Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137352e302f32342d3234203d3e20323033373538.roa
File: 3138352e3137322e3137352e302f32342d3234203d3e20323033373538.roa (raw, json)
Hash identifier: nUxvgE25JrFUmQQKvS19kspze6pzzL4IIMOOO4hevXA=
Subject key identifier: B8:13:E4:DC:EE:4C:36:24:9B:E0:44:47:01:9F:BE:ED:27:28:D4:E3
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 49C03DA084012AF9462E58B5296583D450F8B72C
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137352e302f32342d3234203d3e20323033373538.roa
Signing time: Mon 06 Jan 2025 20:53:51 +0000
ROA not before: Mon 06 Jan 2025 20:48:51 +0000
ROA not after: Mon 05 Jan 2026 20:53:51 +0000
asID: 203758
IP address blocks: 185.172.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:c0:3d:a0:84:01:2a:f9:46:2e:58:b5:29:65:83:d4:50:f8:b7:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Jan 6 20:48:51 2025 GMT
Not After : Jan 5 20:53:51 2026 GMT
Subject: CN=B813E4DCEE4C36249BE04447019FBEED2728D4E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:94:8c:eb:12:9e:be:6b:cb:db:15:ca:66:76:
a5:8a:14:d2:a4:1a:12:61:cb:43:4f:8c:29:65:f4:
f2:50:47:98:28:bc:71:d3:25:b6:43:dd:d7:64:34:
28:97:b3:9e:6b:9a:0e:53:16:6f:83:64:4f:97:cc:
c9:64:3e:06:45:16:df:bc:78:4a:a7:f7:a9:4f:a5:
2b:86:21:73:1d:9d:c7:1f:55:fb:8b:8a:44:4e:f7:
63:9c:6e:7b:bb:0e:6b:c4:a5:80:0d:aa:a2:db:22:
59:b8:da:2b:9a:d9:df:a9:89:86:48:f3:32:ad:19:
77:9b:2b:a7:57:13:5f:04:a2:df:70:3e:ea:02:8c:
4e:b8:74:ec:6e:0b:9e:0d:c8:85:3e:a3:19:7b:3e:
9d:70:15:c9:b6:44:30:fa:7e:dc:3e:00:d9:cf:51:
98:78:02:93:90:34:f9:f8:b0:0a:47:bf:d2:d6:21:
5f:67:51:9e:0b:99:97:29:58:a9:bf:d7:18:fe:6a:
59:db:1b:44:39:74:d2:49:ca:8f:3e:a3:39:64:b8:
e1:a7:99:cd:92:82:2d:5d:a1:98:6c:46:4f:e2:b6:
e9:d2:4b:ba:4a:9f:37:50:3f:3c:c3:fe:54:dd:bb:
fb:db:85:2e:05:04:ab:73:f9:8c:a2:7b:52:ed:84:
c5:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:13:E4:DC:EE:4C:36:24:9B:E0:44:47:01:9F:BE:ED:27:28:D4:E3
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137352e302f32342d3234203d3e20323033373538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.175.0/24
Signature Algorithm: sha256WithRSAEncryption
81:a8:80:17:85:85:a2:9e:cd:dd:6b:13:cc:b9:3d:26:ce:31:
49:50:91:00:76:2b:42:fe:fa:13:d1:1f:77:f4:27:22:ff:a6:
61:a9:f0:b6:0b:75:9c:a6:ba:fa:9e:22:a8:ff:97:5e:a2:d0:
2e:3e:aa:49:bc:aa:f8:d1:db:5d:2d:c9:e0:da:cd:1f:92:18:
