Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136332e35342e302f32342d3234203d3e20323031333431.roa
File: 3138352e3136332e35342e302f32342d3234203d3e20323031333431.roa (raw, json)
Hash identifier: 0iotxbk/6134Am3U52V/4fO6peOCxazPwOb6IPyPx8Q=
Subject key identifier: B4:0D:EF:8D:A5:CC:2E:E4:38:3D:40:D4:59:97:CE:BB:71:2F:BC:1F
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 2EC1166D1C7105C009B14E9307B3447F6F4607BF
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136332e35342e302f32342d3234203d3e20323031333431.roa
Signing time: Mon 27 Jan 2025 09:44:54 +0000
ROA not before: Mon 27 Jan 2025 09:39:54 +0000
ROA not after: Mon 26 Jan 2026 09:44:54 +0000
asID: 201341
IP address blocks: 185.163.54.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:c1:16:6d:1c:71:05:c0:09:b1:4e:93:07:b3:44:7f:6f:46:07:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Jan 27 09:39:54 2025 GMT
Not After : Jan 26 09:44:54 2026 GMT
Subject: CN=B40DEF8DA5CC2EE4383D40D45997CEBB712FBC1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:69:2f:d2:e6:13:9c:e0:eb:9e:65:4d:d9:d8:
36:ff:0a:16:7f:bf:3d:db:ab:60:a2:3d:d2:f2:89:
dd:c4:71:f7:dd:50:86:34:a2:19:0e:2a:49:79:87:
ba:f4:6d:5d:f1:e2:d1:c6:78:9a:c0:46:1d:ab:d9:
90:c3:07:3e:2b:dd:8e:6e:69:40:81:f0:50:75:af:
86:6d:c5:35:b1:77:4f:ab:43:7e:e5:7c:15:64:32:
73:e5:49:d7:b5:55:33:10:5d:6d:70:4a:a2:0f:ea:
c5:60:ef:aa:f9:43:99:08:b7:1a:3a:a4:3c:79:f4:
e5:bc:03:16:14:78:9d:8c:5e:27:da:71:2b:1b:02:
dd:e4:c0:89:66:aa:f5:b9:a0:b5:a0:77:9c:30:2e:
fa:67:c6:c2:65:70:26:2e:79:78:b1:7c:99:6f:b4:
6d:55:c4:61:a0:83:6f:2e:b4:6c:1f:af:2e:d3:56:
d2:8a:1d:15:08:49:2a:8a:11:ec:eb:1d:d9:a8:1c:
b6:93:7a:2a:63:e8:95:53:20:68:f8:35:6d:9f:e3:
8f:90:7a:6d:c8:be:6c:41:9a:d4:90:86:64:de:a0:
72:ef:4d:8f:5d:fc:54:88:e5:0c:73:95:14:87:97:
19:8d:e9:e8:5f:68:08:60:5a:09:f2:e9:07:d1:db:
70:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:0D:EF:8D:A5:CC:2E:E4:38:3D:40:D4:59:97:CE:BB:71:2F:BC:1F
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136332e35342e302f32342d3234203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.163.54.0/24
Signature Algorithm: sha256WithRSAEncryption
14:20:3f:db:b3:9f:14:b1:95:dc:ae:8b:d6:9e:91:49:38:53:
0a:62:bb:4b:44:f9:cf:01:0e:11:99:c4:aa:a4:79:64:b9:aa:
06:b9:43:28:c9:15:38:0c:11:d6:58:9a:2b:04:21:95:7c:35:
d1:cd:3f:83:c3:2d:51:3b:89:ec:9d:d8:77:18:a3:13:24:e9:
6b:44:ec:83:f3:a6:01:c2:e8:2a:3c:54:7f:30:89:bb:79:1d:
74:cc:4c:88:30:b3:6d:95:ed:7d:5a:d0:71:7c:3f:df:3e:1a:
81:a5:ad:f4:d6:92:9a:2c:0c:f5:a8:44:8d:a3:d7:d5:b4:d4:
07:61:58:95:1b:a4:48:3f:29:90:7c:99:25:63:19:f5:00:81:
79:bf:bc:ee:a0:02:21:df:0c:99:b3:e6:a3:f7:5d:5e:d5:c4:
d6:cd:d9:70:0d:31:98:d2:3d:a0:28:c7:27:50:df:dd:45:c6:
f7:00:bd:1d:4c:2c:1d:45:c6:a8:91:2a:96:57:21:2d:ca:f6:
c6:f7:90:3a:95:cb:8a:ef:1c:11:8d:b9:cb:55:8c:70:51:9c:
0c:ed:95:05:9d:85:42:4c:a8:dc:60:cf:c2:e7:2e:a2:47:6e:
f7:08:39:cb:1b:9a:d6:0d:41:29:8b:d4:06:08:a6:c7:e3:11:
5a:06:fa:4c
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:32:14 2025 by rpki-client