Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138342e302f32342d3234203d3e203136323736.roa
File: 3130392e3131302e3138342e302f32342d3234203d3e203136323736.roa (raw, json)
Hash identifier: JR0gNAh8S4PXlO/vaCo5nSJxmZOc+Mty2n6kbdItNBY=
Subject key identifier: 3D:73:9E:FD:4F:AC:80:5B:9D:32:4A:14:E2:B8:DB:5A:AA:38:97:A4
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 31416CB016C3355D05F28E3B25BB0691DE5154D3
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138342e302f32342d3234203d3e203136323736.roa
Signing time: Fri 24 Jan 2025 21:53:52 +0000
ROA not before: Fri 24 Jan 2025 21:48:52 +0000
ROA not after: Fri 23 Jan 2026 21:53:52 +0000
asID: 16276
IP address blocks: 109.110.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:41:6c:b0:16:c3:35:5d:05:f2:8e:3b:25:bb:06:91:de:51:54:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Jan 24 21:48:52 2025 GMT
Not After : Jan 23 21:53:52 2026 GMT
Subject: CN=3D739EFD4FAC805B9D324A14E2B8DB5AAA3897A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:7e:54:51:cf:93:73:75:1d:97:a0:52:ed:ec:
50:49:eb:af:51:bc:60:39:22:95:ee:25:86:40:3c:
da:33:54:f4:c2:62:81:17:16:83:3f:4b:b4:31:42:
40:9a:54:7b:62:44:6e:2b:67:3f:09:0d:a0:88:26:
f8:e4:a6:71:b2:42:2b:60:a6:4f:0e:46:1d:d4:bc:
01:69:bd:28:27:da:e6:22:cb:92:09:7d:dc:1f:52:
11:60:69:a1:b4:66:12:7a:26:8c:91:16:ee:28:98:
3c:7c:5b:ae:c5:92:d0:71:72:c1:c9:11:0f:cc:61:
24:ea:28:cf:37:99:79:64:d2:82:03:61:02:9f:27:
4d:a6:cf:f3:38:73:ba:54:b3:ee:00:ae:f5:84:a9:
fd:2f:e6:f1:f7:9e:2f:8d:0d:1f:92:d4:7d:d3:8c:
3d:f1:34:e7:e3:e1:9c:4c:f2:b5:6f:4a:7e:55:2f:
4b:56:c5:0a:23:b2:18:99:35:37:9f:1c:4c:6e:65:
8c:a3:ed:27:ef:bb:3b:19:77:aa:1a:cc:c2:fc:a5:
14:8b:ae:f2:0f:dd:9f:32:27:b9:92:99:76:53:03:
56:e1:2f:9c:bc:cb:4d:66:54:37:67:aa:5b:6d:9d:
04:2a:6b:4e:fa:60:2d:e5:4d:d5:05:72:fe:03:17:
bc:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:73:9E:FD:4F:AC:80:5B:9D:32:4A:14:E2:B8:DB:5A:AA:38:97:A4
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138342e302f32342d3234203d3e203136323736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.184.0/24
Signature Algorithm: sha256WithRSAEncryption
67:76:55:28:93:2a:56:fa:93:04:81:36:8b:ea:b5:f7:a5:bb:
07:b0:72:30:bd:23:c2:a5:53:f1:c0:5e:8e:44:e7:09:e0:63:
a2:8c:b9:85:5e:d0:1d:84:0a:45:94:ea:11:8f:47:7d:79:8c:
95:96:b7:3e:ac:0a:c2:f8:1c:ac:3e:9a:74:d6:da:38:ce:f6:
80:63:df:9e:0c:70:8c:3f:8d:e1:ac:4b:a6:7e:97:60:48:b8:
6f:75:5f:3c:c3:e4:20:99:9a:eb:8c:d3:9c:36:ed:89:92:d3:
5c:76:81:a3:31:37:2b:b5:e9:88:7e:31:f7:47:d0:9a:2b:c0:
05:3e:7e:34:09:76:53:12:9b:d6:46:9e:5f:b9:10:63:82:a1:
42:0c:8f:5f:0a:d0:af:f1:31:7c:a3:79:da:38:3f:2e:33:b4:
a2:45:3c:fe:19:4e:b1:05:20:b2:34:de:5b:95:74:01:53:a1:
b8:6c:e3:ca:ae:27:46:30:f9:e5:ec:d8:eb:1a:00:b9:39:74:
72:16:21:c1:64:10:2f:a8:12:27:e4:dc:d8:64:db:65:06:36:
09:0a:30:79:25:90:8b:7e:14:43:ac:44:ba:54:96:a9:32:e2:
27:c7:1b:3c:4c:8f:65:53:ef:2b:e1:83:ef:1b:92:8d:59:0d:
51:02:6a:9f
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUMUFssBbDNV0F8o47JbsGkd5RVNMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN2FkZjYzZTM3NWIwYjc4NTA4MWI1OTQ1YjFkMThkOWRl
ODZlMGVmYzAeFw0yNTAxMjQyMTQ4NTJaFw0yNjAxMjMyMTUzNTJaMDMxMTAvBgNV
BAMTKDNENzM5RUZENEZBQzgwNUI5RDMyNEExNEUyQjhEQjVBQUEzODk3QTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGflRRz5NzdR2XoFLt7FBJ669R
vGA5IpXuJYZAPNozVPTCYoEXFoM/S7QxQkCaVHtiRG4rZz8JDaCIJvjkpnGyQitg
pk8ORh3UvAFpvSgn2uYiy5IJfdwfUhFgaaG0ZhJ6JoyRFu4omDx8W67FktBxcsHJ
EQ/MYSTqKM83mXlk0oIDYQKfJ02mz/M4c7pUs+4ArvWEqf0v5vH3ni+NDR+S1H3T
jD3xNOfj4ZxM8rVvSn5VL0tWxQojshiZNTefHExuZYyj7SfvuzsZd6oazML8pRSL
rvIP3Z8yJ7mSmXZTA1bhL5y8y01mVDdnqlttnQQqa076YC3lTdUFcv4DF7xnAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUPXOe/U+sgFudMkoU4rjbWqo4l6QwHwYDVR0j
BBgwFoAUet9j43Wwt4UIG1lFsdGNnehuDvwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQtOTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2Fi
MDAyLzAvN0FERjYzRTM3NUIwQjc4NTA4MUI1OTQ1QjFEMThEOURFODZFMEVGQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2V0OWo0M1d3dDRVSUcxbEZzZEdObmVo
dUR2dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQt
OTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2FiMDAyLzAvMzEzMDM5MmUzMTMxMzAyZTMx
MzgzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzYzMjM3MzYucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BABtbrgwDQYJKoZIhvcNAQELBQADggEBAGd2VSiTKlb6kwSBNovqtfeluwewcjC9
I8KlU/HAXo5E5wngY6KMuYVe0B2ECkWU6hGPR315jJWWtz6sCsL4HKw+mnTW2jjO
9oBj354McIw/jeGsS6Z+l2BIuG91XzzD5CCZmuuM05w27YmS01x2gaMxNyu16Yh+
MfdH0JorwAU+fjQJdlMSm9ZGnl+5EGOCoUIMj18K0K/xMXyjedo4Py4ztKJFPP4Z
TrEFILI03luVdAFTobhs48quJ0Yw+eXs2OsaALk5dHIWIcFkEC+oEifk3Nhk22UG
NgkKMHklkIt+FEOsRLpUlqky4ifHGzxMj2VT7yvhg+8bko1ZDVECap8=
-----END CERTIFICATE-----
Generated at Sat Apr 5 05:22:18 2025 by rpki-client