7a:dc:b3:67:01:e0:d9:9d:1a:1b:ee:85:fe:a6:f3:73:3b:98:
e4:70:d0:95:46:46:9a:0b:9e:90:6e:de:61:ad:30:c3:77:8d:
70:e1:35:88:47:f1:87:fd:6d:b3:bd:5f:66:5e:49:7e:4a:33:
ac:6d:55:c6:22:e6:9f:88:d8:cf:7d:84:1c:77:3e:1b:39:81:
55:55:be:f9:14:cf:eb:2f:b8:09:35:07:2d:12:75:b7:fc:41:
77:72:a1:b5:90:64:1c:69:26:b0:62:75:e4:23:fe:ad:d3:62:
42:79:0d:a2:42:f0:00:e9:e1:49:41:79:b6:12:5f:16:d1:73:
30:da:f9:d0:18:92:e2:bf:6a:b7:5f:b7:f3:f8:00:a9:8d:2e:
df:0c:63:c5:d7:dd:df:98:97:01:f1:ed:46:91:18:23:9e:86:
47:0f:43:54:97:5f:23:a7:13:2e:e8:c4:7d:27:88:3f:03:af:
8b:fa:89:c0
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgIUScA9oIQBKvlGLli1KWWD1FD4tywwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzBjYmQ3YTk4MTdlNDcwMDA5YzBmNDBlYTFlMzcwYWE3
OWI1ZmQ5MTAeFw0yNTAxMDYyMDQ4NTFaFw0yNjAxMDUyMDUzNTFaMDMxMTAvBgNV
BAMTKEI4MTNFNERDRUU0QzM2MjQ5QkUwNDQ0NzAxOUZCRUVEMjcyOEQ0RTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRlIzrEp6+a8vbFcpmdqWKFNKk
GhJhy0NPjCll9PJQR5govHHTJbZD3ddkNCiXs55rmg5TFm+DZE+XzMlkPgZFFt+8
eEqn96lPpSuGIXMdnccfVfuLikRO92Ocbnu7DmvEpYANqqLbIlm42iua2d+piYZI
8zKtGXebK6dXE18Eot9wPuoCjE64dOxuC54NyIU+oxl7Pp1wFcm2RDD6ftw+ANnP
UZh4ApOQNPn4sApHv9LWIV9nUZ4LmZcpWKm/1xj+alnbG0Q5dNJJyo8+ozlkuOGn
mc2Sgi1doZhsRk/itunSS7pKnzdQPzzD/lTdu/vbhS4FBKtz+Yyie1LthMWVAgMB
AAGjggJBMIICPTAdBgNVHQ4EFgQUuBPk3O5MNiSb4ERHAZ++7Sco1OMwHwYDVR0j
BBgwFoAUcMvXqYF+RwAJwPQOoeNwqnm1/ZEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYjczMzJhZjAtZGQ3My00NzU1LTlkMjAtNjkzZWE4Mjg5
ZjhhLzAvNzBDQkQ3QTk4MTdFNDcwMDA5QzBGNDBFQTFFMzcwQUE3OUI1RkQ5MS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NNdlhxWUYtUndBSndQUU9vZU53cW5t
MV9aRS5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYjczMzJhZjAt
ZGQ3My00NzU1LTlkMjAtNjkzZWE4Mjg5ZjhhLzAvMzEzODM1MmUzMTM3MzIyZTMx
MzczNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzAzMzM3MzUzOC5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEALmsrzANBgkqhkiG9w0BAQsFAAOCAQEAgaiAF4WFop7N3WsTzLk9Js4xSVCR
AHYrQv76E9Efd/QnIv+mYanwtgt1nKa6+p4iqP+XXqLQLj6qSbyq+NHbXS3J4NrN
H5IYetyzZwHg2Z0aG+6F/qbzczuY5HDQlUZGmguekG7eYa0ww3eNcOE1iEfxh/1t
s71fZl5JfkozrG1VxiLmn4jYz32EHHc+GzmBVVW++RTP6y+4CTUHLRJ1t/xBd3Kh
tZBkHGkmsGJ15CP+rdNiQnkNokLwAOnhSUF5thJfFtFzMNr50BiS4r9qt1+38/gA
qY0u3wxjxdfd35iXAfHtRpEYI56GRw9DVJdfI6cTLujEfSeIPwOvi/qJwA==
-----END CERTIFICATE-----
Generated at Sat Apr 5 07:57:14 2025 by rpki-client