Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3232392e3230312e302f32342d3234203d3e20323030303137.roa
File: 3138352e3232392e3230312e302f32342d3234203d3e20323030303137.roa (raw, json)
Hash identifier: ezbmX/yRe+yRvkLs/8FFZoupwCiBI67aZ+0JqkrMl4Q=
Subject key identifier: DC:67:94:36:6D:0E:1C:0D:1F:71:9F:1B:2D:4E:D1:7F:60:A2:25:D2
Certificate issuer: /CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Certificate serial: 5E065C3AD1E469F3A92E6C16F1A075797E8FDFB3
Authority key identifier: 3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3232392e3230312e302f32342d3234203d3e20323030303137.roa
Signing time: Wed 05 Mar 2025 15:53:55 +0000
ROA not before: Wed 05 Mar 2025 15:48:55 +0000
ROA not after: Wed 04 Mar 2026 15:53:55 +0000
asID: 200017
IP address blocks: 185.229.201.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:06:5c:3a:d1:e4:69:f3:a9:2e:6c:16:f1:a0:75:79:7e:8f:df:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Validity
Not Before: Mar 5 15:48:55 2025 GMT
Not After : Mar 4 15:53:55 2026 GMT
Subject: CN=DC6794366D0E1C0D1F719F1B2D4ED17F60A225D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:44:49:00:11:d1:48:98:c9:3e:7c:7f:cd:73:
e4:a4:e4:62:19:9b:c5:48:eb:6a:0a:66:7d:b4:f0:
c4:91:97:e9:c4:eb:dc:39:93:9d:58:39:71:10:e2:
9c:9c:27:d0:d8:04:7a:25:0d:38:ab:c5:be:f5:64:
ec:f8:f5:96:50:11:1a:16:8f:34:5d:83:e6:d2:ab:
7a:6c:6e:19:fb:8b:50:4a:2d:a2:28:47:ca:d3:8e:
e2:30:21:99:5f:bd:46:c7:b1:30:a2:d8:35:af:c3:
98:3c:68:b5:de:a0:c6:bf:e1:33:82:7c:ab:21:08:
db:60:91:12:e5:25:e7:f0:cb:10:6e:f2:d2:09:9f:
27:26:b4:d9:41:5d:d9:4b:b3:cc:c3:ef:33:39:2c:
7e:38:ff:c4:c3:ea:6a:2e:e4:7d:ed:93:57:17:4e:
9a:a9:95:36:71:d0:33:b7:30:50:45:92:fa:d1:df:
e0:15:69:9a:d9:81:0c:e9:b0:03:77:cc:a5:13:a9:
5f:ce:81:3c:8e:12:88:53:81:e3:68:a9:72:76:b0:
27:f7:03:5a:5f:e6:03:62:e7:92:1d:5d:40:ce:69:
f7:88:3e:84:14:9d:cf:1f:f6:79:0e:d1:04:9f:ee:
cb:40:88:c8:9d:76:a8:57:b0:97:98:37:66:be:1a:
1a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:67:94:36:6D:0E:1C:0D:1F:71:9F:1B:2D:4E:D1:7F:60:A2:25:D2
X509v3 Authority Key Identifier:
keyid:3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3232392e3230312e302f32342d3234203d3e20323030303137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.201.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:87:a2:32:31:a3:3c:80:e7:a6:8f:4a:d4:79:e6:03:eb:6c:
e8:7b:7d:df:c8:2e:59:bc:ac:35:4c:a6:e7:df:ac:0f:56:c3:
1b:a6:05:e7:c0:a3:3b:32:e9:77:51:ec:22:7f:d9:4f:5e:a3:
