Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136322e34372e302f32342d3234203d3e20323031333431.roa
File: 3138352e3136322e34372e302f32342d3234203d3e20323031333431.roa (raw, json)
Hash identifier: judKEObZ5H7xcnho70m9Yrxgkgd7bMMqissiXuHer4c=
Subject key identifier: 8E:EA:37:5F:CA:7D:9D:42:FF:F1:A2:00:8E:92:74:D8:91:27:E7:E0
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 7EC583C2B063B766C000EEF01E34F04786B82523
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136322e34372e302f32342d3234203d3e20323031333431.roa
Signing time: Mon 27 Jan 2025 09:44:54 +0000
ROA not before: Mon 27 Jan 2025 09:39:54 +0000
ROA not after: Mon 26 Jan 2026 09:44:54 +0000
asID: 201341
IP address blocks: 185.162.47.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:c5:83:c2:b0:63:b7:66:c0:00:ee:f0:1e:34:f0:47:86:b8:25:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Jan 27 09:39:54 2025 GMT
Not After : Jan 26 09:44:54 2026 GMT
Subject: CN=8EEA375FCA7D9D42FFF1A2008E9274D89127E7E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:e3:bc:56:0d:2f:a2:69:bb:f6:77:a0:65:7d:
1e:9d:2b:15:8c:a0:aa:3f:d7:33:b9:b2:cc:6b:84:
03:72:d8:63:89:ab:26:d4:a5:32:1d:94:71:43:3d:
dd:18:cf:be:a4:97:df:54:89:36:af:f5:b5:07:74:
f9:27:76:88:81:89:11:f3:fc:37:87:25:16:01:da:
23:32:dd:59:30:6e:3d:5e:23:1e:fe:a1:9f:ac:b1:
0b:b7:a6:ce:c3:e1:41:76:71:fd:f6:a5:e2:f5:b2:
94:52:6e:95:9b:a1:d4:f7:ff:41:10:60:61:df:d4:
dd:d6:0d:53:2a:8f:0a:a5:27:4a:b3:a4:b2:db:4a:
8c:cd:4a:1d:14:35:e7:4c:9b:9d:49:8c:bd:7e:47:
93:d6:ba:95:31:6f:a1:ef:8c:73:37:5b:ce:79:99:
ef:07:d2:20:d0:89:62:44:7d:36:30:78:0b:85:f4:
e8:05:37:bd:be:a5:a6:02:22:95:9a:23:02:26:e1:
c7:16:80:f4:b8:c8:cf:d5:71:6f:2b:30:70:f6:f3:
86:84:07:49:5e:1b:3c:57:13:f5:37:f2:73:a3:d3:
6e:c4:da:75:10:3c:c2:3d:00:f0:53:af:96:80:79:
e4:27:9e:0a:8c:56:0e:8d:23:b0:b9:d6:fe:25:08:
63:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:EA:37:5F:CA:7D:9D:42:FF:F1:A2:00:8E:92:74:D8:91:27:E7:E0
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136322e34372e302f32342d3234203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.47.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:cd:6f:64:67:82:6a:61:ee:a6:4f:e9:f0:c1:f8:4e:12:1d:
aa:6b:48:cc:37:c2:fb:b1:61:25:38:87:9a:b9:cf:90:96:84:
8f:ff:7e:93:81:4f:10:9c:fc:28:82:c1:b9:7d:70:0c:86:43:
2e:f5:ff:1d:34:9a:98:bf:63:ee:24:17:6d:b1:6f:9b:d8:42:
9f:59:8d:1b:df:c1:49:1b:14:33:61:c0:b9:05:a9:e7:ac:4a:
b8:52:41:d9:f7:60:f8:d5:ed:1a:49:c8:30:eb:eb:78:16:ac:
9b:b1:21:f4:70:a2:f6:28:eb:58:be:87:0b:22:22:e1:bb:2c:
60:ed:0d:e1:47:3b:e3:c6:a6:47:76:e1:f8:60:d6:68:a7:b4:
b6:e1:50:f7:ad:34:2d:3a:43:c8:d0:3e:52:56:6b:1d:a5:93:
80:ec:6d:b9:fc:65:67:02:72:08:41:b0:6b:ae:f7:5b:96:36:
a3:e1:6b:ff:0e:8e:aa:c3:4b:ba:e5:05:b5:32:ee:9f:f2:d8:
64:3b:c2:6c:5b:f0:41:08:f1:83:13:6a:19:54:2d:a3:fa:4d:
82:48:ca:75:74:89:80:49:8f:19:63:16:ed:c6:4b:be:79:c0:
9c:e5:6a:f8:d9:02:2c:2c:7c:c1:74:05:af:27:16:d8:3a:3f:
e0:26:7c:19
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Apr 9 09:39:56 2025 by rpki-client