Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214329.roa
File: AS214329.roa (raw, json)
Hash identifier: iSf8zjzHRkBS1dA0AXNCGw6JuDHe2jzEGmd6trnJfI8=
Subject key identifier: 99:57:19:1D:7A:CE:F3:E4:6F:0D:86:DC:73:F2:57:BC:91:26:81:9A
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 77CB075CD4BBCABE48E6E777AE458EBCCBCDF728
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214329.roa
Signing time: Wed 19 Feb 2025 14:20:08 +0000
ROA not before: Wed 19 Feb 2025 14:15:08 +0000
ROA not after: Wed 18 Feb 2026 14:20:08 +0000
asID: 214329
IP address blocks: 92.113.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:cb:07:5c:d4:bb:ca:be:48:e6:e7:77:ae:45:8e:bc:cb:cd:f7:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Feb 19 14:15:08 2025 GMT
Not After : Feb 18 14:20:08 2026 GMT
Subject: CN=9957191D7ACEF3E46F0D86DC73F257BC9126819A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0c:47:f4:95:93:ef:ba:49:17:5d:4f:42:78:
a5:2d:12:f4:3e:e5:f0:e8:11:95:5d:64:ce:31:24:
23:77:32:d4:24:46:18:27:50:06:78:96:0d:40:0d:
f9:f7:71:95:91:c3:55:26:f7:6d:18:72:ca:11:09:
3e:7e:f7:ab:9a:fa:bd:66:7d:71:58:8d:33:28:4f:
21:74:8b:cc:f4:0b:cd:a3:d0:8f:0c:51:8f:bd:a5:
23:ae:08:66:b5:49:af:de:25:a3:a7:85:1e:a1:70:
80:54:33:89:4c:48:fc:59:77:86:69:0f:58:43:3a:
04:6b:c2:fa:79:a0:82:47:c6:26:3b:05:0e:b3:de:
0c:51:b0:92:e6:a1:ed:8b:82:82:6c:76:dc:9c:2c:
b5:ff:be:6f:02:6b:bd:b9:30:0a:dd:3f:da:74:13:
a7:d7:22:06:b6:7f:c8:84:c4:12:67:bf:c2:ad:a7:
29:4e:3c:63:6a:3b:b1:b9:74:8f:ef:3a:2a:e6:3f:
d5:81:ce:47:ae:c3:98:4e:dc:d3:b3:0f:66:4b:7e:
43:5e:da:fd:9d:b8:15:45:cc:4b:ea:9a:e1:53:10:
cf:d2:6f:5b:36:7f:c7:16:28:51:6f:eb:4a:4b:a0:
1f:0f:b7:52:f7:40:fb:72:0d:f0:b1:f3:75:83:61:
1a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:57:19:1D:7A:CE:F3:E4:6F:0D:86:DC:73:F2:57:BC:91:26:81:9A
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214329.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.113.91.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:e2:23:7c:2e:7e:4f:99:42:9f:2c:42:11:a2:d2:c1:c0:fe:
8c:e7:13:92:da:17:1f:d4:15:a8:b8:dc:27:27:eb:e6:ab:41:
2a:45:70:16:5f:89:b9:fc:fd:a3:b5:d3:27:fd:c9:2e:85:e6:
78:25:a3:1d:e0:fe:ad:8c:fb:7a:64:04:3b:ca:ea:3a:5d:fe:
85:4a:88:e6:1b:9f:f2:53:c8:2b:3f:5b:5c:76:87:d8:28:52:
b4:74:eb:ca:40:1d:b2:44:0d:6b:2d:e4:78:4b:ba:50:56:40:
4e:42:42:1a:02:93:11:19:8c:e7:b8:09:61:cc:13:ba:7f:9e:
b6:16:9a:d1:9e:23:3b:c5:2f:78:18:2b:57:0c:1c:b5:1e:df:
5d:7c:3b:28:02:56:93:fd:5e:43:fb:b9:fa:bb:62:1b:6b:6d:
d8:2e:67:d8:a5:b8:53:e8:7f:d2:fc:55:bb:12:a6:a7:f5:1f:
7f:03:fb:cb:b2:42:f3:55:92:47:ef:a9:d0:ea:21:af:01:75:
90:8d:bd:26:56:7d:dc:7d:ce:39:4d:90:e9:6e:8a:8f:f4:6d:
69:fc:6c:1c:a8:3c:3c:7c:e2:fb:3b:f6:77:a6:d1:e0:01:37:
4e:72:cf:40:8e:fc:53:0f:fa:58:6a:24:6f:5d:a5:5a:04:11:
a0:87:15:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:31:20 2025 by rpki-client