Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136332e35332e302f32342d3234203d3e20323031333431.roa
File: 3138352e3136332e35332e302f32342d3234203d3e20323031333431.roa (raw, json)
Hash identifier: LnNkvM1+sCtgJjgiYLH8naBfVydtNIvqopWTDiVnd08=
Subject key identifier: 31:FB:4A:2F:AF:FD:A6:72:12:D3:14:84:72:58:25:CC:83:AE:6B:8B
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 3A0C964EF8726CE06F44FE40DD32605F193B711A
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136332e35332e302f32342d3234203d3e20323031333431.roa
Signing time: Mon 27 Jan 2025 09:44:55 +0000
ROA not before: Mon 27 Jan 2025 09:39:55 +0000
ROA not after: Mon 26 Jan 2026 09:44:55 +0000
asID: 201341
IP address blocks: 185.163.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:0c:96:4e:f8:72:6c:e0:6f:44:fe:40:dd:32:60:5f:19:3b:71:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Jan 27 09:39:55 2025 GMT
Not After : Jan 26 09:44:55 2026 GMT
Subject: CN=31FB4A2FAFFDA67212D31484725825CC83AE6B8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:e1:71:ec:a9:1f:70:da:b4:b7:2b:1f:4e:62:
ef:a2:c2:4b:c0:e5:13:99:be:cf:11:47:88:2e:b2:
5c:dd:e2:24:e9:19:1c:e3:6f:b6:44:67:78:0d:4b:
81:4e:8c:b1:29:fc:75:da:10:14:e3:95:83:aa:7f:
98:51:d1:d6:15:7c:e5:38:fb:aa:57:5a:86:3d:a5:
a3:6c:dd:c5:eb:90:54:98:ce:e2:99:60:4f:7c:f0:
3a:3b:4d:c4:60:00:78:72:59:5d:29:13:78:c0:20:
b0:7e:4e:ea:20:8c:6b:3f:a8:54:48:93:76:a5:f7:
38:4c:d7:7b:0e:13:49:02:7a:9d:94:06:a3:2f:b1:
52:9a:a0:d3:15:f9:6c:8f:6f:ba:e2:55:92:3b:41:
06:d8:ec:a1:e5:66:bd:1b:a5:5f:40:f4:6b:78:82:
7f:2a:89:f5:f5:66:64:f0:a2:35:45:f5:a8:b3:6a:
fe:64:0f:e7:39:4f:c0:b4:d9:b3:b7:96:21:09:47:
8e:75:74:ee:ac:8e:3b:ca:9b:dc:3b:e5:28:f5:59:
89:05:ca:4a:96:52:0d:51:55:2c:74:c2:4b:dd:cf:
86:23:6c:de:0b:4f:af:c7:48:9b:2c:94:e1:79:75:
39:fd:a6:1c:ba:0a:43:3a:e1:43:cc:5c:29:42:c7:
17:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:FB:4A:2F:AF:FD:A6:72:12:D3:14:84:72:58:25:CC:83:AE:6B:8B
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136332e35332e302f32342d3234203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.163.53.0/24
Signature Algorithm: sha256WithRSAEncryption
11:96:29:d5:9a:53:46:42:ea:39:1c:c6:43:17:f0:a6:49:82:
e0:ae:61:20:d0:54:d6:fb:64:ca:57:9f:32:f5:04:b2:74:ca:
76:97:20:87:80:de:a9:30:80:d1:32:95:72:b8:88:7a:78:44:
e9:f7:1c:11:f8:36:6a:1f:18:19:f6:43:21:41:ac:03:ca:0d:
df:00:4e:3f:2f:ae:0e:f7:2e:98:27:21:3b:32:d3:4a:e3:53:
97:39:5d:57:ae:13:d3:a7:97:b2:1e:0e:a3:6e:9b:bf:83:76:
b3:66:2d:49:14:27:8a:c5:ca:0b:87:45:d9:6e:a3:18:bf:92:
28:6b:8c:a4:a2:bf:b1:84:7d:46:c0:69:2a:bc:21:76:8d:96:
58:df:c1:5a:6c:a6:06:17:c7:73:85:26:75:b9:da:92:65:11:
16:75:fc:27:f8:b8:b9:8e:23:5f:cf:46:c4:e6:78:3d:a4:57:
77:25:cd:c4:b1:d3:3b:7a:60:d4:0d:e1:05:51:f2:1f:33:3d:
cc:e7:ab:ec:72:d4:9c:c9:d4:87:9a:3f:b5:2c:ba:c1:b4:80:
e8:53:45:e1:a0:13:5d:cb:2a:af:49:7b:56:10:e0:28:f3:a4:
63:fe:2e:4b:72:cc:34:3d:a1:ab:23:b3:25:70:24:d1:c0:f0:
5f:a2:ad:c1
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 04:37:53 2025 by rpki-client