Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136322e302f32342d3234203d3e20323136313833.roa
File: 3130392e3131302e3136322e302f32342d3234203d3e20323136313833.roa (raw, json)
Hash identifier: iDnTRMDkIxlsLNXnlcPUuSyBMca/Gw9DfMfoxZ+u6ME=
Subject key identifier: C6:58:66:A9:23:B8:E5:7B:7C:08:91:E6:F5:E0:0A:2F:59:B7:F0:42
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 3479287CB09F92751D040C3661A5D7BE5ADBEEF9
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136322e302f32342d3234203d3e20323136313833.roa
Signing time: Wed 26 Mar 2025 19:53:59 +0000
ROA not before: Wed 26 Mar 2025 19:48:59 +0000
ROA not after: Wed 25 Mar 2026 19:53:59 +0000
asID: 216183
IP address blocks: 109.110.162.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:79:28:7c:b0:9f:92:75:1d:04:0c:36:61:a5:d7:be:5a:db:ee:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Mar 26 19:48:59 2025 GMT
Not After : Mar 25 19:53:59 2026 GMT
Subject: CN=C65866A923B8E57B7C0891E6F5E00A2F59B7F042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:53:f6:36:48:c5:cf:05:7b:b5:10:e2:0d:1d:
d2:e2:b8:a4:b2:6b:01:4f:d5:37:74:38:ea:87:d9:
e9:f2:bf:0c:6f:8a:f2:03:4d:84:e4:48:42:a3:31:
30:3e:5b:63:b6:7c:61:77:e5:c0:15:38:45:6f:50:
ce:c2:55:7c:c8:81:4b:c5:94:e9:68:e0:b2:4c:3e:
81:26:9c:8e:80:4a:9c:82:51:3a:b7:6c:5b:3b:f4:
51:1a:21:b1:70:98:d3:41:d5:a5:c7:89:e4:b8:69:
81:91:59:7f:69:08:51:16:7e:2b:1b:84:68:5c:57:
83:5a:93:6d:22:8c:cb:0e:05:3d:ed:cf:ca:c3:27:
00:6b:a3:e3:af:e1:31:0b:cd:9d:fe:1d:a6:70:bd:
30:05:c2:0b:03:f7:01:17:75:ab:2a:e3:b9:7e:f5:
0e:4a:89:38:cb:0a:84:03:d8:63:d1:c2:74:17:3b:
b9:9c:e8:33:f7:ae:c1:1a:c4:25:95:57:d9:c9:30:
17:35:d0:ac:d5:fb:d5:bc:34:7e:6b:ea:5f:9d:b1:
18:36:fb:c1:c1:d7:17:12:ae:ae:a9:a4:42:06:74:
81:ba:af:86:95:b5:89:6c:83:1d:fb:4a:fa:38:24:
41:97:cb:df:58:b3:c5:14:bf:6a:45:5f:77:d1:9a:
f8:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:58:66:A9:23:B8:E5:7B:7C:08:91:E6:F5:E0:0A:2F:59:B7:F0:42
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136322e302f32342d3234203d3e20323136313833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.162.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:3a:1e:21:b9:65:75:92:ba:d2:58:0c:1f:0e:8d:f0:81:bf:
05:f3:3c:4c:84:53:e7:3b:f4:8c:8e:b3:9d:c7:3e:77:15:22:
ae:14:ed:d9:67:62:af:70:d0:07:c9:e0:6a:18:6a:11:56:14:
88:1b:f8:45:2f:37:81:5a:68:2b:69:e3:f2:8b:2f:8f:5d:d7:
fe:85:d8:d5:7b:3f:a9:0e:c7:9b:88:90:46:d7:05:f4:d0:b1:
6a:68:cb:0f:4e:45:10:4e:2d:71:f7:b9:76:00:7e:a4:af:3d:
dd:84:b9:b7:75:d4:cb:94:77:d7:4a:65:24:cb:08:d7:74:a9:
63:46:b1:58:9c:00:5c:1c:2c:d1:e4:c3:6d:df:e4:ab:9a:fc:
dc:db:47:d7:da:d8:61:48:db:0a:32:c2:fb:4b:37:0a:e5:2c:
88:8b:70:7d:8c:cf:b6:df:20:72:7c:c1:a6:06:16:eb:06:b7:
de:5e:6f:ff:6e:18:49:18:58:94:5e:c2:c5:86:da:b8:2c:ac:
58:8a:a8:ae:3f:32:1a:1e:28:1c:96:bc:f3:a0:5a:1d:df:e4:
bb:31:d5:ec:5b:c6:8d:f9:4d:ed:da:20:23:02:7b:1e:9c:a6:
8e:d5:27:50:54:17:fa:ac:f6:1b:d2:0e:65:75:8b:ea:5a:03:
d3:d8:35:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 05:22:20 2025 by rpki-client