Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3133302e3138352e3131372e302f32342d3234203d3e203632323430.roa
File: 3133302e3138352e3131372e302f32342d3234203d3e203632323430.roa (raw, json)
Hash identifier: moTDUKJOAbVCzSteuu2SqfNvOB3KqryqwVXisvIX4og=
Subject key identifier: 73:F6:E3:89:93:AE:F3:F3:6E:0E:5B:E9:8A:08:03:2F:8A:DC:6B:B8
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 6F5C0E27306B547D69F8D80E67856CB8CAACD489
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3133302e3138352e3131372e302f32342d3234203d3e203632323430.roa
Signing time: Fri 27 Dec 2024 11:47:33 +0000
ROA not before: Fri 27 Dec 2024 11:42:33 +0000
ROA not after: Fri 26 Dec 2025 11:47:33 +0000
asID: 62240
IP address blocks: 130.185.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:5c:0e:27:30:6b:54:7d:69:f8:d8:0e:67:85:6c:b8:ca:ac:d4:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:33 2024 GMT
Not After : Dec 26 11:47:33 2025 GMT
Subject: CN=73F6E38993AEF3F36E0E5BE98A08032F8ADC6BB8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a2:61:6f:de:37:72:c8:e7:e0:3c:3a:13:ac:
f6:0a:d6:a2:14:65:42:7d:20:4f:c5:50:9e:77:d8:
80:7c:f2:22:67:91:2d:34:e9:d5:1a:c3:e0:4d:f0:
b1:06:6c:0c:7f:bb:19:8f:06:1d:1a:e5:51:e9:0d:
50:9c:47:c4:2e:7b:43:3a:f2:37:9f:e5:95:34:11:
c9:38:ed:64:df:0e:f0:0e:86:79:f9:fe:49:62:23:
e7:f7:b0:bc:e8:da:98:a1:a2:dd:88:0b:39:3d:2e:
d4:71:83:e5:06:7d:8a:cf:46:c7:1f:6c:50:9c:e5:
66:5a:f3:f2:38:ac:99:23:dc:83:6c:97:57:d9:e2:
16:08:53:cb:0d:fc:c8:75:6e:db:b9:2f:f8:6b:92:
e3:88:c3:79:fb:b1:b5:10:e4:e5:ce:1b:f8:5f:ba:
4e:37:c6:3b:b9:8d:24:77:32:eb:78:c4:6d:96:53:
53:04:f3:63:6f:de:58:e3:23:fc:7a:de:34:1d:16:
46:18:2d:8b:3f:26:16:d4:b1:bb:93:0a:59:cd:83:
40:ae:13:6c:74:ad:c0:50:dd:41:0d:a5:d0:d3:8f:
31:03:c1:74:9d:8d:4e:6b:19:f4:a0:54:b7:2b:2e:
b3:d0:e9:01:e1:32:c1:05:4d:3d:2b:e7:e6:d5:62:
52:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:F6:E3:89:93:AE:F3:F3:6E:0E:5B:E9:8A:08:03:2F:8A:DC:6B:B8
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3133302e3138352e3131372e302f32342d3234203d3e203632323430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.185.117.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:a6:ca:09:27:27:5c:f9:03:e0:70:a0:f0:d7:7b:e0:66:54:
22:56:84:1e:1a:1e:78:b0:40:1e:f3:6b:43:d0:5f:7c:db:c7:
d2:1c:b3:df:02:8d:c1:eb:a7:53:08:b6:61:a2:93:06:e1:d6:
01:cf:cb:22:0e:6d:68:a6:b7:16:d4:7b:3f:0c:95:45:b2:20:
d0:96:3d:18:04:9d:16:ae:09:69:2c:1f:7f:37:4c:fd:a8:e6:
64:97:c1:e8:72:fd:49:27:7a:21:df:6b:56:6a:3e:6c:71:99:
5a:b3:f9:a0:28:9c:83:c7:d3:b2:3f:c3:e9:5d:f9:36:79:61:
28:ec:bc:31:80:cd:f9:17:91:e1:63:02:80:31:01:eb:18:ac:
47:53:d3:12:a6:3e:77:fa:e7:e2:63:e8:60:60:30:03:4e:a5:
4d:ca:bd:03:f4:e0:44:3e:36:15:d0:c7:0b:f2:83:2d:80:13:
63:36:1a:2b:57:fd:af:ca:62:53:3f:c5:fd:a3:94:95:a6:9b:
ef:3c:22:c3:38:fa:ca:23:ae:d2:3a:38:55:2d:26:d4:73:f9:
6d:47:8b:fe:bb:22:67:01:02:11:5d:3a:8a:f4:87:fb:40:42:
13:b6:f2:74:c0:fe:ac:25:1f:3c:d2:17:26:e8:99:d6:ef:25:
98:f8:db:8d
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Apr 3 22:20:18 2025 by rpki-client