key identifier: 5E:6D:60:95:D6:B4:5E:60:37:6E:41:7D:67:0B:6B:9F:30:C6:67:BA
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 541A0D70E189D45704415317246B7C0EBE31D2A3
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/3138352e3235302e34312e302f32342d3234203d3e2037303138.roa
Signing time: Sun 16 Feb 2025 15:53:55 +0000
ROA not before: Sun 16 Feb 2025 15:48:55 +0000
ROA not after: Sun 15 Feb 2026 15:53:55 +0000
asID: 7018
IP address blocks: 185.250.41.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:1a:0d:70:e1:89:d4:57:04:41:53:17:24:6b:7c:0e:be:31:d2:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Feb 16 15:48:55 2025 GMT
Not After : Feb 15 15:53:55 2026 GMT
Subject: CN=5E6D6095D6B45E60376E417D670B6B9F30C667BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a1:cd:be:46:51:f7:b9:bd:5b:1f:14:a0:c0:
6c:38:a3:2d:87:9b:be:a8:6b:a3:4e:66:3a:e5:54:
bc:63:6d:ec:aa:a7:95:b9:d5:98:74:25:8c:a5:35:
b5:5a:df:95:7e:b5:2e:70:f4:48:34:17:4a:10:23:
b6:83:82:40:2c:ef:b3:8a:dd:29:f6:1d:85:ca:3b:
4e:e2:69:d4:db:87:7f:fd:52:80:9a:f4:c9:08:e3:
2d:0b:b8:44:8c:6b:b3:68:e5:79:1c:80:1d:30:1d:
ff:9f:25:14:72:40:f3:03:58:8a:8a:ee:e0:ba:ab:
bc:ae:6d:85:bf:d8:d0:e6:93:2b:8f:1c:3d:69:57:
4c:88:96:07:60:32:9d:59:c3:9d:a7:6f:12:02:c5:
51:6c:2e:1a:88:ce:ca:9d:5f:49:c2:40:c7:c7:dd:
c5:39:5f:fc:5c:b9:eb:24:63:44:40:70:e1:a4:d3:
9f:07:c1:be:06:07:f8:0e:bd:81:4b:0d:9d:9b:a2:
35:1b:11:65:94:93:78:2d:46:cc:6d:c2:47:b2:04:
76:48:d5:20:94:b0:b2:52:a0:b5:1f:0a:a4:bf:53:
40:a3:a6:0f:48:b6:da:e1:87:82:2c:fc:26:84:8d:
42:75:62:10:13:73:d3:60:58:4a:12:81:a7:7c:dd:
8d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:6D:60:95:D6:B4:5E:60:37:6E:41:7D:67:0B:6B:9F:30:C6:67:BA
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/3138352e3235302e34312e302f32342d3234203d3e2037303138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.41.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:ff:52:11:fa:2d:bd:36:b3:40:91:fc:9f:e3:49:a9:3c:c6:
68:d3:9a:e5:c6:11:7b:04:f4:1f:a6:51:9d:46:6b:73:42:59:
84:3e:9e:59:f6:37:f6:93:e6:2d:7d:6c:1c:51:47:f0:ac:c7:
88:64:37:e8:f0:3d:17:4f:8c:13:d5:c2:7a:f0:05:20:32:2f:
f1:5e:7b:0e:9a:6c:e9:92:5d:bb:6c:8e:8e:d0:04:2b:5c:f2:
74:86:76:21:e3:fc:0e:cb:63:a8:26:7b:be:12:d7:60:f2:6c:
5d:06:62:20:d7:4f:46:5c:75:8f:f6:7d:bd:11:5e:18:6c:2e:
e5:02:98:c6:45:e3:be:c2:09:8a:1f:aa:dd:ba:36:64:06:fd:
87:b6:a9:17:a3:19:91:d4:84:f9:4a:6c:bc:19:43:13:ae:f9:
cb:e9:d5:1e:3f:05:9b:3a:73:c8:82:c0:72:e1:f4:46:52:f9:
2d:c3:59:8e:86:25:ce:5a:c4:22:81:bd:7a:ca:1a:41:d1:36:
a8:de:1f:17:9c:1a:df:e6:f9:50:05:ce:08:a4:65:9f:42:93:
b5:32:4a:b7:64:9d:c0:60:0f:3a:cb:2b:0a:77:fe:ec:70:ab:
74:1c:eb:d3:e3:1b:d3:74:80:d9:57:28:1b:9d:9c:e4:07:1e:
88:7a:6c:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 14:21:45 2025 by rpki-client