Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/AS214498.roa
File: AS214498.roa (raw, json)
Hash identifier: Duo3jKBC7U8mqfEwjYCxNQDhjyTaWgNgLLIu0xAjBLI=
Subject key identifier: C7:EE:F8:79:89:E9:BF:1B:7E:C2:D8:E8:E7:49:99:DE:D7:2E:5D:67
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 0CC85C41C3AC802C2872A8A3818D0AFDAB17855B
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/AS214498.roa
Signing time: Fri 19 Jul 2024 13:37:09 +0000
ROA not before: Fri 19 Jul 2024 13:32:09 +0000
ROA not after: Fri 18 Jul 2025 13:37:09 +0000
asID: 214498
IP address blocks: 195.200.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:c8:5c:41:c3:ac:80:2c:28:72:a8:a3:81:8d:0a:fd:ab:17:85:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Jul 19 13:32:09 2024 GMT
Not After : Jul 18 13:37:09 2025 GMT
Subject: CN=C7EEF87989E9BF1B7EC2D8E8E74999DED72E5D67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:12:05:9c:1f:ef:91:bf:3e:30:29:9f:8d:4f:
c7:1f:71:ee:f0:c7:bc:48:00:36:32:db:59:fa:40:
ac:18:27:eb:c9:7f:8b:cb:fb:e4:09:20:f7:b6:4a:
7e:ae:d1:0f:61:96:d0:1a:9c:b9:72:95:a7:ce:06:
47:a3:84:f1:53:5c:65:53:19:80:d6:f7:be:a2:dc:
a1:e1:7e:bb:79:0f:75:46:ff:17:0b:05:7c:ea:37:
38:c5:10:cf:3e:9e:60:e6:98:24:76:67:26:01:28:
e7:dc:61:fd:79:cb:d8:24:ab:3f:1c:9f:3f:08:1c:
ee:48:0d:9c:1b:86:08:45:85:cd:e5:3d:ea:e6:ff:
9d:a3:c4:db:88:8b:66:d6:f3:44:0d:5e:e9:63:3c:
c5:b5:c3:16:a4:e0:9c:90:94:5d:e6:45:74:1f:54:
6c:c0:39:be:7d:8f:23:84:b9:6f:21:00:94:04:e9:
f5:65:df:23:02:2e:c8:30:db:5f:a9:1e:cd:8c:64:
de:5c:d2:86:13:d5:c5:53:53:55:05:9a:e6:a6:92:
a3:bd:a0:d0:ec:b0:98:e6:77:8f:32:52:fd:41:15:
31:53:dc:c8:05:c3:ba:e9:c8:51:d7:c5:6a:07:45:
a7:d3:57:aa:37:b2:e1:51:26:e1:0c:fd:54:07:00:
57:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:EE:F8:79:89:E9:BF:1B:7E:C2:D8:E8:E7:49:99:DE:D7:2E:5D:67
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/AS214498.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.200.20.0/24
Signature Algorithm: sha256WithRSAEncryption
63:4f:31:75:90:d6:83:ac:40:a2:f1:80:2a:9c:83:28:b6:51:
6a:aa:2b:a7:24:3d:63:7d:00:3a:a6:87:0c:04:57:21:fa:f6:
88:ae:ec:9e:84:e2:20:4e:44:49:94:d1:fd:8a:26:16:5e:84:
dd:76:95:75:d7:01:58:8e:a0:b9:a6:d7:09:fc:95:2c:d2:c9:
84:ff:72:6c:fc:27:2d:4b:c8:9c:fc:33:21:9f:bc:f6:82:24:
bc:bd:83:c0:c8:25:ea:28:9b:a6:9f:75:7f:e5:14:35:f9:f3:
b3:52:e7:39:89:97:f7:8b:59:d9:c2:09:f4:3a:23:7d:b7:f5:
3f:70:17:11:5c:88:e7:28:ab:19:03:31:48:8c:7e:47:9f:fc:
a7:f2:8b:82:e5:35:cd:d6:17:01:b2:27:a1:be:e8:55:fe:b0:
c7:50:ad:32:cf:58:9d:53:e2:69:98:83:67:af:d4:df:ff:c8:
14:12:04:e4:71:dd:2e:5f:ba:4d:16:b2:aa:f4:01:16:79:47:
28:75:94:4d:16:6f:7f:ad:a9:4c:92:69:aa:91:59:fa:d6:88:
c9:f6:38:a2:05:02:08:10:a8:47:b5:54:d4:57:8a:9c:56:c8:
0f:12:93:13:2b:c8:55:b7:11:c3:f2:97:70:15:c9:2a:a4:71:
a7:ec:11:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 23 12:55:04 2024 by rpki-client on console-ams.rpki-client.org