Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32372e302f32342d3234203d3e203530313034.roa
File: 38322e3131382e32372e302f32342d3234203d3e203530313034.roa (raw, json)
Hash identifier: 8A0oPojpsmXFybf4dgdnJDERfo+KI/6jndzKf+FvCFk=
Subject key identifier: E9:76:58:03:65:80:07:31:8D:6E:BC:41:69:41:EA:DD:6F:0D:95:F3
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 19B06818480928B51A7100088B89C1AA88AFDFE0
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32372e302f32342d3234203d3e203530313034.roa
Signing time: Thu 06 Mar 2025 14:53:56 +0000
ROA not before: Thu 06 Mar 2025 14:48:56 +0000
ROA not after: Thu 05 Mar 2026 14:53:56 +0000
asID: 50104
IP address blocks: 82.118.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:b0:68:18:48:09:28:b5:1a:71:00:08:8b:89:c1:aa:88:af:df:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Mar 6 14:48:56 2025 GMT
Not After : Mar 5 14:53:56 2026 GMT
Subject: CN=E9765803658007318D6EBC416941EADD6F0D95F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:68:f5:42:1a:08:2f:a9:84:4b:69:c0:2e:bd:
65:0b:d4:e0:94:9d:6f:fa:49:bd:3c:74:cb:51:f5:
87:cf:59:b1:a3:79:b5:be:15:1a:97:0f:fd:d3:c9:
e6:c5:0e:4c:c6:72:6c:fc:bf:91:64:f6:8d:d7:5d:
33:5a:f1:48:d0:09:a2:71:8b:22:f6:96:ad:da:11:
c5:72:2c:46:f4:d3:8d:e3:ca:83:23:c8:09:8b:a2:
50:34:6a:84:70:b5:ef:d6:37:4f:ca:be:c0:36:aa:
79:26:12:94:7b:4f:91:cd:8b:30:ac:a2:dd:dc:16:
fa:c3:d2:e3:2c:55:29:f0:c9:e4:9e:ac:8d:f3:0c:
ea:60:2d:ef:c2:a0:8b:1c:a4:13:5f:e1:e7:90:9b:
8a:c7:f0:1a:8a:85:da:08:b2:8a:26:44:d7:e0:e9:
8d:2d:f2:18:ab:26:ea:93:36:54:c5:be:04:f6:b5:
4f:47:a2:d3:d9:a1:7c:b1:95:2b:a1:0d:54:1f:fd:
41:0a:b8:48:89:02:44:7a:b9:91:7e:4c:e7:a6:5a:
47:7f:ed:e3:a3:f1:0c:60:c7:05:81:aa:5b:26:e4:
e1:1f:c3:57:16:56:36:ac:bf:06:1d:3a:1b:81:f7:
6b:f5:16:2f:79:a2:e2:61:15:c7:34:27:3d:ce:60:
d0:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:76:58:03:65:80:07:31:8D:6E:BC:41:69:41:EA:DD:6F:0D:95:F3
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32372e302f32342d3234203d3e203530313034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.27.0/24
Signature Algorithm: sha256WithRSAEncryption
15:9c:e6:4f:23:62:66:ca:ac:c6:8b:a2:cc:a1:85:a9:7a:95:
8e:85:39:c8:ef:0d:10:2b:74:3e:9b:88:4a:a9:57:29:94:a6:
e1:37:05:4b:61:4f:5d:c0:dd:47:44:92:01:14:cc:d1:02:8a:
77:f3:bb:f0:ad:86:bd:b5:b7:cb:b9:29:eb:05:6e:bd:6c:5d:
65:b8:6a:29:3a:92:17:5d:00:8a:84:aa:fd:75:41:aa:43:47:
17:5e:30:b2:a2:6d:0c:df:eb:27:fe:7c:89:76:e9:15:2b:f7:
f4:d4:6e:d4:41:f5:24:27:f8:80:11:5e:c9:eb:01:4e:16:6e:
4c:79:0d:59:30:ec:32:8e:b3:82:eb:bb:cc:cf:ae:4b:78:21:
44:fa:c9:ec:3b:0a:c3:de:01:a1:e6:24:32:ad:58:2f:08:f0:
44:14:7e:3a:19:93:5b:70:1d:78:95:02:72:4a:19:43:6a:9d:
23:66:0b:71:e7:2b:21:9c:6e:06:ba:c2:41:2e:9f:08:cf:4c:
2d:13:11:b0:11:ce:cb:d4:29:2d:2b:6f:a1:38:02:22:6c:a2:
8f:4a:6a:41:c9:36:10:2f:2b:df:dd:e9:75:2a:37:b8:84:e0:
10:b2:9b:ad:22:70:4c:9c:75:65:f8:6c:a3:2a:e7:86:76:7d:
59:df:59:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 11:26:56 2025 by rpki-client