Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3137362e3131332e37382e302f32342d3234203d3e20313336373837.roa
File: 3137362e3131332e37382e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: XgaJv/pKBUXbxOXbTxGM/ppjglOJ1QW2XTsehOZENl0=
Subject key identifier: CD:A1:0A:1E:B7:DC:45:4E:93:92:FB:3D:52:93:5B:D0:89:DD:44:6F
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 36F43BF787A83FD4C8DA9C9E9B2D60B10E823C92
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3137362e3131332e37382e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 20 Dec 2024 15:23:28 +0000
ROA not before: Fri 20 Dec 2024 15:18:28 +0000
ROA not after: Fri 19 Dec 2025 15:23:28 +0000
asID: 136787
IP address blocks: 176.113.78.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:f4:3b:f7:87:a8:3f:d4:c8:da:9c:9e:9b:2d:60:b1:0e:82:3c:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 20 15:18:28 2024 GMT
Not After : Dec 19 15:23:28 2025 GMT
Subject: CN=CDA10A1EB7DC454E9392FB3D52935BD089DD446F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:bc:39:22:30:bc:1e:07:2a:7b:4c:db:fb:19:
1b:53:43:18:04:12:b1:c4:69:4d:02:71:af:c2:e0:
1a:c5:53:4a:55:1f:ab:97:90:c9:72:7a:8f:dd:85:
c7:89:36:c6:36:52:ca:95:90:63:b5:ad:c2:55:2d:
a8:36:a2:bf:2e:4b:08:14:87:70:e9:88:be:ef:21:
9e:dc:2f:da:22:54:36:96:84:03:66:b6:96:9e:24:
66:7d:b9:6d:b8:69:78:ac:87:05:f8:33:ff:9c:e3:
77:5c:be:cd:34:b2:b6:43:b9:75:8a:4b:91:6c:d0:
60:45:b5:a5:39:33:e0:f0:17:f4:6b:2d:46:54:13:
b5:da:02:50:46:db:a3:53:02:b2:1d:51:59:b8:58:
c8:bd:83:4e:6f:58:31:b0:d8:25:eb:28:23:d8:ea:
52:9b:f3:38:42:32:2f:1d:c0:13:d9:f7:d6:0e:fc:
b5:4d:87:3c:b8:40:8c:eb:a6:0e:b2:de:26:28:4f:
9f:3a:4f:67:3c:c3:b4:8b:7e:98:8c:03:5b:10:19:
16:e2:bd:8e:96:ce:1c:ca:19:50:93:5d:a4:03:a2:
9d:9b:dd:12:bd:77:ca:37:de:0e:c7:c1:6b:61:74:
86:97:65:78:7e:c5:f2:4d:c2:ba:08:87:5d:e2:b0:
04:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:A1:0A:1E:B7:DC:45:4E:93:92:FB:3D:52:93:5B:D0:89:DD:44:6F
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3137362e3131332e37382e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.113.78.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:cc:fb:9c:10:b1:2f:a5:ec:80:d5:f2:32:90:7b:0a:cb:6c:
eb:b9:4b:5a:17:07:fb:de:3d:54:ae:e5:ca:b4:29:89:c3:02:
48:f1:c2:d7:75:87:d1:fa:c1:3c:f9:99:6c:ee:0d:b4:8e:e0:
db:1b:0d:f9:03:12:bf:cb:55:d1:18:42:c2:bc:cd:c8:aa:0f:
d3:b2:a0:5f:a9:ff:fe:af:a6:bc:11:32:2b:21:4c:89:da:cb:
b3:52:6a:f6:13:83:7a:d3:f3:47:8a:06:a2:d3:ee:c9:d3:16:
fb:e8:e2:9e:7c:f7:8b:be:79:f1:e0:19:14:4d:3b:a9:82:ec:
3d:60:f7:cc:f8:bf:6c:b0:52:c0:bd:5c:6a:43:cd:4f:f4:d2:
79:7e:6e:ea:98:3e:99:71:9f:a0:10:26:aa:6d:21:a8:e0:c6:
5f:be:18:49:c7:fa:e7:e3:9f:55:2a:a2:4c:2e:9d:3f:8d:45:
4a:57:17:49:71:10:25:00:40:09:ce:f6:fc:71:c4:5b:f6:c8:
97:1f:03:22:2e:30:d6:9d:fa:f0:50:4e:af:1c:9e:36:5c:4a:
0d:26:ec:d6:a6:79:c2:cb:34:d8:18:69:ca:85:24:74:d5:d0:
00:35:63:12:32:2f:e1:a1:01:1b:d2:f0:d1:a5:cb:1b:f4:a4:
ad:82:f7:c2
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:49:14 2025 by rpki-client