Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3134362e31392e38362e302f32342d3234203d3e20333937343233.roa
File: 3134362e31392e38362e302f32342d3234203d3e20333937343233.roa (raw, json)
Hash identifier: lyKL1frRLJxArgCiLe1S6bfyYzJPn+JNlDq3xReYuhk=
Subject key identifier: EF:97:84:DF:8A:D3:05:02:EC:26:5F:70:92:B6:B6:3D:E1:02:CC:42
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 4600C3BAEB569BFEFC92CE5BE956A0C55C138751
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3134362e31392e38362e302f32342d3234203d3e20333937343233.roa
Signing time: Mon 10 Feb 2025 13:53:55 +0000
ROA not before: Mon 10 Feb 2025 13:48:55 +0000
ROA not after: Mon 09 Feb 2026 13:53:55 +0000
asID: 397423
IP address blocks: 146.19.86.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:00:c3:ba:eb:56:9b:fe:fc:92:ce:5b:e9:56:a0:c5:5c:13:87:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Feb 10 13:48:55 2025 GMT
Not After : Feb 9 13:53:55 2026 GMT
Subject: CN=EF9784DF8AD30502EC265F7092B6B63DE102CC42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:61:0f:c4:c8:97:cd:87:e1:df:79:21:5b:8f:
20:af:3b:c5:53:2f:03:89:f7:a4:e9:78:be:f7:c3:
d4:18:b8:66:56:42:09:97:01:d1:f2:e3:d0:87:f7:
02:ff:b9:2c:b3:0b:eb:d1:53:2a:a3:71:47:53:6d:
45:35:78:5e:3d:bc:93:92:d2:68:7c:04:be:37:17:
70:e3:b5:6f:95:e7:07:14:3e:83:81:6c:e5:c2:98:
e2:ea:c7:a5:51:9d:4d:ef:b3:16:62:ef:02:45:dd:
32:24:f3:1d:10:d0:77:8a:2f:27:4d:15:b0:81:58:
a1:69:22:16:a1:38:e1:0a:49:34:f8:aa:58:15:75:
b8:a1:26:2a:16:18:67:62:ab:6d:e5:75:e9:95:75:
1d:43:5b:26:d5:fe:40:7b:bb:e0:c1:eb:ab:6b:13:
22:8f:84:e8:4e:c8:fb:68:9e:70:32:80:e8:6b:fd:
16:9a:66:e5:3a:eb:3b:fc:19:4c:93:4b:0e:4b:26:
9c:d2:6c:26:98:14:23:0e:7c:99:99:35:1e:85:8b:
98:87:db:e3:81:89:cc:40:18:ed:5a:eb:af:15:b4:
99:de:f6:6d:ae:3b:63:89:ad:27:ff:66:5d:86:c5:
be:3a:aa:72:f9:9a:cc:b9:af:df:8d:d6:c1:55:cb:
e6:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:97:84:DF:8A:D3:05:02:EC:26:5F:70:92:B6:B6:3D:E1:02:CC:42
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3134362e31392e38362e302f32342d3234203d3e20333937343233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.86.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:8b:fb:5b:18:14:2e:4c:0c:33:e3:d0:3d:dc:8d:86:53:50:
67:ae:92:7b:95:9c:65:f9:95:d4:fc:d9:16:39:59:dc:05:63:
f5:5a:ff:83:2c:4d:63:17:78:64:1c:4c:a2:21:8f:e5:9a:ff:
c6:03:1a:62:3f:d0:e1:7d:81:60:b1:93:0b:90:71:b2:cb:86:
7c:96:e8:c5:c2:bc:b0:0a:a1:c9:36:37:b9:fb:a3:34:2f:54:
8a:1e:69:b0:78:93:34:0f:3a:83:33:d0:de:6e:26:b8:ba:75:
5f:b3:9b:06:04:6b:a6:59:14:2d:94:e7:8a:84:88:54:ba:7c:
ba:1b:06:d7:9b:1a:52:a8:33:9f:c0:25:d6:5b:5a:8d:02:5d:
46:73:b4:b7:f3:81:6d:72:6d:cf:7e:24:5e:79:74:60:da:84:
c9:54:5f:07:6c:a6:00:9c:a1:46:69:e7:cf:77:93:52:26:2d:
c4:ab:62:fb:4b:b5:10:37:5f:cc:d1:79:09:f4:07:1e:14:f7:
5d:41:83:8a:c9:da:74:31:03:51:08:85:87:28:f9:5b:02:10:
7d:12:e0:1d:15:1b:0c:3b:13:5d:f1:c9:8b:09:f7:94:b4:45:
dd:3d:7f:f2:cb:82:4e:56:94:6b:c7:c3:7e:13:37:ad:63:39:
87:39:bf:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:54:54 2025 by rpki-client