Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137352e302f32342d3234203d3e203332313637.roa
File: 36322e3139322e3137352e302f32342d3234203d3e203332313637.roa (raw, json)
Hash identifier: U2PFnA3rF7qw+aIQjJFRNqglzatAsbwrLHp/c2L9vH4=
Subject key identifier: AA:7A:92:F4:E0:B1:F8:0A:F4:AE:13:C2:EE:7C:D9:92:C4:0B:47:C5
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 6A16167828100C0E14C080F2BD4E0562BF3E36FF
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137352e302f32342d3234203d3e203332313637.roa
Signing time: Sat 25 Jan 2025 13:53:52 +0000
ROA not before: Sat 25 Jan 2025 13:48:52 +0000
ROA not after: Sat 24 Jan 2026 13:53:52 +0000
asID: 32167
IP address blocks: 62.192.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:16:16:78:28:10:0c:0e:14:c0:80:f2:bd:4e:05:62:bf:3e:36:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Jan 25 13:48:52 2025 GMT
Not After : Jan 24 13:53:52 2026 GMT
Subject: CN=AA7A92F4E0B1F80AF4AE13C2EE7CD992C40B47C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4e:8f:ab:84:7c:87:23:27:f8:b1:8f:33:76:
cc:c8:8b:f3:f9:49:c8:91:f8:32:41:c1:41:cb:b1:
f1:39:2f:0c:8f:f2:30:2b:33:5b:12:2a:37:6e:ca:
2b:a9:23:51:40:24:b6:57:03:32:c8:6d:b1:34:d2:
1f:fb:83:b1:f9:15:8b:32:65:79:9f:63:a7:5d:20:
50:c2:a4:04:bb:9a:18:91:f8:fa:69:b6:24:47:24:
ad:c2:26:33:bb:99:30:01:05:df:b4:1e:80:30:f3:
77:a9:31:e7:22:46:da:72:10:c5:59:f2:75:f8:11:
d0:4c:8b:d0:b5:78:ca:3e:42:d1:8e:be:fe:17:f2:
84:cc:b1:80:61:78:74:4c:82:0b:69:cc:57:fd:ad:
4a:84:f9:e5:31:da:fe:9e:24:ff:8d:ab:4a:25:81:
2e:2a:16:b6:60:0e:1b:51:ab:44:b0:72:db:59:f8:
67:b7:7c:c6:d4:dd:e4:b7:ac:88:39:a8:c2:f1:7f:
d2:bc:bf:c2:37:db:73:5c:62:99:83:25:1a:84:a8:
83:3c:e6:fc:2b:c2:4f:9f:1a:02:79:73:92:d9:87:
bd:4f:dc:34:ee:da:fd:e4:3b:25:d0:96:2d:2c:a1:
6f:d0:c4:96:cf:1e:11:d3:21:18:9d:b1:18:af:5c:
b1:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:7A:92:F4:E0:B1:F8:0A:F4:AE:13:C2:EE:7C:D9:92:C4:0B:47:C5
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137352e302f32342d3234203d3e203332313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.175.0/24
Signature Algorithm: sha256WithRSAEncryption
28:c4:e5:c8:24:47:ad:7f:cf:96:a4:75:cd:60:cd:12:06:0c:
40:0f:cf:0f:41:46:8b:bd:16:5e:93:11:e7:2b:d1:5e:fe:ae:
e5:e9:e3:ba:4f:a1:4a:b0:b9:cc:f3:b1:52:90:c7:4e:dd:1f:
e3:00:22:18:23:39:a2:ca:e0:a4:40:f3:0f:be:b7:18:57:1a:
