Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS199414.roa
File: AS199414.roa (raw, json)
Hash identifier: 7Xyr5oLpaZjlSh3j07m4DFIb7P8dKeyC2tG5dWpkezA=
Subject key identifier: 7D:DF:0B:ED:24:67:11:5A:30:66:50:52:02:95:8A:22:BD:FA:0B:1C
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 337552C17DFE236DBA772BBEFF675AFC34AC6F9C
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS199414.roa
Signing time: Mon 02 Dec 2024 18:43:28 +0000
ROA not before: Mon 02 Dec 2024 18:38:28 +0000
ROA not after: Mon 01 Dec 2025 18:43:28 +0000
asID: 199414
IP address blocks: 141.11.34.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:75:52:c1:7d:fe:23:6d:ba:77:2b:be:ff:67:5a:fc:34:ac:6f:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Dec 2 18:38:28 2024 GMT
Not After : Dec 1 18:43:28 2025 GMT
Subject: CN=7DDF0BED2467115A3066505202958A22BDFA0B1C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:a5:28:77:91:97:90:53:1b:6a:81:40:4e:58:
64:61:17:cb:7f:64:42:2a:3b:db:bb:d3:3d:ac:9f:
76:75:23:d0:ef:1b:e4:c1:ab:51:17:e4:49:66:3f:
1c:93:fc:d1:90:5d:d4:24:17:2c:21:57:f5:e6:2c:
82:9a:59:bc:97:d7:cc:8b:84:af:83:2c:62:2a:11:
8b:42:a4:4a:63:a1:f0:f3:f0:7a:78:03:a6:f0:43:
1f:cd:e6:71:03:8a:c7:a6:3a:e6:61:dd:49:c2:aa:
48:82:92:7e:98:28:e5:93:0e:2c:01:08:b2:03:03:
5f:ca:01:e4:13:1a:38:3d:11:2e:e4:c1:a1:ea:d1:
47:ce:c1:bc:ad:c7:db:eb:33:12:e4:36:95:45:ca:
6a:ae:07:0e:66:c4:65:f5:e5:b9:3c:53:8f:34:73:
c6:c1:9d:38:10:76:64:ba:5d:9c:52:cf:3a:34:7d:
05:29:69:58:6b:1b:62:52:3a:b1:fd:ce:73:2e:a4:
a2:fb:c2:49:9e:cf:f9:c8:54:14:95:2d:ef:a0:be:
3b:a8:6d:f7:f0:7f:76:f1:fd:54:04:e1:cd:fe:2b:
79:63:e3:26:c9:ad:fc:47:5e:2b:58:c9:41:4a:88:
a0:7f:c6:34:b4:61:7a:ee:37:0a:09:7b:38:7d:94:
8a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:DF:0B:ED:24:67:11:5A:30:66:50:52:02:95:8A:22:BD:FA:0B:1C
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS199414.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.34.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:55:56:5d:a9:92:8b:5a:2a:87:08:45:9b:ac:bb:43:de:08:
58:5c:5a:2d:77:0e:ed:85:95:f2:ea:18:ef:b9:73:05:40:3c:
6d:27:58:2a:a1:ad:ec:b7:c4:dc:38:41:c8:62:00:6d:8a:af:
a4:52:36:db:27:2e:47:f8:c0:fb:82:92:f7:8a:29:6e:a0:5e:
16:df:cf:9a:83:ae:6b:20:2c:60:e6:7e:d1:e4:b9:a9:e6:46:
49:98:31:b9:4e:81:e2:61:0d:8d:fe:0c:38:f0:ed:9e:65:5d:
be:a0:0d:97:2e:ec:5b:01:bd:30:ec:75:4c:bd:0f:75:3f:8d:
e6:d8:95:5c:81:e3:9d:f8:b3:13:9d:e3:5d:a6:71:f8:9e:f4:
cc:40:3d:bb:f0:14:5b:41:4f:67:fd:aa:ef:e5:1c:fc:5c:1c:
e7:69:20:73:dc:3e:df:48:e9:67:62:28:1e:f3:9e:8b:61:35:
dc:0e:43:b1:2e:0e:82:6e:c4:13:bc:19:f8:63:27:be:7e:bf:
09:84:a8:10:f1:e2:20:bd:3e:8e:39:f3:8f:d1:ee:1e:60:28:
62:67:2f:8b:83:a4:44:88:d7:e9:19:5b:e4:9d:1b:a3:d3:0e:
b9:0f:cc:68:f1:ca:34:bd:5d:59:e4:b5:86:62:d6:0c:1d:50:
4b:d8:77:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:24:21 2025 by rpki-client