Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3133302e36302e302f32342d3234203d3e20323039383234.roa
File: 3138352e3133302e36302e302f32342d3234203d3e20323039383234.roa (raw, json)
Hash identifier: 3DvMUlL3ozouzilq8guog5+f3qPaL3kb/93EkJRtV9s=
Subject key identifier: B4:CE:EE:37:39:04:59:54:96:E3:4C:3D:C5:20:9B:09:21:CA:41:B4
Certificate issuer: /CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Certificate serial: 400A5589DF902EAA94D8A60C0C7E277A758B4EE1
Authority key identifier: 3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3133302e36302e302f32342d3234203d3e20323039383234.roa
Signing time: Sun 24 Nov 2024 11:15:21 +0000
ROA not before: Sun 24 Nov 2024 11:10:21 +0000
ROA not after: Sun 23 Nov 2025 11:15:21 +0000
asID: 209824
IP address blocks: 185.130.60.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:0a:55:89:df:90:2e:aa:94:d8:a6:0c:0c:7e:27:7a:75:8b:4e:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Validity
Not Before: Nov 24 11:10:21 2024 GMT
Not After : Nov 23 11:15:21 2025 GMT
Subject: CN=B4CEEE373904595496E34C3DC5209B0921CA41B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:f5:c5:60:a3:e4:de:a0:95:52:90:d1:48:91:
39:c9:03:1b:f6:48:98:d4:54:0e:4e:46:38:74:39:
67:f2:90:64:ad:da:80:bc:d5:45:0e:1c:61:31:2a:
d2:da:c4:eb:70:d2:1b:b5:df:84:6a:e8:46:bb:f5:
a5:53:4d:4f:c8:37:48:e7:15:d7:7c:a3:8f:53:13:
c5:63:73:ac:4b:ec:b5:32:ef:5b:6e:a9:17:1c:22:
1d:44:a4:26:10:22:dc:58:c8:c1:06:e2:26:30:71:
0e:e8:12:83:f7:93:04:eb:a4:36:d4:9d:3c:0c:32:
23:c0:63:aa:eb:59:d1:47:6c:cf:69:d9:e9:f2:29:
1e:dc:e9:2a:8b:7a:fe:03:1b:26:a4:22:e2:7b:c6:
7d:00:44:cb:b5:93:47:ee:b8:33:41:84:65:2f:82:
f9:e2:de:be:3e:af:66:83:73:41:73:07:69:d3:45:
f9:ee:9f:b5:87:07:48:0a:d3:e1:51:f0:f3:bc:9a:
f6:71:fd:9c:19:cb:db:2b:32:78:8e:6c:f2:35:26:
1c:9a:97:d7:97:6a:00:e5:98:93:05:5c:08:c7:3f:
3f:f2:21:e1:63:5a:67:be:8b:05:40:d7:99:70:4d:
bd:ee:44:3b:ad:1c:8c:ab:a6:79:da:97:43:73:85:
a9:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:CE:EE:37:39:04:59:54:96:E3:4C:3D:C5:20:9B:09:21:CA:41:B4
X509v3 Authority Key Identifier:
keyid:3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3133302e36302e302f32342d3234203d3e20323039383234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.130.60.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:01:24:1d:3c:1d:7d:79:b2:f2:07:23:43:dd:6f:f1:b1:e3:
51:fb:88:d0:52:cc:ca:da:99:fe:97:0d:18:ef:6a:0d:0d:42:
0a:85:3b:52:4c:bb:29:32:71:af:4d:df:bf:b9:42:45:b6:05:
2c:99:4f:37:cf:c4:55:e6:aa:b8:a5:24:ed:85:f9:20:08:74:
66:7b:dc:dd:ce:cb:b3:46:fe:82:d9:ff:9e:f1:cc:5f:7b:d6:
12:f7:00:0a:0d:53:78:e3:91:3b:c9:8e:bb:f3:73:88:a9:77:
74:4a:1c:46:51:13:16:26:2e:3c:fb:45:18:f0:ef:45:d6:0b:
5c:ea:85:e3:1d:44:74:9f:63:17:6a:eb:0d:f3:7d:42:5d:16:
72:e6:8c:20:ee:79:48:4f:1e:1e:5b:d9:e3:fa:83:a7:d5:1e:
83:58:b8:8a:91:9d:dd:22:a8:26:13:1f:96:3c:72:f6:e5:1e:
5a:0e:b3:f0:6b:e6:8c:fa:c6:89:3c:41:72:7c:67:0b:4d:c9:
c0:67:61:b7:25:b7:d5:02:1c:7b:e9:cf:c9:93:8c:dd:c0:36:
a8:e1:2b:8a:e1:63:f9:a9:af:82:75:54:23:de:3c:a7:da:12:
06:49:5c:de:82:a1:58:c4:62:2b:85:cb:e4:c4:a3:62:61:33:
57:ba:b7:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:33:47 2025 by rpki-client