Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3133302e3138352e3131392e302f32342d3332203d3e203531313637.roa
File: 3133302e3138352e3131392e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: 9uBZ28MMHiECkXrfLa2URgHOpkNAUgo14VHLAnvg6IY=
Subject key identifier: 91:90:25:A6:20:D7:96:D9:CA:05:F1:DA:7B:2F:E3:71:DA:16:99:61
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 79B58447DA44F516905B50595934FEB8B3FC0DD9
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3133302e3138352e3131392e302f32342d3332203d3e203531313637.roa
Signing time: Fri 27 Dec 2024 11:47:16 +0000
ROA not before: Fri 27 Dec 2024 11:42:16 +0000
ROA not after: Fri 26 Dec 2025 11:47:16 +0000
asID: 51167
IP address blocks: 130.185.119.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:b5:84:47:da:44:f5:16:90:5b:50:59:59:34:fe:b8:b3:fc:0d:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:16 2024 GMT
Not After : Dec 26 11:47:16 2025 GMT
Subject: CN=919025A620D796D9CA05F1DA7B2FE371DA169961
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7c:cf:b3:67:9e:84:36:cb:87:54:c3:a4:87:
08:4e:a4:c3:1d:70:76:bb:f8:76:f7:d1:01:0f:59:
5f:b5:83:02:fb:9d:8b:71:6c:dc:1f:2b:e2:08:37:
a3:11:5b:e9:a8:37:9d:3b:66:9a:71:af:38:36:31:
ab:12:c3:2d:95:26:98:83:7a:3c:6e:4d:e7:0a:e9:
18:c9:5a:dc:9d:65:b3:ec:36:24:bf:df:c9:44:64:
da:ad:fd:1e:c5:71:47:b1:80:d8:42:32:8c:a3:07:
b2:6e:1b:3b:92:b7:c9:f1:7e:cc:99:d6:dd:5b:e4:
28:54:c2:e5:e0:b3:c7:05:2f:8f:0b:e8:71:60:b4:
eb:e6:c1:87:a8:08:1f:b1:07:db:1b:53:27:14:c5:
ea:53:67:a6:55:a2:84:06:29:40:80:1e:8f:62:67:
d7:43:0d:10:5a:18:a7:08:99:60:95:eb:af:88:c4:
92:f3:a3:bf:08:6e:da:ee:3b:0e:66:e6:7d:47:ec:
a9:b4:12:b8:0a:ee:ba:49:9d:41:5f:e9:d6:e9:75:
4f:d2:99:b2:57:f4:a8:ff:4c:f4:cf:75:5c:55:6d:
6d:cc:16:05:57:f8:b2:e9:43:22:e3:fd:e8:4b:05:
96:1f:07:88:b1:ed:fc:85:97:dc:09:95:a4:e0:12:
ea:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:90:25:A6:20:D7:96:D9:CA:05:F1:DA:7B:2F:E3:71:DA:16:99:61
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3133302e3138352e3131392e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.185.119.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:3f:47:43:f3:db:5a:a9:a1:c9:84:af:46:62:a7:63:fd:35:
78:53:dc:6f:5f:b3:6e:b2:ca:e1:c3:db:4a:59:d2:f5:97:42:
32:8f:ee:af:ab:35:6b:90:de:85:db:15:f6:0a:cd:c3:95:b5:
70:44:4c:c1:64:63:9a:45:3c:f3:20:17:52:14:d1:6b:ce:f5:
51:97:99:2c:5a:7a:d9:ee:6d:b5:ac:6e:18:50:34:f2:71:b3:
7d:db:67:21:51:8c:f5:43:46:62:1c:78:97:8d:da:97:b3:fd:
15:de:bf:e2:76:a3:29:35:7b:16:4f:26:fc:5a:20:c2:a1:e1:
15:32:07:3f:27:55:dd:e5:43:6d:97:33:47:7c:b8:6d:d1:5d:
e9:63:c0:e3:b7:b6:a0:94:47:96:68:37:ac:db:82:e6:ef:1f:
14:85:47:e5:6e:ba:15:26:97:5f:c6:60:dd:72:cd:40:90:ce:
06:1b:e6:9d:8a:14:06:38:4c:c1:57:c9:1a:66:d6:f1:fb:52:
19:f4:43:58:d5:4d:0f:f0:dd:d1:5b:c3:33:2d:79:e8:73:ad:
be:2a:24:b9:4e:4e:40:09:be:86:2c:f2:95:ed:38:d2:78:91:
ba:87:1b:04:c4:ff:37:bf:ed:a2:e2:1b:da:00:90:e6:c2:6f:
c0:9c:76:00
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Apr 3 05:23:08 2025 by rpki-client