Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37312e302f32342d3234203d3e203631333137.roa
File: 3231332e3133392e37312e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: +A7YZkvAN81rPDpTJkId3sZMflwrFWtwJvc3yTwbIVs=
Subject key identifier: 81:59:58:06:65:92:CD:51:44:59:5B:A0:06:3E:8E:12:E4:50:FF:92
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 309749A8FB360EBD751E9C9FC8D09899609EF66B
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37312e302f32342d3234203d3e203631333137.roa
Signing time: Wed 27 Nov 2024 13:43:28 +0000
ROA not before: Wed 27 Nov 2024 13:38:28 +0000
ROA not after: Wed 26 Nov 2025 13:43:28 +0000
asID: 61317
IP address blocks: 213.139.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:97:49:a8:fb:36:0e:bd:75:1e:9c:9f:c8:d0:98:99:60:9e:f6:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Nov 27 13:38:28 2024 GMT
Not After : Nov 26 13:43:28 2025 GMT
Subject: CN=815958066592CD5144595BA0063E8E12E450FF92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f7:ac:c0:b9:77:bc:7c:c0:c1:e3:84:33:59:
b8:51:51:f3:82:2f:56:5c:aa:3b:d7:7b:9f:7e:43:
cd:3d:42:b2:e3:2a:8c:f6:98:80:9d:4c:71:9b:2e:
51:4b:39:1e:8a:4d:8e:da:eb:9b:1f:25:32:c9:9a:
6b:9e:d2:85:0d:b8:69:af:7b:7b:bd:90:80:8b:2b:
7a:93:bd:b1:0c:a8:c6:50:12:78:25:46:8a:2b:d9:
01:a1:94:07:ff:be:01:d2:68:28:76:43:fc:c5:15:
09:be:de:e4:72:79:ca:c4:92:4d:b2:43:5e:87:f8:
02:13:26:0f:67:ac:c1:19:2b:ef:f8:b0:f1:3e:0f:
da:99:30:fc:89:39:85:ce:d8:b5:af:20:d2:4a:cf:
92:07:07:0b:f6:0c:8f:bb:8d:68:e9:7c:f6:e1:e4:
77:78:ad:9f:ad:a5:e2:03:95:54:28:ae:09:62:2c:
e9:09:a8:22:58:5b:d4:d3:ce:8e:dd:63:b9:46:03:
fe:b4:9b:d6:65:a5:2b:08:c8:b7:11:7f:b9:bd:fc:
71:8f:7d:b9:18:97:9a:98:af:70:3f:2b:7d:e2:11:
b8:3c:28:2e:cc:68:6e:2a:75:58:25:71:39:79:c0:
bc:df:c1:79:da:0d:e2:36:3f:d8:c9:ee:80:78:e1:
d6:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:59:58:06:65:92:CD:51:44:59:5B:A0:06:3E:8E:12:E4:50:FF:92
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37312e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.71.0/24
Signature Algorithm: sha256WithRSAEncryption
47:8f:a9:1d:8d:9f:40:72:8f:87:75:fe:e9:7b:e6:b5:67:85:
6b:96:b0:8a:62:07:58:a0:24:0a:a9:55:ed:11:10:6e:d5:a5:
d2:d8:62:28:07:77:d5:e3:ca:4c:1c:9f:39:6c:03:84:0b:2f:
5a:c5:2f:51:f4:69:f9:e1:ce:42:f8:25:ae:94:6a:55:47:0a:
3a:7c:e7:1b:d9:73:df:84:b5:ee:ae:7b:60:ef:c7:ee:b3:30:
f6:30:7f:e7:bc:8b:09:b1:55:01:fd:90:99:f2:4d:8d:7a:f4:
0d:64:29:65:49:eb:32:3a:a5:aa:95:eb:0b:77:17:38:55:cf:
ce:1c:aa:b8:56:9f:70:9e:1b:b6:a8:21:c7:84:65:57:1e:65:
6a:ad:36:fa:be:97:46:de:d3:81:dc:84:3d:75:5e:80:41:cc:
35:21:b8:25:28:0b:85:5c:f1:99:8d:55:cd:10:1c:82:94:d3:
8b:7a:c1:08:4e:fe:19:be:d1:7f:4b:2f:8b:79:c3:6a:21:b9:
44:e9:f0:06:37:00:9b:c9:1c:d4:7d:33:10:64:af:66:02:bf:
2e:56:68:31:47:41:aa:fc:87:65:31:78:ac:dd:ed:16:85:c8:
01:bd:4b:c1:b6:75:a7:9d:20:2f:9f:e1:26:5d:11:17:eb:0c:
ff:51:23:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:59:41 2025 by rpki-client