Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS50321.roa
File: AS50321.roa (raw, json)
Hash identifier: ZVCSM+wo9wzwnOTUtRoUa+poe9U9/tINIYaX1zJwyrQ=
Subject key identifier: 4E:C7:05:E1:57:5B:6E:A1:CF:43:3B:17:99:4D:9F:DC:9E:7F:FC:2D
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 0444EB3AD78CB513D2C1ACB6DE317C2A8880DF36
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS50321.roa
Signing time: Fri 20 Dec 2024 18:16:58 +0000
ROA not before: Fri 20 Dec 2024 18:11:58 +0000
ROA not after: Fri 19 Dec 2025 18:16:58 +0000
asID: 50321
IP address blocks: 141.11.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:44:eb:3a:d7:8c:b5:13:d2:c1:ac:b6:de:31:7c:2a:88:80:df:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Dec 20 18:11:58 2024 GMT
Not After : Dec 19 18:16:58 2025 GMT
Subject: CN=4EC705E1575B6EA1CF433B17994D9FDC9E7FFC2D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:81:3b:2f:3e:f6:9c:18:12:b2:2a:cf:9e:ff:
9c:45:98:c3:a2:00:33:fb:26:4d:d7:92:83:7d:38:
3a:ad:97:c6:f7:f4:94:ba:1e:d4:69:ef:50:6c:37:
59:f5:c4:97:b3:65:07:3d:42:4d:97:37:a0:e5:59:
12:d2:08:69:93:61:6b:40:0b:6c:60:93:30:0b:b6:
e9:cf:8c:d2:71:81:ac:5f:30:57:a3:ac:65:ec:fe:
24:87:30:e9:9d:7a:eb:66:ca:32:f4:2c:eb:0e:b3:
9e:d5:61:cd:ab:6b:a3:1f:13:06:ea:dc:e3:88:dc:
24:99:04:8f:37:a4:9d:55:84:41:6e:68:89:a6:5e:
32:b3:15:de:3e:34:43:1d:d4:d4:19:9c:48:a5:d4:
d4:b5:8b:a9:e2:ab:28:28:02:52:14:c9:8f:1f:ff:
d3:09:9e:9f:56:79:2a:87:de:de:d5:70:2c:19:8a:
81:d2:28:42:c6:2a:cf:7c:6a:54:19:10:e2:35:d2:
67:36:0d:c1:90:13:6c:7a:22:10:03:ab:28:05:4b:
6c:6a:82:34:17:b7:17:bf:d4:13:3d:1d:77:c5:bf:
23:9a:e9:e5:5d:1f:6a:b4:92:01:ee:c3:02:2a:96:
99:00:e9:5b:31:c1:bb:c4:77:f9:d8:b8:0d:71:4a:
73:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:C7:05:E1:57:5B:6E:A1:CF:43:3B:17:99:4D:9F:DC:9E:7F:FC:2D
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS50321.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.252.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:30:59:29:82:15:80:10:1f:8f:d0:50:ee:d3:ba:52:7e:d0:
9b:69:34:fd:02:e7:c7:ab:8c:f4:56:88:9c:d9:04:f2:5c:4b:
c3:ca:59:7f:b8:60:bb:87:b9:51:0a:0d:28:e0:b2:c1:84:dc:
cf:ba:ce:9b:55:e2:11:c8:fd:d7:f5:86:45:35:f6:cb:39:54:
3c:17:5b:4f:f2:fc:8a:84:6d:13:a4:a9:8f:72:24:d6:ed:45:
5f:ca:ab:c2:91:73:90:1b:b3:ac:d7:a9:bb:ad:86:09:f7:0e:
93:21:cc:45:55:4b:da:6c:cd:44:01:b3:93:a0:59:b3:1b:c0:
6d:1e:7e:e4:ca:63:5e:7f:f9:20:65:80:8a:f1:93:a7:12:28:
b9:a6:77:f8:b9:27:3d:aa:c0:5d:07:67:dd:81:17:a2:aa:c3:
91:38:9c:2a:08:71:ca:47:79:4e:a1:48:f7:2f:7a:15:b2:19:
23:a2:b3:8a:3e:a5:28:29:ef:ae:d3:d8:e9:89:b6:7b:ca:dd:
4f:6a:aa:81:69:93:bd:a3:b1:a9:ea:b7:55:06:55:2a:56:1a:
c0:41:01:2c:49:da:2a:9d:78:50:85:73:db:e9:1e:2e:bf:c4:
5a:06:e3:b2:92:a6:eb:92:a2:cc:19:bc:a4:87:0c:e9:b3:51:
c5:ba:3f:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:24:00 2025 by rpki-client