Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS210570.roa
File: AS210570.roa (raw, json)
Hash identifier: RmuJnCOOEiGzqO/DTG7MuJ4Uh71OBRelm704joVdsb4=
Subject key identifier: 45:4D:C3:3B:33:E9:FF:63:FD:D7:DD:21:0D:8D:A4:77:30:33:A3:9A
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 788524720E12D814DEDFDDF19BFC42CD706175BC
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS210570.roa
Signing time: Thu 13 Feb 2025 13:53:55 +0000
ROA not before: Thu 13 Feb 2025 13:48:55 +0000
ROA not after: Thu 12 Feb 2026 13:53:55 +0000
asID: 210570
IP address blocks: 141.11.112.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:85:24:72:0e:12:d8:14:de:df:dd:f1:9b:fc:42:cd:70:61:75:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Feb 13 13:48:55 2025 GMT
Not After : Feb 12 13:53:55 2026 GMT
Subject: CN=454DC33B33E9FF63FDD7DD210D8DA4773033A39A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b2:e3:46:05:a7:06:db:70:21:f9:34:81:f1:
5c:d5:b7:3f:d0:e4:a4:da:a1:be:77:35:70:93:6d:
d2:d0:a3:70:a8:33:15:db:22:1e:24:e9:3d:dd:2a:
36:07:1d:8b:bc:ae:ba:74:2c:e4:39:77:22:57:77:
d2:0c:33:54:54:ca:7d:2c:6a:be:8e:6c:9c:2b:85:
4a:53:42:29:90:bc:2f:18:db:6d:4b:2f:e6:db:f1:
42:d5:f3:58:ef:95:bc:69:fe:93:8a:f5:88:fc:b7:
24:1f:b4:e3:f7:f2:ae:93:1c:12:f0:95:19:7e:47:
60:1f:1e:e7:59:c3:0e:36:ef:2c:65:52:fa:db:41:
26:37:13:db:29:01:5a:7c:48:7a:d9:bc:85:3e:43:
47:87:ce:b8:ed:95:34:ad:a3:4a:6b:5e:ea:54:e4:
01:e2:58:84:1f:65:d9:92:90:d7:fa:06:ea:6b:6c:
01:36:7b:48:70:54:ac:9d:0c:1d:c8:82:ea:7c:ec:
f5:64:ae:a6:45:03:5a:3a:de:a0:f1:b7:8a:8b:fd:
3a:a8:5b:78:5b:67:fa:d1:01:e5:0d:33:1e:ea:c1:
81:c0:02:1c:ea:ef:44:59:12:04:a6:cd:b8:37:65:
78:b9:4f:e9:61:0c:76:c2:ad:1d:4d:09:de:d2:57:
2c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:4D:C3:3B:33:E9:FF:63:FD:D7:DD:21:0D:8D:A4:77:30:33:A3:9A
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS210570.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.112.0/24
Signature Algorithm: sha256WithRSAEncryption
94:74:67:20:41:b2:03:89:3c:75:be:69:d2:52:65:b1:6f:fc:
10:9f:1d:e7:91:dd:9d:3f:7f:f2:7e:43:38:e8:87:09:35:83:
be:5e:c0:02:10:16:4a:a6:e4:b3:d7:c0:66:fe:40:06:e1:18:
d5:62:74:a9:3e:d1:bf:ce:79:fb:8f:6b:50:af:3f:ee:de:89:
74:48:80:0d:9b:54:36:6a:22:8c:84:9f:1d:5d:c6:4b:c3:0b:
b5:47:b5:94:82:bb:7e:dd:77:be:94:62:87:5a:86:24:6d:60:
55:c3:78:c0:6b:6d:bb:ac:5b:1a:fa:4c:6c:20:62:6e:3a:52:
a5:05:45:b1:a5:7f:ec:00:a1:fe:6f:a7:ff:ad:f3:51:53:f2:
d8:6e:12:6d:10:fe:3c:15:62:ce:44:72:38:8d:60:32:59:4d:
12:8b:7a:3f:fe:7f:da:2d:56:80:6b:4d:57:69:a9:5c:5c:5e:
18:a4:b0:2e:0d:20:8d:65:87:f5:22:2c:fe:95:a1:42:4e:a7:
81:5e:bc:e0:e0:a3:f0:71:62:38:1e:08:fa:29:03:e5:c5:c2:
30:a8:98:ab:02:27:1f:83:26:8b:db:78:20:80:b0:a1:1d:d4:
32:87:74:4f:7c:a0:9c:a9:2a:43:37:19:96:3a:e9:d1:67:05:
07:79:8a:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:24:07 2025 by rpki-client