Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3138352e3231322e3131332e302f32342d3234203d3e20323132303237.roa
File: 3138352e3231322e3131332e302f32342d3234203d3e20323132303237.roa (raw, json)
Hash identifier: XWTBx63xfbmQURWIW7eazyLuUbcWBp98vWdzbfA30t0=
Subject key identifier: C0:87:DF:D4:C4:E6:1A:5B:35:26:68:83:20:C4:A4:87:05:01:44:9C
Certificate issuer: /CN=cefce449bea8deaedb1804dba25c584df5873dc4
Certificate serial: 16D5223C2A219ADFADD0195050C241160C4BCE08
Authority key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3138352e3231322e3131332e302f32342d3234203d3e20323132303237.roa
Signing time: Tue 11 Mar 2025 07:57:23 +0000
ROA not before: Tue 11 Mar 2025 07:52:23 +0000
ROA not after: Tue 10 Mar 2026 07:57:23 +0000
asID: 212027
IP address blocks: 185.212.113.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:d5:22:3c:2a:21:9a:df:ad:d0:19:50:50:c2:41:16:0c:4b:ce:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cefce449bea8deaedb1804dba25c584df5873dc4
Validity
Not Before: Mar 11 07:52:23 2025 GMT
Not After : Mar 10 07:57:23 2026 GMT
Subject: CN=C087DFD4C4E61A5B3526688320C4A4870501449C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:d8:73:54:c1:86:53:0f:3f:8b:6c:cb:40:bb:
95:ca:8c:5a:a3:ab:f2:24:17:2d:45:90:b8:1f:9a:
16:03:21:dc:a1:00:b4:3b:f6:2e:bf:a8:f1:a5:5a:
fe:ec:c2:1e:42:de:e0:8c:0f:cf:60:ad:c5:90:bb:
c7:c6:f8:8c:d7:11:c1:6c:46:9b:7a:53:99:97:1d:
b1:10:d4:02:2c:9c:ad:cb:3e:7b:06:3e:2b:86:15:
43:de:71:62:aa:90:4c:83:cc:b6:ee:37:96:a1:39:
98:f6:f4:ab:65:b1:19:88:63:19:a9:2a:d2:da:a3:
50:6f:30:31:02:b9:a5:70:f8:a1:89:b5:39:88:7e:
74:0b:72:eb:38:8e:8f:9f:8f:56:99:5f:d8:35:58:
ef:28:ee:c8:42:02:74:43:8e:ae:f5:9d:86:4d:fc:
0f:a4:25:c9:c2:da:8b:61:bb:48:7b:6b:d5:dd:a8:
33:b6:12:ea:d5:a6:e1:22:de:99:e6:ae:de:f3:c2:
47:d9:cc:9d:56:33:56:33:0e:b4:f5:1f:dd:a3:08:
77:48:44:1b:21:63:8f:2a:12:4a:bb:f0:72:3b:b7:
38:2a:c3:9c:f0:48:9a:1a:9a:90:a6:34:05:fd:73:
4b:6f:c5:76:1b:2d:fa:cc:07:c6:36:99:6e:90:fe:
18:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:87:DF:D4:C4:E6:1A:5B:35:26:68:83:20:C4:A4:87:05:01:44:9C
X509v3 Authority Key Identifier:
keyid:CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3138352e3231322e3131332e302f32342d3234203d3e20323132303237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.113.0/24
Signature Algorithm: sha256WithRSAEncryption
87:87:75:d9:65:bb:81:8c:23:a7:c3:d7:5a:9a:eb:12:83:f1:
7d:51:18:6f:b9:a6:32:7a:c0:69:2f:93:4e:6b:5c:73:55:50:
c8:34:4f:b6:6b:b7:74:80:2f:13:35:96:d5:88:cd:b2:a6:76:
18:1b:ed:63:f4:ae:6e:44:c7:f0:46:81:85:16:99:7e:2d:6c:
d8:22:d3:96:f3:95:37:e8:d9:74:8c:ad:29:5d:28:9d:fb:ed:
4c:a9:9d:bf:75:c3:a1:15:e2:20:2b:08:ef:0f:5d:7b:d0:ee:
0d:49:59:ad:03:f7:67:e4:9c:ff:6f:f3:36:2b:6b:97:1c:5f:
fe:ec:da:1c:d2:38:af:b0:f9:76:21:a9:5f:fa:b4:32:56:99:
3f:bb:db:66:d0:e1:6b:8d:b8:d0:c1:63:84:18:0f:28:06:28:
f3:85:cf:14:80:ce:0d:88:98:05:70:64:08:4e:87:9c:f9:03:
b9:57:94:a4:0c:b9:af:ae:50:0f:8e:0b:a4:e4:24:5f:f2:b9:
c9:62:40:6a:9f:06:03:77:0f:99:ba:08:0c:1d:0b:a5:dc:31:
8c:df:ad:35:08:65:a5:37:bd:8e:a9:11:1d:de:2d:0d:fa:63:
cc:74:12:6c:6f:59:35:fa:39:a7:40:ce:0b:a9:bd:9d:be:0f:
df:5e:10:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:36:30 2025 by rpki-client