Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3234392e3232352e302f32342d3332203d3e203531313637.roa
File: 3138352e3234392e3232352e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: oSyszdelW966mtqJeGDdTtsKxnqVPcq/nCwP8WNq5Uk=
Subject key identifier: 76:F3:4B:29:31:4C:B2:FC:C6:31:9A:C7:58:94:48:CA:DF:5E:03:C6
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 2AC6A22305A4F4F134230AD7C1ECEDB5B68DFC12
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3234392e3232352e302f32342d3332203d3e203531313637.roa
Signing time: Fri 27 Dec 2024 11:47:08 +0000
ROA not before: Fri 27 Dec 2024 11:42:08 +0000
ROA not after: Fri 26 Dec 2025 11:47:08 +0000
asID: 51167
IP address blocks: 185.249.225.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:c6:a2:23:05:a4:f4:f1:34:23:0a:d7:c1:ec:ed:b5:b6:8d:fc:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:08 2024 GMT
Not After : Dec 26 11:47:08 2025 GMT
Subject: CN=76F34B29314CB2FCC6319AC7589448CADF5E03C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d5:3e:30:8c:c4:ec:21:0a:1d:ff:1c:70:49:
26:41:a7:12:6a:34:6f:f9:c2:c3:e0:f5:77:ed:88:
8d:94:6a:53:78:b4:a6:08:a3:96:c6:f4:73:38:96:
2d:c8:fb:68:4a:18:ec:b2:24:74:4f:2c:38:06:02:
98:36:7b:00:ff:de:e6:ab:f7:a3:95:f0:c5:a1:7d:
c6:7e:ac:78:13:39:af:06:68:3d:d4:bf:9d:8a:de:
e5:0a:47:c5:07:6b:ba:5e:0a:18:a6:64:05:7b:c1:
72:6d:ee:e0:21:2e:cc:57:89:7f:c4:8a:dc:d6:d0:
26:d9:6a:23:d7:4a:c9:3d:94:1a:e9:b4:0f:6f:48:
9c:95:28:34:44:11:78:b5:62:07:49:ff:df:8f:0a:
9a:59:a3:fa:c8:c3:75:40:77:63:de:5d:a0:5b:6e:
a0:c0:e9:0a:18:51:7a:21:1a:85:9b:89:f6:f7:ab:
fb:3c:a7:25:a8:5f:3d:27:8b:c5:c4:49:62:f9:ac:
69:70:80:b5:4e:53:2b:d5:63:e9:a9:a2:5d:95:e4:
bc:b9:f0:8c:86:1a:fc:1c:56:81:f9:d5:00:a6:b7:
29:c0:68:4e:b1:f4:fa:d9:43:d5:0b:1f:8e:5e:53:
22:fc:99:e3:41:93:4b:1a:5d:8f:11:5e:d4:eb:e1:
22:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:F3:4B:29:31:4C:B2:FC:C6:31:9A:C7:58:94:48:CA:DF:5E:03:C6
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3234392e3232352e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.225.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:dc:a1:89:83:0c:f2:6f:9e:24:24:0a:55:7c:10:af:60:95:
35:8b:6d:86:b2:71:0f:fd:35:1d:14:9c:aa:3c:9d:cb:c5:38:
15:dd:7a:4c:f4:fe:83:f6:83:19:54:56:3a:9e:8c:31:ee:de:
b7:bb:06:a3:c8:c9:bf:2a:dd:8a:e9:66:05:44:db:5a:7d:1f:
60:aa:13:04:4f:20:e5:ab:27:90:99:be:29:b0:57:24:59:88:
b3:db:41:14:2e:eb:46:f9:5e:f5:16:09:95:e7:ce:3c:84:2a:
43:c5:4e:67:2e:15:eb:3d:14:c4:ef:28:06:1a:b3:1e:c9:c8:
00:99:a1:f3:0e:bd:d6:94:3f:e7:e0:bc:4f:36:e2:17:99:dc:
33:34:be:29:0c:e7:c6:65:0e:29:6a:00:8b:5a:94:d4:dc:fc:
9f:9f:20:1f:90:21:16:d3:32:b9:91:f8:42:b3:79:04:75:06:
b4:b5:8c:7e:04:f1:1f:45:c8:55:e1:62:78:34:7d:d9:6f:14:
73:83:cf:55:fe:2f:c7:f6:09:ea:3a:1c:74:26:4b:85:db:d1:
17:ab:63:35:73:64:ba:d3:ed:d3:73:0a:e3:15:31:56:d5:3f:
fd:83:38:62:1c:35:4f:49:11:97:9b:c6:ba:74:4b:de:3a:c5:
a7:ea:a2:12
-----BEGIN CERTIFICATE-----
MIIFOjCCBCKgAwIBAgIUKsaiIwWk9PE0IwrXwezttbaN/BIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi
YmUzYTk1OTAeFw0yNDEyMjcxMTQyMDhaFw0yNTEyMjYxMTQ3MDhaMDMxMTAvBgNV
BAMTKDc2RjM0QjI5MzE0Q0IyRkNDNjMxOUFDNzU4OTQ0OENBREY1RTAzQzYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC81T4wjMTsIQod/xxwSSZBpxJq
NG/5wsPg9XftiI2UalN4tKYIo5bG9HM4li3I+2hKGOyyJHRPLDgGApg2ewD/3uar
96OV8MWhfcZ+rHgTOa8GaD3Uv52K3uUKR8UHa7peChimZAV7wXJt7uAhLsxXiX/E
itzW0CbZaiPXSsk9lBrptA9vSJyVKDREEXi1YgdJ/9+PCppZo/rIw3VAd2PeXaBb
bqDA6QoYUXohGoWbifb3q/s8pyWoXz0ni8XESWL5rGlwgLVOUyvVY+mpol2V5Ly5
8IyGGvwcVoH51QCmtynAaE6x9PrZQ9ULH45eUyL8meNBk0saXY8RXtTr4SIhAgMB
AAGjggJEMIICQDAdBgNVHQ4EFgQUdvNLKTFMsvzGMZrHWJRIyt9eA8YwHwYDVR0j
BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV
HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi
OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1
OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku
cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5
bzd2anFWay5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJz
eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4
YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zMTM4MzUyZTMyMzQz
OTJlMzIzMjM1MmUzMDJmMzIzNDJkMzMzMjIwM2QzZTIwMzUzMTMxMzYzNy5yb2Ew
GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEALn54TANBgkqhkiG9w0BAQsFAAOCAQEAm9yhiYMM8m+eJCQKVXwQr2CV
NYtthrJxD/01HRScqjydy8U4Fd16TPT+g/aDGVRWOp6MMe7et7sGo8jJvyrdiulm
BUTbWn0fYKoTBE8g5asnkJm+KbBXJFmIs9tBFC7rRvle9RYJlefOPIQqQ8VOZy4V
6z0UxO8oBhqzHsnIAJmh8w691pQ/5+C8TzbiF5ncMzS+KQznxmUOKWoAi1qU1Nz8
n58gH5AhFtMyuZH4QrN5BHUGtLWMfgTxH0XIVeFieDR92W8Uc4PPVf4vx/YJ6joc
dCZLhdvRF6tjNXNkutPt03MK4xUxVtU//YM4Yhw1T0kRl5vGunRL3jrFp+qiEg==
-----END CERTIFICATE-----
Generated at Thu Apr 3 05:27:15 2025 by rpki-client