Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136322e34342e302f32342d3234203d3e20323031333431.roa
File: 3138352e3136322e34342e302f32342d3234203d3e20323031333431.roa (raw, json)
Hash identifier: BLehTLoalKKVHD+sJUPLArY2HOxI803OvUHHGS1DirE=
Subject key identifier: B3:25:4E:E9:04:A3:F8:48:43:EC:3D:E3:67:AB:DE:DC:F4:21:38:76
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 10D168645779CB234A4438B7D1A44C70B74D6ACE
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136322e34342e302f32342d3234203d3e20323031333431.roa
Signing time: Mon 27 Jan 2025 09:44:53 +0000
ROA not before: Mon 27 Jan 2025 09:39:53 +0000
ROA not after: Mon 26 Jan 2026 09:44:53 +0000
asID: 201341
IP address blocks: 185.162.44.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:d1:68:64:57:79:cb:23:4a:44:38:b7:d1:a4:4c:70:b7:4d:6a:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Jan 27 09:39:53 2025 GMT
Not After : Jan 26 09:44:53 2026 GMT
Subject: CN=B3254EE904A3F84843EC3DE367ABDEDCF4213876
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:d9:38:78:1a:32:60:f8:e4:db:91:c3:4b:2b:
f4:e6:de:26:23:d6:d8:ab:c8:56:55:d5:76:a3:80:
a9:11:02:de:ff:c9:97:da:8c:05:e2:61:42:02:65:
58:a1:a7:a4:b3:9e:7a:81:fb:f0:6f:4d:8b:80:ae:
7c:47:65:59:8e:a3:d0:de:de:91:ce:61:70:1a:7d:
cc:d9:69:43:4a:a4:0d:59:bf:2f:fa:6d:0a:b6:6a:
36:7c:6d:56:a9:7e:b1:2a:ad:eb:ce:87:80:f3:86:
f5:bd:3d:20:1f:0f:f3:f9:f8:4a:43:7d:64:f2:ea:
07:14:76:09:cb:a9:b8:32:5c:fb:5e:19:c4:49:0a:
d6:c3:11:1f:f7:5e:59:58:a0:7b:46:8a:fc:4f:12:
7b:ae:35:b5:78:46:fa:65:b3:cb:91:32:03:b2:50:
57:56:7d:72:f9:68:8f:78:6c:1b:f6:ec:96:13:25:
f3:1c:a4:b8:7b:cc:68:25:86:50:da:28:fd:c2:f2:
7a:54:24:ec:ce:71:c1:85:43:cc:e0:59:03:db:1f:
4d:05:1f:11:4e:44:83:03:32:68:c9:b7:62:86:52:
58:eb:28:0d:59:e4:4e:67:31:12:cd:cc:81:b4:0c:
d6:99:a1:cf:52:96:d1:10:f1:e4:68:89:ea:bc:8b:
9e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:25:4E:E9:04:A3:F8:48:43:EC:3D:E3:67:AB:DE:DC:F4:21:38:76
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136322e34342e302f32342d3234203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.44.0/24
Signature Algorithm: sha256WithRSAEncryption
52:5c:e5:50:55:17:a5:0b:f1:80:52:10:d2:66:7f:ec:53:58:
83:4d:ab:19:18:46:17:12:ac:0f:14:41:02:0e:14:3a:3c:9b:
f1:65:13:94:d1:44:be:64:4b:bc:ab:c6:6d:50:9f:2b:9b:4a:
58:a1:b6:51:b9:ff:d6:d3:f1:c6:af:7f:cc:5c:45:e5:b0:21:
4a:10:61:b8:4c:a5:70:14:99:a3:4a:97:4e:fa:40:1e:04:d1:
f5:00:e2:35:38:f8:dc:71:50:f4:d3:02:84:cc:43:65:73:78:
7b:0b:50:17:2e:e9:8f:1a:0b:b4:20:56:aa:cc:6e:b9:b8:2d:
02:3b:27:cf:4f:33:d2:ac:c8:f8:0b:3c:0c:84:09:84:f8:66:
e2:f0:82:ab:de:85:49:df:fb:10:df:20:11:9b:6a:fa:fc:c5:
3f:ff:d6:c6:07:32:c7:21:8c:66:39:89:74:f3:c6:4d:16:2e:
76:31:4f:a5:56:42:e3:e9:92:57:a8:15:b3:65:e1:5d:d8:ff:
ce:76:92:1d:15:97:1e:2e:53:67:96:07:80:06:43:bf:1b:b1:
66:e6:73:f6:6e:95:71:bd:5e:b1:10:9d:8e:b4:ef:eb:78:fc:
85:88:d4:f2:65:09:20:87:52:68:ee:5a:0e:d1:60:c2:3d:22:
58:1e:f6:c0
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 04:42:35 2025 by rpki-client