Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136322e34362e302f32342d3234203d3e20323031333431.roa
File: 3138352e3136322e34362e302f32342d3234203d3e20323031333431.roa (raw, json)
Hash identifier: N/TiMW1jsVxtFMwAwPc3XHpcJwug7ivss1B9i9FpVtQ=
Subject key identifier: D1:8A:10:F2:CE:9A:F7:05:A2:6F:E2:37:1F:69:BB:94:83:02:A8:A7
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 236C577E359F533EFFA82BCCF8BEF73D00E30B56
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136322e34362e302f32342d3234203d3e20323031333431.roa
Signing time: Mon 27 Jan 2025 09:44:54 +0000
ROA not before: Mon 27 Jan 2025 09:39:54 +0000
ROA not after: Mon 26 Jan 2026 09:44:54 +0000
asID: 201341
IP address blocks: 185.162.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:6c:57:7e:35:9f:53:3e:ff:a8:2b:cc:f8:be:f7:3d:00:e3:0b:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Jan 27 09:39:54 2025 GMT
Not After : Jan 26 09:44:54 2026 GMT
Subject: CN=D18A10F2CE9AF705A26FE2371F69BB948302A8A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:e7:c8:56:20:c0:f7:32:f5:5d:a3:7a:11:7c:
39:dc:e8:af:d5:52:c8:ff:92:17:8b:0d:83:55:4f:
a1:4a:e9:94:e3:c5:fd:7e:37:a1:8d:a4:98:1b:e7:
54:e8:97:90:16:82:97:88:e1:3a:03:dc:26:b7:89:
31:5c:f1:03:84:2e:e7:53:06:b3:8b:96:d3:8a:c6:
98:7b:b9:6c:e8:79:33:a9:5d:3c:0c:0e:c9:11:2d:
b2:8b:25:02:c8:3a:76:b3:0c:53:c2:df:5f:c1:29:
95:d0:06:f1:b6:f4:03:56:eb:0e:de:5e:60:0f:10:
5f:ed:d6:3b:60:7c:02:3e:96:5a:ea:77:2a:ae:85:
a7:e0:48:b5:2e:14:3c:35:3f:3f:79:71:a7:ef:8c:
8f:ce:c4:15:7c:7d:73:cb:0e:06:cb:d9:e0:9e:69:
85:49:f7:32:e7:28:42:39:0c:d7:32:9f:89:9d:28:
ee:c9:8a:28:d8:69:65:42:12:c7:e9:98:a3:31:38:
af:40:0f:89:ea:a4:eb:28:02:c5:1f:47:c9:65:fa:
c5:be:eb:d7:4a:b9:8d:6c:44:cd:47:44:c4:f2:31:
32:24:13:fc:ba:f2:73:2d:f4:96:99:b9:00:66:6c:
bd:9a:6d:f4:08:ae:cf:50:99:56:ad:c8:e7:12:f2:
38:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:8A:10:F2:CE:9A:F7:05:A2:6F:E2:37:1F:69:BB:94:83:02:A8:A7
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136322e34362e302f32342d3234203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.46.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:92:7a:fa:84:0d:fd:ea:4c:90:11:97:bd:9a:fe:2e:35:78:
33:ea:15:51:ae:36:68:17:c1:32:96:fd:f9:fb:72:64:13:79:
7a:a5:75:bf:c3:cf:a4:d7:f7:4c:11:ed:f2:d1:ca:e3:6d:8f:
d2:f4:c3:27:4a:9f:a5:3f:7b:b3:b9:04:df:9c:34:8d:db:29:
d7:f1:a7:47:0b:b9:62:7e:44:ac:e9:1c:49:61:59:c6:fb:52:
1e:e8:5e:ab:6a:26:59:6b:7a:aa:85:6a:f8:87:da:24:cd:ba:
14:85:6b:46:34:44:c3:af:0c:8f:0f:db:6b:b3:9a:89:9b:8f:
7a:13:64:9d:b3:af:0f:3d:f7:24:ec:ea:0f:72:c2:97:ea:d6:
70:9b:57:aa:7f:21:14:04:32:e7:cc:a0:e2:16:e8:86:30:03:
be:8f:8d:0e:41:1c:23:c5:16:9e:f0:fd:4b:b2:66:bc:3f:1f:
1f:71:76:76:0b:88:6d:cb:80:99:2c:e1:62:38:cb:25:0e:d5:
86:28:f3:37:af:39:50:b6:b9:17:1e:1f:e2:1f:9f:1a:92:2e:
ee:cf:cc:1b:da:48:89:84:f4:1e:08:ba:0d:63:42:71:9a:3e:
d7:0d:87:99:d6:5a:62:a3:3f:eb:b1:ac:b3:eb:ee:a7:b5:8a:
c0:c3:81:dc
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Apr 4 19:55:41 2025 by rpki-client