Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37372e302f32342d3234203d3e20383334.roa
File: 3231332e3133392e37372e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: O5jVvFaTWVNtfUZ2xsHPpB6aWw/5pLDoGWzZv5bE6BQ=
Subject key identifier: D6:61:EF:BB:0C:FA:DF:11:EB:9A:F8:87:E9:B2:1A:35:EF:67:4C:B3
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 131C97B9D47A9F5CE426C61D770B4BFD806A89DC
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37372e302f32342d3234203d3e20383334.roa
Signing time: Sat 15 Mar 2025 00:04:55 +0000
ROA not before: Fri 14 Mar 2025 23:59:55 +0000
ROA not after: Sat 14 Mar 2026 00:04:55 +0000
asID: 834
IP address blocks: 213.139.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:1c:97:b9:d4:7a:9f:5c:e4:26:c6:1d:77:0b:4b:fd:80:6a:89:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Mar 14 23:59:55 2025 GMT
Not After : Mar 14 00:04:55 2026 GMT
Subject: CN=D661EFBB0CFADF11EB9AF887E9B21A35EF674CB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ac:98:90:5a:25:b1:09:3f:07:3e:f7:7e:e9:
74:0e:68:a0:a5:85:09:11:a7:96:52:a6:3e:5f:7d:
9e:0a:f4:50:9c:cf:1b:73:b7:64:9a:db:80:93:b0:
4f:75:61:7f:c8:54:9d:09:c9:43:a7:f3:c0:55:40:
b8:2e:2b:e7:a1:a5:8c:a0:13:5b:f4:b3:2c:81:ca:
2d:a7:c1:5f:49:ff:10:54:19:47:37:7c:5e:29:36:
bb:dc:93:6a:16:50:89:fe:7e:df:0f:91:3c:0c:1d:
8e:29:a5:e6:57:9b:75:ca:66:2d:4a:4e:22:df:6d:
d5:e8:70:46:6c:d2:91:94:23:ee:29:8a:df:1e:3c:
3f:ad:18:61:3c:2a:70:06:38:28:4c:3b:53:be:b1:
cd:33:7a:12:a5:4d:99:a1:95:e6:53:95:a3:da:2e:
ad:59:e6:57:a5:74:6f:3f:62:da:64:a7:b9:5a:01:
c8:d5:46:73:2b:f0:cd:db:6a:d1:56:54:33:7c:f9:
77:26:bb:01:4d:a9:0a:61:7e:7b:6b:ca:ee:cb:1a:
07:46:77:8d:30:49:e8:55:a9:0b:83:4a:bc:0c:7a:
e8:e1:36:59:6b:62:4e:3a:49:bb:0e:ea:a9:80:46:
3a:4d:8a:50:02:8d:f1:83:fc:da:24:26:d2:0c:7d:
b9:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:61:EF:BB:0C:FA:DF:11:EB:9A:F8:87:E9:B2:1A:35:EF:67:4C:B3
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37372e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.77.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:ea:75:4f:1d:b4:b1:99:ff:78:40:d8:7f:74:b9:d2:e1:59:
44:c1:df:17:2b:7a:e2:47:9e:e8:1d:29:fa:02:b9:75:da:d5:
8d:4f:a4:d7:ff:aa:d1:f4:2a:31:a1:6a:14:21:f3:8b:4d:2f:
a0:8c:a6:da:a1:19:ea:3e:89:23:7e:0c:45:dd:35:d6:8d:6e:
b8:1f:27:f8:3a:c4:f0:f8:19:76:37:c0:0e:98:79:9b:7b:9e:
e6:52:b7:c8:15:4e:88:4e:7e:8d:66:6f:26:c4:86:93:0a:87:
bc:57:c7:ec:6d:a5:5c:18:c1:a0:44:a9:27:c5:0d:ec:37:c5:
50:5e:70:72:e6:19:18:27:76:64:c7:5f:df:91:82:33:ff:a2:
87:00:af:cc:a1:8a:68:a6:00:db:b4:c7:81:95:82:71:98:56:
36:0a:fd:2b:20:37:8f:e9:79:e2:51:31:c2:63:5e:83:e2:10:
8f:ad:cc:8c:ae:1c:0d:9b:91:27:e3:1d:ad:69:50:69:e5:01:
70:e5:26:1b:ac:26:08:21:e0:9d:ee:49:c1:1c:59:02:f7:7a:
87:12:1a:93:19:c8:00:0a:84:e0:1a:67:c5:53:de:46:f7:3d:
f9:0f:99:5f:e5:46:0b:65:e7:50:9f:21:dd:a9:df:32:ca:37:
1a:6f:96:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 14:34:26 2025 by rpki-client