Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137322e302f32342d3234203d3e20323733333438.roa
File: 36322e3139322e3137322e302f32342d3234203d3e20323733333438.roa (raw, json)
Hash identifier: qejB/WT5wFvC1QZ5g0XqTUenJgPd04W9SCAjldb8mgM=
Subject key identifier: EF:6F:C5:1D:67:3D:4C:06:FC:34:B6:20:8C:9B:2F:F8:C1:52:13:77
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 79F7D12000FDAE4E2BB3ECCE837AFEF880A230EA
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137322e302f32342d3234203d3e20323733333438.roa
Signing time: Wed 05 Feb 2025 17:39:24 +0000
ROA not before: Wed 05 Feb 2025 17:34:24 +0000
ROA not after: Wed 04 Feb 2026 17:39:24 +0000
asID: 273348
IP address blocks: 62.192.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:f7:d1:20:00:fd:ae:4e:2b:b3:ec:ce:83:7a:fe:f8:80:a2:30:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Feb 5 17:34:24 2025 GMT
Not After : Feb 4 17:39:24 2026 GMT
Subject: CN=EF6FC51D673D4C06FC34B6208C9B2FF8C1521377
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3f:56:92:1a:ce:d5:4f:e1:73:4b:32:a0:64:
c9:88:ea:aa:90:9c:5a:df:05:91:7f:ee:53:03:6d:
1d:00:5d:c7:a6:46:df:38:3f:01:1e:c4:cc:d8:12:
dc:e0:3a:05:9a:d8:5f:61:60:bc:cf:b4:6c:41:5b:
44:70:a9:fd:3b:1d:7a:c5:6e:07:3c:20:e3:74:93:
26:a7:fe:7d:10:e7:7f:4b:38:7c:72:15:6c:d5:46:
8b:4b:ff:b1:12:b0:df:f4:05:f5:f0:a5:04:5b:f1:
39:8c:ec:d7:f1:aa:3e:1d:c9:0f:26:ae:27:0a:0a:
fb:85:64:63:be:2a:58:24:06:9a:27:29:bb:d0:30:
c3:6e:20:62:3b:55:5c:9a:dc:47:02:c3:7b:1a:47:
6e:d5:10:c0:44:a6:4f:07:d9:9f:b4:c3:81:75:96:
22:d1:89:ca:86:0b:3c:1b:63:36:8a:cf:33:36:3b:
b1:00:9c:24:97:c1:ad:96:82:e8:81:dd:b2:a0:c1:
80:46:6a:b4:a7:f5:b6:c8:0e:e4:b7:2f:79:c7:0b:
fe:9b:6b:50:80:0d:97:27:0f:10:87:cf:82:95:d1:
e3:00:9f:cb:e0:3d:f3:00:24:2a:80:74:ec:35:4d:
14:17:d0:6c:8d:d0:25:73:07:f3:42:a6:06:ec:55:
f1:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:6F:C5:1D:67:3D:4C:06:FC:34:B6:20:8C:9B:2F:F8:C1:52:13:77
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137322e302f32342d3234203d3e20323733333438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.172.0/24
Signature Algorithm: sha256WithRSAEncryption
38:7b:41:66:6c:b1:38:3a:35:91:f4:61:da:2f:03:68:21:c5:
f0:6e:9a:9a:ce:c2:71:83:7a:43:41:df:84:bd:f6:09:29:57:
35:2e:5b:3a:ce:a6:82:e6:47:d4:1a:ad:46:08:ed:0a:73:08:
d8:c0:8a:3a:44:d8:b6:12:fa:12:ac:56:24:c1:28:d8:8c:dd:
38:54:ff:ed:00:9e:d2:d6:e3:3c:49:f4:7c:97:52:17:c4:a7:
4a:e6:49:07:1e:17:c1:6c:e2:c6:b6:67:34:a5:17:32:bc:57:
05:3e:dd:b3:82:e2:30:ad:8f:5f:31:6b:9b:c9:22:ce:a9:42:
f6:57:28:51:e2:6e:8c:d2:f4:e4:d4:a8:78:7e:23:5f:fc:c6:
7b:61:fe:be:98:e4:36:64:34:4b:be:c6:0d:16:74:66:01:fe:
67:83:a4:cf:c1:f6:30:7d:45:fa:5c:07:9f:95:4f:ec:89:26:
3e:15:61:09:0e:11:8b:e3:f6:26:a8:12:71:2c:39:2c:09:96:
05:e6:1b:01:1c:f3:b3:07:f7:d5:8a:4b:e4:13:cf:4e:db:23:
33:ac:aa:e8:0a:33:3d:a7:a7:b5:93:26:40:46:c2:40:3d:2e:
5e:7c:3d:60:9d:d3:85:81:39:6b:a0:b4:2c:09:c9:5a:e2:03:
54:46:5d:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:25:00 2025 by rpki-client