Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS30823.roa
File: AS30823.roa (raw, json)
Hash identifier: MG5RlKVQ3N6FoIlkbSKl70XdKV+DnkAiwgJxX0JIqWg=
Subject key identifier: A1:68:19:76:08:85:D4:E1:E3:21:78:DE:1E:09:E0:84:32:81:0F:06
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 440ABDD9D354EBC9490467FEC0ED6852F6523C8E
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS30823.roa
Signing time: Sat 28 Dec 2024 00:01:57 +0000
ROA not before: Fri 27 Dec 2024 23:56:57 +0000
ROA not after: Sat 27 Dec 2025 00:01:57 +0000
asID: 30823
IP address blocks: 141.11.180.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:0a:bd:d9:d3:54:eb:c9:49:04:67:fe:c0:ed:68:52:f6:52:3c:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Dec 27 23:56:57 2024 GMT
Not After : Dec 27 00:01:57 2025 GMT
Subject: CN=A16819760885D4E1E32178DE1E09E08432810F06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e9:c5:3e:45:0a:06:b3:34:d8:9f:a4:3f:e9:
8a:ba:90:c2:d1:7a:ad:de:72:af:65:bc:01:9a:2a:
3e:02:95:44:63:b5:8b:68:fc:4a:14:da:0b:b1:74:
e3:a0:da:a4:ec:55:41:49:b9:72:35:b6:6f:6c:e3:
d5:b4:8e:ed:bb:33:56:62:ef:bb:96:d5:c7:78:be:
cb:e7:d8:36:e7:18:b4:a8:a3:bf:c4:b8:97:d9:fc:
d7:4d:41:f7:dc:d6:1b:dc:b5:38:1b:90:4a:49:c7:
94:93:62:16:8c:77:dc:86:91:aa:87:21:91:54:3f:
3f:ed:a5:9d:a4:85:a9:3d:63:43:e9:16:82:e3:75:
09:dd:79:3e:a7:45:59:1f:1d:03:cd:05:e2:9e:2c:
6a:e3:c3:f8:3c:30:de:14:44:50:af:02:7d:60:56:
63:c6:26:e4:f3:18:a1:8e:57:c9:c8:92:88:4e:37:
91:f2:de:4d:5b:8f:8e:88:30:05:44:68:61:8a:e6:
fb:2d:af:8d:d7:bc:8f:de:7a:c0:0c:1f:a3:03:cf:
6c:56:d2:2e:64:33:fc:9c:a8:bf:14:c4:79:41:31:
09:e1:23:96:d3:1a:55:0f:1a:2b:4a:7b:53:b6:11:
48:42:8a:be:7b:b7:4b:f6:82:74:1a:bb:83:0d:40:
18:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:68:19:76:08:85:D4:E1:E3:21:78:DE:1E:09:E0:84:32:81:0F:06
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS30823.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.180.0/23
Signature Algorithm: sha256WithRSAEncryption
31:7d:fe:68:96:b6:f2:d2:a7:86:e1:1f:ed:7d:a8:9a:61:05:
c4:aa:99:b8:e9:da:67:5f:f3:2f:7e:ab:a1:14:e2:c0:06:21:
33:69:c5:4a:fe:71:a9:8c:fb:f1:5c:24:ed:1d:95:d5:20:29:
7b:f6:f4:6e:36:31:64:50:8a:3a:70:d6:c8:90:04:f9:c6:08:
e5:6c:5b:7d:45:9a:c5:c0:39:57:e7:63:29:f6:51:86:bc:09:
61:80:60:c0:e4:1f:ca:a9:41:11:a3:bf:aa:37:c0:8e:b5:7f:
75:26:15:82:6e:c7:3a:c1:a4:49:0c:a4:74:b6:c1:dd:15:d0:
16:b6:99:19:eb:20:a7:d0:d6:ae:a0:0d:14:8c:ac:34:b6:5a:
fb:62:d6:c8:4d:cf:13:59:05:f5:59:d0:f3:0b:25:9e:61:b6:
d8:a4:20:da:c9:08:d1:01:34:4a:81:8b:d9:1b:91:85:34:75:
bd:a5:15:81:d3:10:1a:7a:39:2d:a9:ed:03:a1:72:b7:14:72:
8e:61:b4:75:63:75:ce:ea:c2:9a:f9:83:19:e5:82:58:4b:71:
b4:d3:1d:1d:14:40:cc:7a:01:44:3b:f8:ae:b3:8c:be:17:d5:
7c:b6:e2:5a:41:7d:c1:ae:f0:09:b8:31:c5:ed:21:d8:b9:dd:
71:f0:3c:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:24:11 2025 by rpki-client