b7:7a:a0:95:e3:ce:f4:1b:af:c9:5a:82:da:ae:79:3b:a7:c5:
83:d8:ab:0a:7f:84:8e:67:44:37:f8:b5:b2:c7:9c:e7:de:54:
55:95:36:9a:84:27:46:d5:f2:b4:c0:b6:ec:9b:17:2e:aa:f4:
06:9a:df:76:e1:42:13:ea:cb:32:bb:8e:62:4f:28:7a:d8:74:
19:1e:cb:7f:0a:5d:7b:47:c9:3e:e7:ea:f1:0e:31:02:b6:55:
0a:3b:0a:a4:53:12:77:69:39:75:53:b2:b8:53:2c:1e:37:f6:
01:75:55:b9:13:77:98:2a:82:45:91:8b:d9:94:c2:5e:27:71:
27:c6:5e:d3:16:b7:51:75:dc:bc:f9:77:ad:d2:7f:67:90:a7:
70:f2:0c:e7:d7:33:42:91:fd:a6:bc:0d:ac:b9:da:a1:c8:ef:
a2:07:b0:c7:5c:30:9f:18:60:6c:54:b8:ff:33:05:fb:b7:c1:
2c:34:bb:3e
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUahYWeCgQDA4UwIDyvU4FYr8+Nv8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGY0Y2U3NzIyZjk5MDc1ZDk0NzM4YjdlNjEwNzA0MDEy
NjllYjNkNjAeFw0yNTAxMjUxMzQ4NTJaFw0yNjAxMjQxMzUzNTJaMDMxMTAvBgNV
BAMTKEFBN0E5MkY0RTBCMUY4MEFGNEFFMTNDMkVFN0NEOTkyQzQwQjQ3QzUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2To+rhHyHIyf4sY8zdszIi/P5
SciR+DJBwUHLsfE5LwyP8jArM1sSKjduyiupI1FAJLZXAzLIbbE00h/7g7H5FYsy
ZXmfY6ddIFDCpAS7mhiR+PpptiRHJK3CJjO7mTABBd+0HoAw83epMeciRtpyEMVZ
8nX4EdBMi9C1eMo+QtGOvv4X8oTMsYBheHRMggtpzFf9rUqE+eUx2v6eJP+Nq0ol
gS4qFrZgDhtRq0SwcttZ+Ge3fMbU3eS3rIg5qMLxf9K8v8I323NcYpmDJRqEqIM8
5vwrwk+fGgJ5c5LZh71P3DTu2v3kOyXQli0soW/QxJbPHhHTIRidsRivXLFRAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUqnqS9OCx+Ar0rhPC7nzZksQLR8UwHwYDVR0j
BBgwFoAUj0znci+ZB12Uc4t+YQcEASaes9YwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWE5NzcxMTUtNTExMC00MjU3LTk0ZWYtNGQyYjQzODg0
MDQwLzAvOEY0Q0U3NzIyRjk5MDc1RDk0NzM4QjdFNjEwNzA0MDEyNjlFQjNENi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2owem5jaS1aQjEyVWM0dC1ZUWNFQVNh
ZXM5WS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWE5NzcxMTUt
NTExMC00MjU3LTk0ZWYtNGQyYjQzODg0MDQwLzAvMzYzMjJlMzEzOTMyMmUzMTM3
MzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMzMyMzEzNjM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
PsCvMA0GCSqGSIb3DQEBCwUAA4IBAQAoxOXIJEetf8+WpHXNYM0SBgxAD88PQUaL
vRZekxHnK9Fe/q7l6eO6T6FKsLnM87FSkMdO3R/jACIYIzmiyuCkQPMPvrcYVxq3
eqCV4870G6/JWoLarnk7p8WD2KsKf4SOZ0Q3+LWyx5zn3lRVlTaahCdG1fK0wLbs
mxcuqvQGmt924UIT6ssyu45iTyh62HQZHst/Cl17R8k+5+rxDjECtlUKOwqkUxJ3
aTl1U7K4UyweN/YBdVW5E3eYKoJFkYvZlMJeJ3Enxl7TFrdRddy8+Xet0n9nkKdw
8gzn1zNCkf2mvA2sudqhyO+iB7DHXDCfGGBsVLj/MwX7t8EsNLs+
-----END CERTIFICATE-----
Generated at Sat Apr 5 13:24:51 2025 by rpki-client