Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136392e3235322e302f32342d3332203d3e203531313637.roa
File: 3138352e3136392e3235322e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: 1vGIYkdvJozne08EO3uYgFPrFeVyRPKdGW2MmGuDTDM=
Subject key identifier: 14:35:36:02:BA:64:E1:84:BF:3A:E8:9C:BC:AE:14:11:E0:A4:5D:EC
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 282EA1CCD0AEF75078FDC9E0E41723FAF19C7CE8
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136392e3235322e302f32342d3332203d3e203531313637.roa
Signing time: Mon 27 Jan 2025 09:44:53 +0000
ROA not before: Mon 27 Jan 2025 09:39:53 +0000
ROA not after: Mon 26 Jan 2026 09:44:53 +0000
asID: 51167
IP address blocks: 185.169.252.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:2e:a1:cc:d0:ae:f7:50:78:fd:c9:e0:e4:17:23:fa:f1:9c:7c:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Jan 27 09:39:53 2025 GMT
Not After : Jan 26 09:44:53 2026 GMT
Subject: CN=14353602BA64E184BF3AE89CBCAE1411E0A45DEC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f1:2b:40:be:4b:91:3c:aa:6f:4b:ac:44:e4:
b7:ac:2d:26:30:1a:a8:10:fe:f9:dc:de:04:72:cf:
7c:6b:c8:c1:bd:b3:11:e0:7b:fd:eb:a9:18:ef:6c:
21:1b:a2:2b:3a:2c:88:91:72:5a:d3:45:18:b4:c4:
b1:c9:9c:30:d1:ff:93:5c:7a:d0:bb:45:ff:13:b7:
4f:f2:3d:a5:6d:f5:97:db:15:79:a8:08:d6:a4:07:
e7:8d:0d:c2:06:f2:72:8f:97:dd:20:dc:5e:f0:f8:
49:f0:ec:3a:7e:79:5d:bb:82:98:e7:8b:2a:5f:ca:
0b:a1:bc:ee:e1:08:7c:c9:ed:60:02:9a:4a:65:b8:
3c:19:10:21:7c:eb:03:a4:a7:34:86:01:6f:82:b8:
8f:22:1d:b9:5c:70:c6:da:bf:b3:67:6e:a5:c7:57:
fe:b2:5b:24:ec:62:92:74:fe:be:a4:ef:34:32:90:
2f:52:e6:81:ac:84:79:e4:e4:74:da:61:a9:96:95:
ce:99:85:a3:12:42:0d:1a:52:3d:3b:b5:fa:d4:25:
7b:7b:fd:a8:2d:71:a3:00:af:b6:23:16:7d:ab:26:
61:e6:3b:29:01:c6:17:aa:8f:a1:ba:c7:de:00:d6:
ca:43:ee:83:dd:2e:27:bd:05:f8:4c:15:4d:4a:9d:
ce:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:35:36:02:BA:64:E1:84:BF:3A:E8:9C:BC:AE:14:11:E0:A4:5D:EC
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136392e3235322e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.252.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:68:39:92:87:64:0e:a6:4b:67:e6:69:d6:f1:81:fa:bc:89:
0d:e9:4d:fe:32:9b:ff:8f:02:d3:af:9f:b6:b6:f3:89:0a:d4:
e0:7f:1b:0c:60:92:78:31:09:ad:55:a5:29:9b:8c:bf:9f:a5:
74:12:e1:aa:cb:21:3e:0c:ef:99:a6:48:9a:f7:fc:6e:ef:77:
20:25:85:e7:08:9a:14:bd:d5:5d:c2:cf:2e:e2:da:76:4d:98:
d1:e5:9d:af:ef:b2:86:23:3b:62:30:96:68:dd:50:57:e7:27:
e1:4d:6d:46:ee:29:e2:a1:a6:85:45:c9:f2:68:47:97:7d:e5:
dd:cc:29:a8:27:f2:02:96:99:f8:a0:b4:2e:e2:33:c7:ed:60:
ca:4b:b0:18:05:0e:b4:f6:8f:53:fa:f4:40:a5:ee:37:ee:ce:
02:05:1c:cb:bb:48:b7:d7:82:5a:41:3b:96:a6:6f:2a:44:30:
61:62:9f:d5:10:c2:1b:0c:bf:b9:db:93:a0:32:52:3c:55:af:
69:4e:db:81:1e:af:99:d1:80:58:98:7a:e6:03:df:73:37:0f:
9c:08:0a:f2:fd:1b:24:36:dc:c2:57:ab:36:07:4a:53:72:24:
7c:02:57:58:7b:26:f2:60:a6:d5:75:55:fe:d0:58:f7:c4:b0:
f0:09:58:5b
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Apr 3 05:12:21 2025 by rpki-client