Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e3130332e302f32342d3234203d3e203134343435.roa
File: 3139332e3234362e3130332e302f32342d3234203d3e203134343435.roa (raw, json)
Hash identifier: l6qcRLucLHqihkuJ2lM0iEaIdloIlQe3n37Cgllv9yA=
Subject key identifier: A2:4A:C1:44:28:D2:44:F1:14:C6:CA:0C:E7:E3:12:F1:F7:26:EE:5C
Certificate issuer: /CN=c79d02c618861ad45baf78ce39023cbcb494a7bf
Certificate serial: 74C9899B15E0A87B0000D01133273BCE6F82EEA9
Authority key identifier: C7:9D:02:C6:18:86:1A:D4:5B:AF:78:CE:39:02:3C:BC:B4:94:A7:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e3130332e302f32342d3234203d3e203134343435.roa
Signing time: Thu 27 Feb 2025 11:53:55 +0000
ROA not before: Thu 27 Feb 2025 11:48:55 +0000
ROA not after: Thu 26 Feb 2026 11:53:55 +0000
asID: 14445
IP address blocks: 193.246.103.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:c9:89:9b:15:e0:a8:7b:00:00:d0:11:33:27:3b:ce:6f:82:ee:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c79d02c618861ad45baf78ce39023cbcb494a7bf
Validity
Not Before: Feb 27 11:48:55 2025 GMT
Not After : Feb 26 11:53:55 2026 GMT
Subject: CN=A24AC14428D244F114C6CA0CE7E312F1F726EE5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a4:c9:ef:8b:87:52:ac:51:db:a1:24:71:bc:
16:3a:2d:e9:09:17:9c:8e:5c:3e:3c:5b:bd:ae:8e:
9e:bc:f7:5e:20:46:7e:62:f6:89:f1:1f:c9:5c:23:
c1:b1:03:a9:fa:7f:c6:2d:7c:c3:f4:fd:7c:7d:20:
ad:a7:61:3a:07:d0:28:2a:37:14:0d:b9:83:3a:39:
a1:28:8d:b3:d0:a5:1b:56:68:26:22:f5:63:90:11:
25:74:12:6d:7f:59:76:c7:50:08:76:8a:9a:95:c4:
bf:c7:0a:f1:1c:0f:e5:cf:0c:4c:ea:ee:5c:c7:bc:
42:b3:7a:4f:d3:49:4c:e0:b8:25:7a:55:9c:08:c2:
76:e3:a5:72:39:d8:e4:06:6d:6e:63:d9:5d:ae:70:
ca:cc:13:be:f2:e4:57:be:e3:07:57:0a:88:d7:ff:
15:f0:55:eb:b1:41:60:a6:76:ac:99:62:14:17:f3:
ed:e6:41:74:3e:02:fe:4e:ab:ae:d7:5e:77:47:09:
76:91:53:ba:08:29:a1:d2:8f:05:6f:15:5f:c5:9f:
f0:e6:3c:c4:0d:a4:60:9c:8c:05:20:f8:69:cf:0f:
93:ea:18:cb:77:d4:49:92:19:08:57:58:71:06:6b:
87:eb:a4:c1:57:e1:48:ac:33:79:a7:f9:c3:73:3b:
67:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:4A:C1:44:28:D2:44:F1:14:C6:CA:0C:E7:E3:12:F1:F7:26:EE:5C
X509v3 Authority Key Identifier:
keyid:C7:9D:02:C6:18:86:1A:D4:5B:AF:78:CE:39:02:3C:BC:B4:94:A7:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e3130332e302f32342d3234203d3e203134343435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.103.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:ee:47:fb:11:d8:16:7c:de:98:2d:fe:9e:cc:43:87:f0:21:
e3:5b:79:cf:5a:88:94:ea:21:e3:7a:0b:e8:69:9b:ac:50:92:
80:a3:03:b4:8c:60:05:1c:45:bf:67:7c:dd:66:fa:8b:0f:3f:
52:4b:14:25:37:b6:19:7e:f1:ea:38:45:60:a7:1a:c0:b1:b4:
35:18:67:70:11:63:01:1a:fd:75:8a:13:ae:7a:bb:50:75:3a:
6d:88:4f:2f:7d:9c:1a:0d:1a:2b:34:c0:39:24:47:bf:ec:dc:
39:44:91:a6:a4:a9:13:70:89:8e:ac:cc:02:23:f3:44:ea:fc:
c3:ac:9e:a8:96:93:70:e1:22:32:4f:21:76:36:c7:04:07:31:
4a:7f:d8:d3:43:42:ce:04:a1:5f:2e:51:7a:49:db:28:19:0a:
f7:e3:8b:29:6e:3b:00:4b:a5:72:52:34:4b:41:dd:31:78:49:
b3:15:f3:c5:29:09:fd:8d:63:b8:18:57:d3:f9:ee:10:84:7b:
c0:81:f3:28:4c:57:37:13:78:60:bc:57:f4:77:87:eb:f4:ee:
6b:09:ee:20:2c:a1:77:a4:05:2b:75:5a:65:d5:73:4c:59:fd:
e3:fd:cc:d7:34:98:26:89:99:ce:98:96:6a:b0:35:f5:4b:69:
4f:14:3e:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:32:46 2025 by rpki-client