Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3231332e3232352e3233382e302f32342d3234203d3e20323732363932.roa
File: 3231332e3232352e3233382e302f32342d3234203d3e20323732363932.roa (raw, json)
Hash identifier: AVdkqhp0phQFlAd+yWjOG1O0TvrPMG2mXD10FNHbrqw=
Subject key identifier: 93:02:38:39:50:D6:A4:E2:C2:B0:66:BD:C3:7A:8B:7D:D5:49:43:15
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 703B85671812554DD1E098BF431003DF0390D77C
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3231332e3232352e3233382e302f32342d3234203d3e20323732363932.roa
Signing time: Thu 06 Mar 2025 11:53:56 +0000
ROA not before: Thu 06 Mar 2025 11:48:56 +0000
ROA not after: Thu 05 Mar 2026 11:53:56 +0000
asID: 272692
IP address blocks: 213.225.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:3b:85:67:18:12:55:4d:d1:e0:98:bf:43:10:03:df:03:90:d7:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Mar 6 11:48:56 2025 GMT
Not After : Mar 5 11:53:56 2026 GMT
Subject: CN=9302383950D6A4E2C2B066BDC37A8B7DD5494315
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:9f:e0:7e:13:cd:19:cb:b6:50:5a:78:bd:c3:
c8:0d:a1:d1:c0:4c:b8:df:25:bc:d2:88:7d:f6:3b:
2a:14:a1:70:fb:03:b4:56:d4:ed:44:6b:2a:c0:b3:
9f:cd:65:b1:b8:bd:db:65:90:ad:2f:bb:93:ae:9c:
02:25:00:69:dd:96:df:c8:25:be:f8:26:c6:53:ed:
db:75:8b:06:a0:5f:8c:f8:42:d1:61:f2:62:24:4c:
52:b6:e3:e6:c8:cd:f3:a5:b8:78:24:71:b7:f3:39:
9f:c9:47:a6:48:9a:01:bb:5f:bb:ca:57:9b:13:85:
cd:e0:29:13:c9:00:f8:14:ed:75:6d:ac:74:e4:c5:
1b:5b:47:88:8a:27:7f:da:a5:54:07:6d:87:55:e3:
e3:d8:6e:61:53:4b:fc:f3:0f:e0:f6:ce:99:ad:b2:
5a:2e:6a:ae:86:55:72:e9:2d:a4:30:6e:4e:aa:5f:
37:ef:f8:cd:e9:92:76:1b:4b:cb:d0:5d:e1:0c:93:
d2:de:62:f0:4b:96:ee:fc:28:7d:9c:dc:b4:af:61:
ff:2c:ae:fd:c5:83:ab:b1:7e:70:84:bb:9d:f1:9e:
28:4d:64:c4:f8:05:15:2f:8b:41:25:0b:18:7a:38:
1d:a5:26:97:18:06:c0:99:52:33:11:83:9f:2c:6d:
f1:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:02:38:39:50:D6:A4:E2:C2:B0:66:BD:C3:7A:8B:7D:D5:49:43:15
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3231332e3232352e3233382e302f32342d3234203d3e20323732363932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.225.238.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:51:bc:19:24:1f:d5:8d:20:84:32:d9:38:05:52:41:48:33:
07:93:0c:fc:ba:6e:25:a6:43:63:d4:ed:26:bd:de:45:51:f9:
02:92:c6:a3:48:c2:e1:3a:66:72:1c:1f:fd:1c:9f:0b:ea:b2:
f0:50:be:ef:70:02:50:c1:47:c9:43:63:4a:77:0d:f7:ec:c9:
1d:54:5c:25:8e:d2:55:73:8a:50:28:79:62:07:6d:a5:29:f2:
54:aa:52:b8:8f:d8:cf:e7:67:f5:3f:8f:53:04:b6:93:c9:57:
03:36:4f:62:e4:91:ab:77:83:d2:f7:cb:7e:7c:5a:00:e0:81:
60:ca:6f:c6:7d:c5:ec:55:4d:73:53:f4:c5:41:16:02:74:f3:
9f:9b:c7:9e:f5:02:ed:2e:19:df:b8:42:f8:c9:6e:96:86:34:
b4:eb:ed:a0:c5:f5:03:a7:8a:e8:f8:ea:d3:61:6e:27:29:6b:
78:aa:b8:e0:24:ae:48:2f:0e:0c:8f:02:4c:14:13:45:20:29:
1b:e0:7b:22:60:5e:e4:b1:7d:55:a8:31:ad:b9:27:51:3b:c2:
f7:2c:97:b8:a0:a6:1c:a8:df:d0:95:e1:5b:fd:71:ca:4e:7a:
a2:7e:72:ba:d5:c1:45:8f:13:66:dd:ac:19:0e:79:77:e1:e0:
31:60:ec:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:11:47 2025 by rpki-client