Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137342e302f32342d3234203d3e20323132333335.roa
File: 3130392e3131302e3137342e302f32342d3234203d3e20323132333335.roa (raw, json)
Hash identifier: vwSfEaD2IesHpfKzZg7j5risaXYgRH9vbFKmxTfdQcU=
Subject key identifier: AB:4C:E3:14:33:97:4A:AF:4A:96:5A:49:C0:15:B4:18:EC:B2:81:70
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 6E8D30A2502DE70348113CB73FE23AEB618F345F
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137342e302f32342d3234203d3e20323132333335.roa
Signing time: Fri 10 Jan 2025 14:53:51 +0000
ROA not before: Fri 10 Jan 2025 14:48:51 +0000
ROA not after: Fri 09 Jan 2026 14:53:51 +0000
asID: 212335
IP address blocks: 109.110.174.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:8d:30:a2:50:2d:e7:03:48:11:3c:b7:3f:e2:3a:eb:61:8f:34:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Jan 10 14:48:51 2025 GMT
Not After : Jan 9 14:53:51 2026 GMT
Subject: CN=AB4CE31433974AAF4A965A49C015B418ECB28170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:71:6e:04:4e:6a:9c:dc:a7:06:18:27:f9:cf:
a4:2c:67:45:36:b1:57:5b:5e:63:4d:3a:69:68:03:
6a:4b:e3:7b:e8:8b:85:01:65:e6:51:ed:00:2f:e8:
3c:b8:a8:bc:6b:76:aa:e5:3b:47:d5:1d:01:fe:1d:
85:3b:62:8b:f3:fd:22:99:72:d8:10:87:86:ab:ee:
c9:c0:56:4d:cc:b4:a8:a9:2b:00:67:e6:41:a7:4b:
5b:80:db:55:3d:a4:1e:e6:99:46:a7:db:73:a5:64:
52:4e:40:e8:bb:1e:90:9a:66:86:0b:be:5a:92:d6:
d2:ac:c2:7b:a9:a4:d6:5c:81:12:03:9a:76:aa:07:
63:37:f7:a1:c3:d7:50:52:2e:94:55:25:65:92:13:
f6:78:40:95:90:d0:eb:2a:52:02:01:f1:bf:03:8b:
ef:99:10:1e:60:66:d5:3f:59:6a:a1:78:5a:b6:1a:
dc:00:3f:01:e4:8c:cf:e1:7d:a0:c2:93:e5:ae:08:
5e:6c:fb:f3:81:d0:f2:3a:e3:1f:ab:fb:d7:d7:e3:
10:90:1c:e3:b8:cd:6c:35:db:31:6f:de:95:e6:9c:
cb:e8:7a:88:ba:47:3c:07:5d:d1:47:50:70:77:17:
b8:bb:5c:5d:1f:5f:9e:29:f9:de:0c:80:25:c8:a7:
27:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:4C:E3:14:33:97:4A:AF:4A:96:5A:49:C0:15:B4:18:EC:B2:81:70
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137342e302f32342d3234203d3e20323132333335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.174.0/24
Signature Algorithm: sha256WithRSAEncryption
10:95:ec:c3:8c:ba:89:b1:8b:7a:5e:8e:3c:32:6f:4e:df:d1:
4a:00:e0:42:df:3a:46:d0:6b:17:94:81:c9:b0:2c:fd:a8:17:
25:18:cb:b0:f4:a3:f4:33:64:d3:fd:a5:70:8f:45:d8:c9:c3:
aa:de:79:8e:c0:0f:c6:c3:de:9e:14:df:ee:8f:5e:95:e7:de:
4b:f1:8d:76:a0:73:f4:7e:32:e2:bc:67:d2:07:44:50:2a:39:
21:45:11:14:fa:c0:cf:38:ae:27:ed:d6:ef:7c:ef:df:e8:5a:
72:a2:91:14:fe:fb:91:ab:d2:6a:65:76:ec:7a:b2:3a:ab:6e:
9a:c2:90:fd:9b:ea:a5:dd:7f:9d:15:1d:4b:8a:25:94:1f:39:
81:0e:f0:5e:4e:f1:43:45:f2:4c:ac:81:32:34:b9:8d:5c:63:
f3:70:97:69:a8:de:a6:3e:28:c7:fa:93:3f:0e:8c:2a:a4:11:
50:15:d3:ef:be:4f:72:ed:46:02:9c:99:32:26:d1:18:d4:40:
ea:7c:1b:14:78:ca:57:a3:a2:d3:d0:4b:5b:fb:91:1d:0c:7b:
1b:e5:95:bf:08:db:1a:61:88:eb:03:71:38:f1:9a:dd:44:c6:
0b:53:f5:37:00:ae:4c:ff:3e:d3:26:84:b2:4a:54:40:55:1b:
8a:74:27:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 05:17:38 2025 by rpki-client