4a:78:50:79:94:90:6f:eb:ea:a7:6e:a4:65:23:2d:40:db:8a:
6b:a3:7e:c3:bc:8e:e6:04:02:60:c1:7b:e2:bc:70:3a:59:2e:
c8:72:f6:65:f1:55:91:95:ce:73:4b:73:8e:10:9d:99:29:0c:
08:c5:a3:4b:f2:5b:30:6e:bc:2b:ff:a5:fa:3e:ce:fa:05:c5:
54:f0:dd:54:bc:57:d9:43:c3:97:b8:4b:17:e8:8b:fd:af:2f:
74:e5:b6:10:f5:43:b2:57:e5:37:15:a9:ec:f7:b7:98:f5:d5:
f0:d2:40:07:7a:6d:09:a7:ab:cf:7c:c1:39:9b:28:29:89:df:
cf:05:f7:44:6f:7f:5c:3e:62:b3:ce:0e:3b:9e:22:e8:7f:dd:
03:48:d1:e0:cf:5c:d2:54:c7:95:4c:f7:5d:f8:46:31:d0:ad:
9d:8c:1d:2b:86:81:f8:f4:e9:33:0b:e6:10:6f:8e:e6:ac:70:
39:0e:03:97:7c:75:b1:e2:fa:36:d9:8a:99:18:9d:96:06:3d:
0e:b6:f5:31
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgIUXgZcOtHkafOpLmwW8aB1eX6P37MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoM2U4NzBiOWE3MDAzYzRmZDljNTFiZDM1NGE5ZGVmYTNm
Yjc3YjRhOTAeFw0yNTAzMDUxNTQ4NTVaFw0yNjAzMDQxNTUzNTVaMDMxMTAvBgNV
BAMTKERDNjc5NDM2NkQwRTFDMEQxRjcxOUYxQjJENEVEMTdGNjBBMjI1RDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHREkAEdFImMk+fH/Nc+Sk5GIZ
m8VI62oKZn208MSRl+nE69w5k51YOXEQ4pycJ9DYBHolDTirxb71ZOz49ZZQERoW
jzRdg+bSq3psbhn7i1BKLaIoR8rTjuIwIZlfvUbHsTCi2DWvw5g8aLXeoMa/4TOC
fKshCNtgkRLlJefwyxBu8tIJnycmtNlBXdlLs8zD7zM5LH44/8TD6mou5H3tk1cX
TpqplTZx0DO3MFBFkvrR3+AVaZrZgQzpsAN3zKUTqV/OgTyOEohTgeNoqXJ2sCf3
A1pf5gNi55IdXUDOafeIPoQUnc8f9nkO0QSf7stAiMiddqhXsJeYN2a+GhrrAgMB
AAGjggJBMIICPTAdBgNVHQ4EFgQU3GeUNm0OHA0fcZ8bLU7Rf2CiJdIwHwYDVR0j
BBgwFoAUPocLmnADxP2cUb01Sp3vo/t3tKkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzVkMThlODItNGQ2OC00NWE2LWE1ZGYtY2FjMTE1YWQy
Mjc5LzAvM0U4NzBCOUE3MDAzQzRGRDlDNTFCRDM1NEE5REVGQTNGQjc3QjRBOS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1BvY0xtbkFEeFAyY1ViMDFTcDN2b190
M3RLay5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYzVkMThlODIt
NGQ2OC00NWE2LWE1ZGYtY2FjMTE1YWQyMjc5LzAvMzEzODM1MmUzMjMyMzkyZTMy
MzAzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzAzMDMwMzEzNy5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEALnlyTANBgkqhkiG9w0BAQsFAAOCAQEAf4eiMjGjPIDnpo9K1HnmA+ts6Ht9
38guWbysNUym59+sD1bDG6YF58CjOzLpd1HsIn/ZT16jSnhQeZSQb+vqp26kZSMt
QNuKa6N+w7yO5gQCYMF74rxwOlkuyHL2ZfFVkZXOc0tzjhCdmSkMCMWjS/JbMG68
K/+l+j7O+gXFVPDdVLxX2UPDl7hLF+iL/a8vdOW2EPVDslflNxWp7Pe3mPXV8NJA
B3ptCaerz3zBOZsoKYnfzwX3RG9/XD5is84OO54i6H/dA0jR4M9c0lTHlUz3XfhG
MdCtnYwdK4aB+PTpMwvmEG+O5qxwOQ4Dl3x1seL6NtmKmRidlgY9Drb1MQ==
-----END CERTIFICATE-----
Generated at Sat Apr 5 04:43:36 2025 by rpki-client