Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136352e302f32342d3234203d3e2035353131.roa
File: 3139332e3234362e3136352e302f32342d3234203d3e2035353131.roa (raw, json)
Hash identifier: FsHYMFbRDe+1BSAyPK9/qd6FE/z6Xy7virrgCRwCKxY=
Subject key identifier: 0D:BC:C2:75:6E:D7:5B:07:12:4D:7E:5E:9B:7D:96:8C:72:65:EB:01
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 168FA40075E66D44E47060198CDC0AB1D064D4B1
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136352e302f32342d3234203d3e2035353131.roa
Signing time: Tue 21 Jan 2025 14:53:51 +0000
ROA not before: Tue 21 Jan 2025 14:48:51 +0000
ROA not after: Tue 20 Jan 2026 14:53:51 +0000
asID: 5511
IP address blocks: 193.246.165.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:8f:a4:00:75:e6:6d:44:e4:70:60:19:8c:dc:0a:b1:d0:64:d4:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Jan 21 14:48:51 2025 GMT
Not After : Jan 20 14:53:51 2026 GMT
Subject: CN=0DBCC2756ED75B07124D7E5E9B7D968C7265EB01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:05:70:86:91:fc:86:eb:5a:50:c6:28:cb:19:
b4:0d:3f:67:d0:fb:aa:19:ff:9b:8a:65:86:0e:4a:
9e:ae:47:8a:68:d8:8c:59:ce:e0:75:11:84:d6:20:
f3:74:2d:34:f1:ec:5f:09:aa:c6:df:5c:fc:d3:51:
cb:1f:8b:3f:c3:4d:2c:9a:d4:92:b7:46:01:1c:41:
7b:18:ff:a9:22:8d:38:c6:1b:1d:a4:49:c3:3b:03:
50:f6:a8:b2:49:88:5b:98:b9:00:87:c5:bf:59:61:
ed:09:eb:1e:03:36:bb:52:a9:b4:08:98:f4:7b:e8:
49:14:ee:09:9a:49:14:b7:70:e0:8c:77:b1:e8:34:
b1:20:7d:eb:5b:1c:dc:2a:d7:e8:e7:8d:6e:13:c5:
c9:3c:d9:5b:a3:c7:6e:8a:2f:57:c6:00:b9:4d:5a:
be:55:92:4f:f7:3f:50:16:93:b9:56:4d:4a:57:cb:
06:0c:af:19:de:50:0a:b0:86:8e:97:b2:00:ba:b2:
05:ef:c2:94:84:8c:e8:e0:91:c6:1e:ee:6e:d5:39:
fe:6c:96:65:1c:50:e9:17:fa:08:cf:58:08:30:7f:
4c:eb:fd:a1:83:f4:18:7b:29:6c:a3:90:e3:fc:e9:
cb:9f:4d:35:88:ee:93:a0:3c:17:55:0c:30:99:e1:
a4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:BC:C2:75:6E:D7:5B:07:12:4D:7E:5E:9B:7D:96:8C:72:65:EB:01
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136352e302f32342d3234203d3e2035353131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.165.0/24
Signature Algorithm: sha256WithRSAEncryption
03:f5:e6:a4:eb:a5:69:0a:61:a2:53:70:83:26:66:b9:30:43:
80:dd:5f:db:4f:57:79:9e:13:76:8e:2c:b4:1f:08:3d:a0:92:
5f:08:14:9c:69:d0:6f:36:14:a0:d4:fe:ed:95:51:80:6d:f5:
70:15:aa:f4:2e:56:71:e6:e7:30:93:74:40:69:58:30:78:2d:
66:5f:d3:6e:71:bc:2d:4d:9f:60:9c:d7:84:b7:b7:ca:11:8f:
3d:84:ce:78:14:07:48:24:fb:bb:71:6a:87:b8:68:d9:52:7d:
e3:b1:1a:0b:62:3f:d9:9b:20:e9:42:5d:72:de:4e:9b:6f:26:
e0:8d:46:d4:7b:86:9d:dd:d5:2c:ab:dc:f1:78:95:ed:4a:4e:
85:ca:16:cb:cd:34:38:b3:ba:5b:27:21:95:e2:92:c6:13:f5:
6e:10:d0:a4:a8:53:e4:46:ef:35:a9:d2:69:76:73:a7:d1:67:
12:14:42:ca:0b:f4:2c:a4:c9:f2:37:64:e4:2d:00:42:37:f6:
8c:49:5d:88:df:6b:62:27:3f:79:f3:7e:00:d1:c2:30:50:50:
b0:90:28:b0:27:c0:a0:04:ed:86:70:82:33:8f:cb:d2:12:54:
4d:d9:d5:e9:4e:df:26:90:5e:94:27:4d:9f:2d:ee:d1:1f:87:
e7:9e:10:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 05:20:03 2025 by rpki-client