Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136392e302e302f32342d3234203d3e20313431303339.roa
File: 3138352e3136392e302e302f32342d3234203d3e20313431303339.roa (raw, json)
Hash identifier: hVevJXDvLnUW8puJIkNfGjF3N4lCxP7SRgHo9SK8Z+w=
Subject key identifier: 63:B3:7D:48:2E:9E:CC:31:13:7F:D0:E2:7B:80:FB:7F:8F:C1:EC:29
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 15839D68568723F71EF7282CFD9A1DB75743E8FB
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136392e302e302f32342d3234203d3e20313431303339.roa
Signing time: Mon 27 Jan 2025 09:44:54 +0000
ROA not before: Mon 27 Jan 2025 09:39:54 +0000
ROA not after: Mon 26 Jan 2026 09:44:54 +0000
asID: 141039
IP address blocks: 185.169.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:83:9d:68:56:87:23:f7:1e:f7:28:2c:fd:9a:1d:b7:57:43:e8:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Jan 27 09:39:54 2025 GMT
Not After : Jan 26 09:44:54 2026 GMT
Subject: CN=63B37D482E9ECC31137FD0E27B80FB7F8FC1EC29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:55:86:25:b7:38:26:d9:5d:cd:f0:f6:16:0f:
fe:1b:59:dd:5e:f5:e7:09:79:16:9a:f3:30:c4:64:
e8:df:97:ad:c8:e6:e8:d4:5c:fe:e9:0b:9f:bc:52:
5a:a5:f9:19:87:aa:6d:2f:f3:18:f2:04:cc:21:8a:
b3:6e:6a:08:d1:ec:e7:92:c6:ee:e3:c5:a9:e1:60:
ee:bb:6c:ec:86:63:60:43:8a:f1:e5:fc:fb:7e:6c:
09:43:26:51:80:69:56:f3:4d:ed:44:03:3b:4a:1d:
83:3a:b8:52:44:5d:bd:61:4a:d6:e1:03:67:d7:c1:
ce:fc:19:b7:30:62:50:f2:d9:89:a8:e9:60:06:a0:
2a:3a:9a:96:d1:77:b2:97:37:7e:e2:7c:10:ac:41:
81:11:93:55:a1:5c:17:78:12:b4:22:3c:e7:87:ac:
ad:b6:f2:ab:73:ce:05:72:21:0f:31:f5:ca:8b:9f:
48:af:a1:d6:d1:e3:d1:0e:a8:c3:df:5c:4d:0b:2f:
c0:bb:83:17:27:b4:0c:21:b7:d0:d6:ca:45:d0:e2:
e4:25:11:51:08:cf:59:30:b7:79:61:73:81:59:0d:
d7:74:b0:d6:bf:f8:32:7a:34:80:3f:7b:5f:ba:83:
18:1f:c3:e0:42:28:01:40:09:46:70:41:ab:04:4a:
5c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:B3:7D:48:2E:9E:CC:31:13:7F:D0:E2:7B:80:FB:7F:8F:C1:EC:29
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136392e302e302f32342d3234203d3e20313431303339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.0.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:f9:57:6d:44:9f:28:a5:b3:e9:91:0f:e5:ee:32:34:67:24:
0e:d5:8a:7d:96:78:fe:e8:1e:ee:7b:75:75:d8:b2:64:0a:8a:
c5:66:3d:e0:4b:57:9b:dc:b7:90:cb:c0:88:4e:88:9d:f4:b7:
eb:d7:18:d0:0f:07:8d:2f:9a:e8:e5:9e:7c:2b:c4:4d:cb:20:
b5:a5:8b:2b:7d:ba:1f:2e:e6:d0:a4:4b:11:58:de:55:fb:d9:
87:6b:ef:93:27:88:68:9d:1c:ba:8c:a2:4b:3f:0a:5f:68:17:
6e:e1:17:4e:6a:2f:5b:30:19:87:ec:e3:c4:e8:5a:78:f1:5f:
0d:0b:63:28:76:47:86:19:b9:c7:00:2c:88:88:e3:5d:0f:06:
8e:26:e0:a2:d4:42:46:6a:da:70:14:8c:fe:ba:df:8c:86:7c:
f8:48:12:a1:e9:d9:4d:7c:ac:35:4f:6e:66:61:ed:56:bd:1c:
10:2d:c8:71:99:35:38:0a:ac:23:82:08:0d:5e:86:92:09:f2:
56:6d:42:cc:93:c5:22:44:c4:43:62:16:2e:83:eb:17:32:0f:
b5:f7:b5:31:a8:3a:76:d2:d1:52:65:7a:96:07:63:59:3f:0f:
e3:37:c3:27:58:77:2c:56:53:8b:03:37:c9:2f:64:a6:98:a2:
64:28:74:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:38:27 2025 by rpki-client