Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS16276.roa
File: AS16276.roa (raw, json)
Hash identifier: TKGoFF70dGfYsk//0Z8r06TyTvram6KGW67++Ak0SAI=
Subject key identifier: C6:01:19:0C:C8:14:C4:46:8E:33:F8:28:D2:78:A5:83:0E:2D:0A:27
Certificate issuer: /CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b
Certificate serial: 0984FAEE98257279064D9275E093E8BB58AB2799
Authority key identifier: 70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS16276.roa
Signing time: Mon 17 Feb 2025 13:11:08 +0000
ROA not before: Mon 17 Feb 2025 13:06:08 +0000
ROA not after: Mon 16 Feb 2026 13:11:08 +0000
asID: 16276
IP address blocks: 193.32.204.0/24 maxlen: 24
193.32.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:84:fa:ee:98:25:72:79:06:4d:92:75:e0:93:e8:bb:58:ab:27:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b
Validity
Not Before: Feb 17 13:06:08 2025 GMT
Not After : Feb 16 13:11:08 2026 GMT
Subject: CN=C601190CC814C4468E33F828D278A5830E2D0A27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:11:3b:a8:8b:27:a2:e9:41:1c:c8:8b:0a:af:
36:a5:53:ee:a5:cd:34:bf:d0:6f:e9:a3:96:75:6c:
6e:7b:cb:72:7f:4d:e8:85:cf:71:37:a8:2c:ac:32:
05:e4:66:e9:d6:02:f6:ea:f3:68:92:73:92:45:e6:
80:cc:d1:c2:94:70:69:33:32:fb:b6:84:1a:f6:92:
0b:33:8b:fa:6c:2b:b2:e7:49:58:39:2c:70:22:6e:
20:10:57:25:fd:c4:99:b6:ef:51:52:f8:2f:6a:69:
16:fd:b5:4d:d3:c8:9f:e9:cb:da:ae:31:e4:d0:fb:
58:9e:1b:ca:2c:35:03:e7:c7:3b:79:9b:a1:58:81:
16:66:87:b9:1b:68:a4:45:77:81:b2:1f:c0:e1:f7:
86:7c:38:4a:cc:16:ca:cb:96:90:3c:c5:f9:15:df:
4c:bc:ff:9b:bc:6d:0c:7d:51:67:15:a6:24:f7:f4:
be:4d:27:c7:f1:18:ec:11:4a:c3:01:8a:fd:49:91:
51:7e:97:e6:5e:c6:e9:2d:53:fe:39:0b:bf:00:50:
d7:d9:43:0b:bd:fd:08:1f:a6:3d:1b:d5:a7:c7:65:
ca:b5:75:7f:64:c4:1a:36:31:cd:9e:10:e2:74:32:
a4:27:1c:60:60:b8:5d:26:90:cb:e1:5f:af:97:b5:
72:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:01:19:0C:C8:14:C4:46:8E:33:F8:28:D2:78:A5:83:0E:2D:0A:27
X509v3 Authority Key Identifier:
keyid:70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS16276.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.204.0/24
193.32.207.0/24
Signature Algorithm: sha256WithRSAEncryption
83:84:51:1a:fb:46:ce:88:b9:d7:5b:76:88:61:a6:42:4a:86:
d0:83:d6:aa:b7:aa:34:28:8f:8d:dd:91:51:81:04:0f:2b:e0:
dd:da:99:09:de:fb:59:fb:c7:1d:f1:44:e7:67:ec:45:eb:7a:
83:31:04:7e:c8:89:28:9b:90:4c:06:b0:fb:18:88:a3:07:6a:
19:48:67:56:dc:f7:60:03:fb:4a:e1:9d:9c:14:86:63:0f:53:
ba:54:93:7b:10:ba:8c:b0:e6:8f:b2:2f:2e:f9:b0:1b:c1:ae:
3b:03:ab:b6:78:2b:c1:9f:3f:18:54:6e:5c:f6:15:e7:5c:aa:
f6:04:cd:c1:91:17:30:95:3b:5a:a6:36:98:e5:24:fa:9c:f3:
02:a5:5c:1d:06:66:72:b0:33:52:9d:55:93:79:df:80:8f:6c:
ea:86:17:68:9e:b9:eb:cb:9c:bd:c7:17:0f:ea:cd:fc:90:6c:
0d:df:f1:38:00:c7:5b:c2:4e:d3:6c:f5:cb:73:7d:24:d6:ee:
e6:5d:9a:74:5a:81:b8:6d:17:f0:6b:8d:84:63:01:e7:3b:9d:
d0:ad:11:29:eb:14:39:85:45:b4:4b:b4:25:35:fa:5f:33:c3:
cb:15:6e:0c:21:18:85:5a:bc:77:9f:92:e6:14:99:31:ef:ee:
bf:f9:14:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:30:17 2025 by rpki-client