Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32352e302f32342d3234203d3e20323030303137.roa
File: 38322e3131382e32352e302f32342d3234203d3e20323030303137.roa (raw, json)
Hash identifier: /OyIJaLE+mhRhZIR2yKBo2hL3SVr5nE9pQSCUdwkC1I=
Subject key identifier: F1:B2:8B:12:5F:11:75:DD:28:89:4F:51:68:B8:45:A7:2E:3B:D7:97
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 576B0D4723C541A03A1F5217083DAAF824299F11
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32352e302f32342d3234203d3e20323030303137.roa
Signing time: Mon 24 Feb 2025 11:53:55 +0000
ROA not before: Mon 24 Feb 2025 11:48:55 +0000
ROA not after: Mon 23 Feb 2026 11:53:55 +0000
asID: 200017
IP address blocks: 82.118.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:6b:0d:47:23:c5:41:a0:3a:1f:52:17:08:3d:aa:f8:24:29:9f:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Feb 24 11:48:55 2025 GMT
Not After : Feb 23 11:53:55 2026 GMT
Subject: CN=F1B28B125F1175DD28894F5168B845A72E3BD797
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:18:d7:78:1c:a4:d3:0d:ce:28:f0:bc:38:ae:
3e:4f:6f:50:37:4f:9c:9e:4d:34:e5:6f:72:e8:aa:
31:95:ec:48:de:91:85:a0:75:a9:41:17:a1:9b:4f:
88:3e:df:ff:4a:bb:04:19:69:66:c4:f1:eb:3e:8c:
f8:05:cd:44:20:e9:18:20:0b:79:81:6e:04:80:1f:
8a:b6:1d:b8:58:bf:5b:80:bb:6b:61:0f:6c:55:47:
87:6a:8b:15:d5:7f:88:04:2f:11:11:80:be:eb:97:
72:10:49:fa:8b:c8:4e:64:ce:29:a2:27:b3:94:bd:
8a:27:44:76:cb:16:ec:13:34:f3:54:4c:c0:c8:85:
8c:3b:a0:51:cf:76:10:4f:df:19:6a:97:1b:48:f3:
d0:ab:e1:5c:da:f3:6e:43:b6:aa:d5:9c:27:e4:23:
0d:01:3b:cc:c7:69:34:cc:47:a0:ea:55:19:4b:a5:
1b:e5:9a:1e:5f:70:89:50:5d:c3:52:a7:da:6c:19:
ba:b2:6e:16:0c:b9:91:69:e1:fb:62:2a:34:47:61:
04:48:c1:4f:a1:71:87:08:04:d1:29:18:8b:f8:94:
c4:58:96:85:ab:56:4f:91:b0:c4:11:f3:e6:11:a1:
41:45:58:e2:49:7f:92:85:a9:a9:1d:2b:ac:7e:6c:
ad:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:B2:8B:12:5F:11:75:DD:28:89:4F:51:68:B8:45:A7:2E:3B:D7:97
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32352e302f32342d3234203d3e20323030303137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.25.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:71:60:de:f5:c7:77:78:9e:c9:d4:7b:df:47:8e:c2:93:9e:
b5:8e:d3:ce:01:28:7b:58:eb:ba:e2:35:49:79:ab:5c:cd:b6:
06:85:e6:81:b3:4c:e1:79:0e:ae:c9:60:c6:9c:6c:2e:07:a6:
c2:94:db:de:6d:b1:84:b9:86:d3:6a:81:aa:28:f3:e5:80:f2:
01:52:52:4d:43:42:ab:16:99:2a:25:cb:3b:a2:f9:64:9e:9c:
24:0e:f1:70:8d:90:50:e7:85:0c:43:a1:cd:e9:82:47:75:fc:
28:12:9b:11:55:90:c5:2d:57:29:f6:55:b0:6a:0f:89:1b:39:
f0:e7:92:7f:16:57:a9:43:d1:62:97:fb:75:80:d9:a4:25:8c:
38:8a:49:1c:2c:2e:c2:ef:d3:5a:e2:ba:c8:57:b1:a8:9a:a9:
bf:87:f4:e8:d3:00:5c:60:bb:07:46:1d:80:62:00:4c:0f:db:
a5:16:74:30:3d:9f:53:d5:f7:d9:91:36:ce:00:43:e4:d4:6c:
5a:50:67:93:83:fb:da:d1:19:e1:20:a1:dc:fb:63:02:43:fc:
ff:57:fa:d0:0d:51:b0:8a:4d:b2:34:0c:b1:84:dd:a9:49:a2:
ae:33:b5:a8:f9:bb:c2:ad:56:2f:c2:8c:c9:90:ff:2d:16:ef:
dc:6b:c0:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:06:54 2025 by rpki-client