Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136332e35322e302f32342d3234203d3e20323031333431.roa
File: 3138352e3136332e35322e302f32342d3234203d3e20323031333431.roa (raw, json)
Hash identifier: QHpFnfXNKmgsX43s+U1e+pyRL67zdtCLOnVTf3phLbc=
Subject key identifier: 04:68:4D:F9:ED:85:71:2D:E6:0A:7C:D6:B4:7E:A3:FD:07:9C:ED:FA
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 22C5D7F22A1275D950DE6A873AB655908462A1F9
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136332e35322e302f32342d3234203d3e20323031333431.roa
Signing time: Mon 27 Jan 2025 09:44:54 +0000
ROA not before: Mon 27 Jan 2025 09:39:54 +0000
ROA not after: Mon 26 Jan 2026 09:44:54 +0000
asID: 201341
IP address blocks: 185.163.52.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:c5:d7:f2:2a:12:75:d9:50:de:6a:87:3a:b6:55:90:84:62:a1:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Jan 27 09:39:54 2025 GMT
Not After : Jan 26 09:44:54 2026 GMT
Subject: CN=04684DF9ED85712DE60A7CD6B47EA3FD079CEDFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:88:51:b3:35:fc:80:97:f1:7b:93:00:4d:72:
d4:8a:e4:3b:34:12:79:81:91:b1:89:4e:10:73:64:
d6:e3:29:5a:43:e6:48:d8:d9:82:d6:da:46:99:f2:
0a:65:fe:68:de:b7:3e:a8:3a:02:01:a0:8f:14:8c:
22:88:3a:1a:31:73:cd:83:58:a0:c7:fd:d4:31:6b:
87:fa:e2:a8:48:b5:d7:ec:94:f3:ef:8d:12:48:62:
de:fc:78:57:27:8f:53:eb:2f:09:64:d4:07:91:04:
0e:e5:55:f8:82:8e:62:6a:02:a9:49:e9:0b:8c:8d:
d1:73:ea:e6:5c:50:79:f7:87:9e:b0:5f:31:52:0b:
e4:c5:6b:3e:19:e4:e6:f0:7d:2f:04:41:ed:a6:ca:
e0:d9:83:16:27:04:69:cc:40:29:b0:55:89:87:f3:
1e:dc:8a:4d:26:5c:93:55:38:88:6d:42:cf:ea:d0:
e9:14:0e:ce:11:cc:6d:18:ed:c8:8e:e2:6b:b6:97:
51:6a:94:37:e6:12:d4:76:ec:e2:98:d8:87:7f:18:
0a:a4:3a:0a:e8:b4:c3:66:5f:5b:34:94:b7:c1:30:
4d:1a:b7:15:4b:a8:13:a1:df:d7:d7:d7:d6:fe:c6:
37:e6:43:d1:3a:04:f3:58:98:d6:57:5c:b5:6b:9e:
b1:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:68:4D:F9:ED:85:71:2D:E6:0A:7C:D6:B4:7E:A3:FD:07:9C:ED:FA
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136332e35322e302f32342d3234203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.163.52.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:94:b1:84:c0:30:2e:f1:05:dd:41:f7:28:14:2a:da:cc:6f:
4d:cb:95:3f:27:5d:a3:15:ea:a6:cf:24:40:a1:c1:fb:9b:56:
c8:47:1a:a5:a5:74:c7:9b:39:e0:44:ac:80:76:2f:b3:35:5a:
09:fe:a8:91:e4:35:bb:43:c3:c8:bd:ba:2b:6a:9f:1b:26:23:
d3:75:d1:1a:14:c1:9c:ef:64:98:7c:e4:85:d8:a2:fb:1f:02:
fb:60:ab:b0:89:10:85:dc:9f:a2:68:eb:95:25:e4:ee:78:7c:
05:23:7e:7b:96:70:80:24:61:01:4c:0b:95:9d:d4:0b:da:1b:
d2:f1:ae:bd:e2:56:d9:7e:99:e6:d3:ff:2a:80:b7:c5:b5:df:
d1:5a:f9:3c:b8:30:c9:9a:2e:75:a7:e8:3c:a0:25:25:84:5b:
16:20:c5:d2:0e:32:4e:a1:68:a3:06:75:cb:e4:7c:86:d5:94:
9d:11:a7:50:1d:6a:aa:77:42:53:c0:b9:45:88:27:9e:97:5b:
3e:b9:cc:98:71:47:b1:e1:4b:94:0e:32:c8:cb:0c:76:11:4a:
9f:fb:c3:21:ad:7d:99:6f:f3:18:1f:64:cc:15:75:88:b3:9f:
48:9a:47:7e:07:2a:e0:61:6b:a8:63:fe:a0:42:71:63:85:51:
a8:49:28:61
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Apr 9 05:14:02 2025 by rpki-client