Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3134312e39382e37352e302f32342d3234203d3e20313437323933.roa
File: 3134312e39382e37352e302f32342d3234203d3e20313437323933.roa (raw, json)
Hash identifier: aj2+quOBBuiersuDwNqMK6KB60d2vVLzFpEPHAXgc+w=
Subject key identifier: BD:AF:F2:F6:7E:FC:95:2C:42:4F:E5:49:B0:C5:D9:46:36:EF:83:DE
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 08918C70862F07621AFDF62C95A1BFA09C91B714
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3134312e39382e37352e302f32342d3234203d3e20313437323933.roa
Signing time: Sat 29 Mar 2025 10:53:59 +0000
ROA not before: Sat 29 Mar 2025 10:48:59 +0000
ROA not after: Sat 28 Mar 2026 10:53:59 +0000
asID: 147293
IP address blocks: 141.98.75.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:91:8c:70:86:2f:07:62:1a:fd:f6:2c:95:a1:bf:a0:9c:91:b7:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Mar 29 10:48:59 2025 GMT
Not After : Mar 28 10:53:59 2026 GMT
Subject: CN=BDAFF2F67EFC952C424FE549B0C5D94636EF83DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:2e:d1:7e:c1:dd:06:35:e7:f5:ad:10:c7:ca:
53:6e:45:58:aa:3f:c1:11:ab:99:f0:60:4d:93:ce:
4c:63:a6:b2:9f:c3:e5:15:a4:1e:4f:ed:0a:0a:1e:
78:ea:f8:37:c3:17:c6:5d:4f:1e:62:4f:be:04:bf:
43:a9:ac:ad:f3:10:03:f1:fc:01:e7:29:3f:45:de:
79:35:49:81:f2:9a:79:99:94:55:02:e1:2e:31:79:
65:e7:0c:82:a7:79:75:26:be:20:61:02:3c:d5:79:
7a:b4:49:92:e1:f3:06:72:92:73:74:e2:74:14:de:
3c:07:c0:12:a4:60:1e:3f:59:58:15:ce:60:00:e7:
29:e4:37:c1:91:8e:86:e5:cc:60:f4:03:2e:a8:f9:
13:9a:35:9d:66:7e:8e:03:4d:13:56:ab:9f:a1:58:
08:41:11:c8:25:e0:7a:ba:b3:4b:70:53:4b:9b:2b:
45:ea:2e:68:78:62:55:ee:c1:1e:57:5f:47:59:f0:
8e:9c:3b:33:7a:fe:04:84:56:e0:a9:1a:72:bc:84:
a5:51:02:dc:c8:ab:76:2d:01:58:e2:29:1e:69:7d:
f4:cc:9d:12:a3:12:d1:ac:c6:c4:53:87:2c:66:5f:
cb:e7:23:89:74:de:f9:7e:d9:08:ea:93:93:58:2d:
11:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:AF:F2:F6:7E:FC:95:2C:42:4F:E5:49:B0:C5:D9:46:36:EF:83:DE
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3134312e39382e37352e302f32342d3234203d3e20313437323933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.75.0/24
Signature Algorithm: sha256WithRSAEncryption
79:2f:0b:89:68:9f:4a:e5:ca:d2:c3:86:c3:a1:af:f2:4f:27:
f8:69:f6:0b:8d:db:61:7a:ba:f3:d2:d5:48:8a:7e:a6:83:a4:
88:bd:09:7c:95:c0:52:64:71:4c:04:a5:da:57:66:9c:64:0a:
66:41:c2:61:8a:5d:72:ba:9a:0b:fb:71:ff:44:0c:8d:74:29:
4b:f6:c4:e3:48:7a:47:20:a9:f9:7d:78:2d:c4:40:0e:56:71:
b2:0f:e4:7a:cd:d8:30:3b:f5:5b:1d:cc:50:3e:cd:00:2c:ab:
51:a5:2b:94:55:66:27:e3:51:1e:0c:60:61:7a:63:f2:c1:2f:
e1:a7:fa:52:1a:a7:fd:91:02:64:26:85:26:0d:d5:91:89:0d:
a6:6e:d4:49:29:16:9d:1f:51:92:59:e2:25:7e:71:8a:01:bf:
e3:be:ad:5a:95:b3:b6:16:a3:28:d7:3b:fe:4d:79:7f:cc:0b:
14:2e:a0:df:9a:a2:2f:7d:f1:dd:7a:c2:d0:0d:e5:5a:83:a8:
34:33:97:b0:89:e8:02:f2:88:c9:0c:05:c4:a0:55:aa:c2:a7:
d7:e4:b4:a2:73:89:09:89:8e:fb:c6:a4:92:25:fb:00:a4:eb:
cd:64:ef:59:7a:db:38:b8:62:d1:5a:5f:c7:68:33:3a:2e:61:
1c:11:11:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:01:57 2025 by rpki-client