Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3231372e3139382e3138372e302f32342d3234203d3e20323131343135.roa
File: 3231372e3139382e3138372e302f32342d3234203d3e20323131343135.roa (raw, json)
Hash identifier: C9UN/z7rRSIBHXCw3Mn5S1vnSskjCCo5azhWVB5o2V8=
Subject key identifier: 9F:87:8E:9F:3F:8D:79:8B:0B:41:A9:1B:2F:06:89:A4:26:F5:14:2E
Certificate issuer: /CN=c79d02c618861ad45baf78ce39023cbcb494a7bf
Certificate serial: 66E761A36466545B5E5E1B2C91E3C91553493916
Authority key identifier: C7:9D:02:C6:18:86:1A:D4:5B:AF:78:CE:39:02:3C:BC:B4:94:A7:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3231372e3139382e3138372e302f32342d3234203d3e20323131343135.roa
Signing time: Thu 12 Dec 2024 09:53:48 +0000
ROA not before: Thu 12 Dec 2024 09:48:48 +0000
ROA not after: Thu 11 Dec 2025 09:53:48 +0000
asID: 211415
IP address blocks: 217.198.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:e7:61:a3:64:66:54:5b:5e:5e:1b:2c:91:e3:c9:15:53:49:39:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c79d02c618861ad45baf78ce39023cbcb494a7bf
Validity
Not Before: Dec 12 09:48:48 2024 GMT
Not After : Dec 11 09:53:48 2025 GMT
Subject: CN=9F878E9F3F8D798B0B41A91B2F0689A426F5142E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e5:f5:7d:7e:fb:b9:e8:a9:8d:7f:90:91:25:
06:dc:a3:e5:aa:38:b0:31:f0:e7:f5:b9:ea:e0:c3:
6b:54:e5:a6:a7:50:7f:51:cb:8f:1a:c1:9e:79:1f:
be:f7:9b:1b:e3:b8:9c:89:a1:01:31:ca:3d:27:a0:
4d:09:68:19:9e:52:d6:aa:af:cd:d9:91:4e:a4:9b:
da:b6:9d:97:59:cd:fc:34:07:82:d0:01:9b:44:39:
3a:fa:76:34:0e:87:65:2c:c5:53:f2:cd:3c:43:68:
43:d4:dd:15:ba:9e:6c:67:b9:f4:8d:8d:3c:f2:77:
fc:a3:20:48:15:66:a7:e6:3b:b9:2c:99:f1:b1:69:
3a:a7:85:54:a7:0a:ec:b7:ea:26:e4:d4:18:1e:ea:
c0:d3:01:da:37:a9:12:d6:73:86:3e:69:5a:82:79:
fd:a7:0e:ce:55:8f:24:41:73:19:67:cc:c2:70:f0:
8e:f6:75:1e:f4:e3:fd:42:39:c7:96:2d:45:38:b7:
59:b7:f2:c9:c1:05:5b:be:45:31:da:01:54:88:21:
e1:3b:c8:d1:0a:81:2c:28:d2:e1:f6:27:5b:41:56:
bd:9a:4f:50:31:7b:b0:4d:4e:79:05:7b:59:6d:49:
e4:ce:06:10:fd:84:bc:2a:2c:14:73:46:9c:37:54:
c1:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:87:8E:9F:3F:8D:79:8B:0B:41:A9:1B:2F:06:89:A4:26:F5:14:2E
X509v3 Authority Key Identifier:
keyid:C7:9D:02:C6:18:86:1A:D4:5B:AF:78:CE:39:02:3C:BC:B4:94:A7:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3231372e3139382e3138372e302f32342d3234203d3e20323131343135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.198.187.0/24
Signature Algorithm: sha256WithRSAEncryption
14:64:6a:75:23:20:01:84:22:b2:c7:0f:76:de:7d:d7:98:d9:
af:4c:25:65:57:bb:46:0c:69:5e:73:56:e3:d2:34:c3:a0:75:
95:3f:0a:a4:95:3d:68:6b:d9:19:10:5c:6e:69:3b:34:4a:ec:
fa:17:cc:28:0b:73:a4:e9:26:4c:9c:34:94:d8:be:00:2e:48:
19:32:7a:7c:e4:51:f0:2e:2e:0b:1c:fe:7f:60:6f:36:81:d5:
ad:b5:dc:6a:82:c0:c9:19:6e:f8:52:72:2f:2e:ca:7b:24:a8:
de:73:11:2a:0a:0e:d5:b5:dc:1d:38:2c:d5:e3:b8:0f:9e:af:
06:69:50:98:33:13:83:c5:69:4b:9c:e9:61:1d:56:70:76:13:
33:4c:89:8b:50:20:f9:2f:77:1a:18:1a:be:cc:b0:db:3f:1e:
ea:ab:bd:a7:9a:83:1e:3f:9b:63:54:b1:f9:53:72:b8:c4:f3:
65:a8:bc:ff:7f:39:cd:d5:21:a1:e0:7e:d5:71:46:14:35:67:
65:03:72:b2:50:16:b0:cb:fa:8e:b4:90:44:de:5a:05:4a:24:
7c:f5:6f:fe:86:3a:2e:91:83:51:0f:af:50:59:b9:97:af:30:
28:5a:79:90:d2:a8:2e:2e:48:8f:6d:aa:eb:b7:18:3b:6a:de:
e4:21:7e:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:54:57 2025 by rpki-client