Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS3320.roa
File: AS3320.roa (raw, json)
Hash identifier: iH/toQcssEox1iZCseJ3S4NPzdYTS14LyeOeKPpz3f0=
Subject key identifier: 0E:88:27:15:42:F4:1A:9E:39:C4:28:EC:CF:A9:D8:B1:52:FB:38:5D
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 514D285C2E911DD09FD40096640EE554A1B9F2CD
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS3320.roa
Signing time: Thu 20 Mar 2025 00:02:52 +0000
ROA not before: Wed 19 Mar 2025 23:57:52 +0000
ROA not after: Thu 19 Mar 2026 00:02:52 +0000
asID: 3320
IP address blocks: 92.112.10.0/24 maxlen: 24
95.135.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:4d:28:5c:2e:91:1d:d0:9f:d4:00:96:64:0e:e5:54:a1:b9:f2:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Mar 19 23:57:52 2025 GMT
Not After : Mar 19 00:02:52 2026 GMT
Subject: CN=0E88271542F41A9E39C428ECCFA9D8B152FB385D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:25:d2:69:df:89:f6:42:d8:76:e7:a2:20:6d:
49:89:47:1e:b2:28:60:b6:bd:7f:33:e4:a9:1c:07:
7c:9b:03:ac:1a:92:4b:a5:46:19:11:3e:57:2c:f0:
3b:8e:f6:03:c4:9c:29:d2:62:45:23:a5:ab:c4:32:
3a:27:bc:5f:e0:c4:79:87:7f:17:ed:4b:ab:75:3b:
16:f8:e6:59:1a:6f:b9:b0:6e:20:b5:0a:b5:ea:05:
fd:bc:49:bd:a4:53:e6:ac:0b:67:9b:8d:1c:a7:1d:
30:b7:6d:ee:84:3f:29:80:9f:78:ee:22:44:f2:71:
03:8b:ad:1a:f8:d1:da:f2:c3:47:5b:44:d9:dd:db:
b3:fb:81:51:2d:76:f8:79:9b:be:d8:80:15:d5:49:
f9:32:f0:7c:b7:5f:cd:cc:46:d0:2e:1f:f5:00:90:
05:7c:8b:60:20:ee:68:e8:50:c2:13:18:ac:67:0d:
8c:bf:8f:c3:6e:4d:24:2d:3a:2e:4d:03:c3:ca:67:
5f:6e:27:42:22:77:e2:8a:e0:ee:bd:de:b6:22:c7:
86:bf:81:b5:18:87:dd:75:09:b9:c8:0b:55:c7:af:
0d:4f:51:08:00:ab:01:8b:d6:92:c7:c7:f1:d3:2f:
9c:8c:c1:69:23:04:25:48:48:39:17:46:21:39:ac:
17:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:88:27:15:42:F4:1A:9E:39:C4:28:EC:CF:A9:D8:B1:52:FB:38:5D
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS3320.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.112.10.0/24
95.135.222.0/24
Signature Algorithm: sha256WithRSAEncryption
40:a7:12:62:79:6d:ca:e2:76:0a:e6:0b:80:07:3c:30:23:d0:
9d:1a:f3:26:6a:94:12:1e:a2:33:e9:7b:2e:e5:8f:f0:b3:c2:
f6:53:43:76:b7:99:10:10:5e:30:01:0f:a6:d2:24:f4:73:7c:
47:eb:c4:4f:97:8a:e7:21:41:ec:7f:8b:ca:41:c6:22:16:d1:
ef:98:1e:d1:d3:f2:6c:08:72:3e:62:0a:94:16:b5:82:e3:88:
6f:e1:b2:fd:d9:e9:1c:38:04:c2:eb:3f:a8:53:fd:55:cf:cc:
6f:7a:4f:cd:99:bc:ea:f2:cc:5a:76:ec:0f:ba:bd:22:d0:ab:
e7:6c:a1:17:bc:a0:32:d1:72:07:a1:29:22:98:51:91:3c:19:
1e:13:45:a2:ef:f2:2c:b9:31:a0:06:dd:10:0a:7c:da:0d:bd:
37:17:45:77:63:53:b1:4a:b7:50:ea:4c:9e:38:21:e2:b4:a4:
63:34:ad:cc:ae:07:1b:7a:95:74:bf:20:91:d5:ef:db:70:00:
2e:fe:aa:83:c8:d2:39:c6:80:26:ac:4d:bd:91:e3:13:e5:f4:
1c:d7:f6:9d:dd:27:d9:82:1d:de:d1:3f:d7:cd:63:55:df:16:
d0:4f:74:ca:91:0f:06:38:cb:76:17:4e:ce:9a:9e:81:be:33:
74:f8:3b:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:31:17 2025 by rpki-client