Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3234332e31342e302f32342d3234203d3e20323036323833.roa
File: 3138352e3234332e31342e302f32342d3234203d3e20323036323833.roa (raw, json)
Hash identifier: uBqMbug8g6vt/89yonrjBGH2SXbQHmrRCcFZi0nujwY=
Subject key identifier: 76:CC:C3:74:EC:BB:C2:E3:1E:24:8A:13:3E:DD:E8:E7:B2:D9:B7:A9
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 65EBDA50ADE145BB55978CA5E128B24D77B55AA6
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3234332e31342e302f32342d3234203d3e20323036323833.roa
Signing time: Fri 27 Dec 2024 11:47:10 +0000
ROA not before: Fri 27 Dec 2024 11:42:10 +0000
ROA not after: Fri 26 Dec 2025 11:47:10 +0000
asID: 206283
IP address blocks: 185.243.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:eb:da:50:ad:e1:45:bb:55:97:8c:a5:e1:28:b2:4d:77:b5:5a:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:10 2024 GMT
Not After : Dec 26 11:47:10 2025 GMT
Subject: CN=76CCC374ECBBC2E31E248A133EDDE8E7B2D9B7A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:21:33:d5:3b:31:36:37:22:24:2a:9a:f0:20:
b2:49:48:0f:40:62:11:d5:a9:ea:06:ff:13:b0:4d:
58:00:ef:e8:7b:50:9b:fc:a7:34:43:64:73:ec:8e:
70:fd:56:45:07:4e:c4:06:54:d2:f2:e1:09:20:59:
31:29:1a:13:63:92:ba:70:27:09:c9:0b:9f:60:44:
5e:ea:ed:bb:c0:45:1b:17:cb:86:16:7e:2c:da:75:
ac:c8:a5:fc:44:60:56:c4:1b:df:7f:32:60:e5:f1:
1a:51:84:48:9b:c0:49:d0:0e:53:24:45:fd:aa:7d:
8f:13:f8:28:6b:ab:77:ef:f3:85:ff:b7:0e:6a:67:
a6:ba:c6:a9:d4:fb:28:87:ad:12:37:16:fe:cd:4e:
ae:b4:ce:f9:79:f0:a6:4b:6a:e8:69:d0:71:ba:b4:
c7:12:8f:97:2c:ad:09:5f:64:0a:3e:9a:4f:2d:08:
ac:dd:79:ac:43:3a:24:cc:99:74:04:47:21:f7:8d:
3c:9c:38:c7:f4:10:49:7c:45:6c:d2:30:f8:ba:28:
44:88:51:0e:3b:da:c3:1e:fb:2e:79:e6:3a:9b:cb:
22:df:8d:83:8f:94:d9:e3:30:1e:97:94:34:c4:df:
46:de:69:f7:0a:80:ee:95:3f:75:9f:4f:72:e8:aa:
d1:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:CC:C3:74:EC:BB:C2:E3:1E:24:8A:13:3E:DD:E8:E7:B2:D9:B7:A9
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3234332e31342e302f32342d3234203d3e20323036323833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.14.0/24
Signature Algorithm: sha256WithRSAEncryption
90:ad:be:4f:d5:20:9b:d4:f9:b0:75:bc:32:f8:4c:a9:23:9f:
56:06:a1:b9:30:02:bb:32:0a:7d:7a:26:3e:a1:88:8d:e0:33:
3c:e0:04:09:64:07:04:f8:91:ff:08:64:3f:32:35:20:c2:58:
24:a0:83:cb:dd:de:31:4c:4d:40:a7:85:6f:79:f6:a0:08:c0:
77:47:59:18:db:83:13:e4:47:15:d3:07:78:56:bd:f3:36:3a:
d5:69:4c:40:de:10:f1:c7:9e:28:3b:66:78:af:fa:8e:52:06:
4e:4e:b9:70:a4:b7:12:95:6c:f5:c9:6b:84:9f:58:4a:0e:f6:
f7:2e:5a:f3:64:7e:62:88:41:a9:da:44:44:b5:cd:3b:3e:2b:
2f:52:04:92:6e:02:bd:01:28:4e:f0:76:02:aa:64:f4:e8:c6:
b4:c5:49:b8:6a:cd:67:49:c7:bc:b0:00:b4:6e:3a:b5:74:e7:
e7:ef:fb:d4:34:3a:2b:13:41:97:05:e5:73:8f:fa:29:43:c3:
81:1a:44:bf:fc:d2:9e:1e:e6:56:b5:4a:fd:1d:af:0c:6c:f0:
72:6a:f6:da:d8:0d:01:10:cb:ed:50:60:15:33:0a:53:32:e4:
fb:c5:d7:f4:8c:59:6b:df:1d:98:45:69:5c:95:ad:ce:d8:2a:
eb:0f:2a:9f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 00:22:49 2025 by rpki-client