Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3235322e3233322e302f32342d3332203d3e203531313637.roa
File: 3138352e3235322e3233322e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: GFr29nqht1pwpY1MfrG+XPJu/oWkyrwJLh/VbaVFkps=
Subject key identifier: 13:79:3E:21:95:5F:9B:40:60:42:0F:4E:6D:C8:B5:D2:16:6A:BD:A7
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 1B6123FDC9BEEB80CD06C581DB11DC86F7AA92BD
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3235322e3233322e302f32342d3332203d3e203531313637.roa
Signing time: Fri 27 Dec 2024 11:47:44 +0000
ROA not before: Fri 27 Dec 2024 11:42:44 +0000
ROA not after: Fri 26 Dec 2025 11:47:44 +0000
asID: 51167
IP address blocks: 185.252.232.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:61:23:fd:c9:be:eb:80:cd:06:c5:81:db:11:dc:86:f7:aa:92:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:44 2024 GMT
Not After : Dec 26 11:47:44 2025 GMT
Subject: CN=13793E21955F9B4060420F4E6DC8B5D2166ABDA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5b:fa:37:82:f2:78:21:3b:85:3f:c5:d6:b0:
cc:99:88:e7:f8:85:73:5f:fc:08:41:fb:ad:84:f5:
30:11:eb:95:a9:ed:29:85:0d:47:b2:c2:37:a0:84:
54:4b:bc:d8:a9:f8:94:5f:40:a9:1c:6a:c4:45:fe:
ef:7e:d1:a1:e3:2d:c5:4e:a2:6a:b0:8b:87:89:87:
58:46:ee:4f:0e:a2:6f:5a:92:4e:11:b1:44:a8:8f:
10:ad:78:f2:b0:56:ca:7e:a9:9d:5b:08:c5:77:40:
74:67:a8:27:5a:14:0e:a9:84:75:f9:2a:01:2f:df:
ca:a0:6b:4a:72:84:67:ce:2c:27:ef:0c:93:6b:ca:
8d:fd:9d:09:73:ae:3a:b1:13:c6:90:c0:da:7f:ed:
e5:a0:f1:62:84:7e:71:ec:f2:b3:9a:4c:85:ee:be:
0a:38:c1:a8:80:16:e6:59:fb:8a:59:90:a8:c5:e7:
db:c1:c2:3d:d4:56:4b:df:8d:3a:ea:6e:e9:b0:45:
e0:ba:b8:2a:f2:ad:66:f5:52:e5:8f:19:e6:54:41:
ac:0f:ba:31:0e:70:97:4f:f3:7f:a4:c6:b8:c8:b6:
ce:e1:9a:ad:63:32:b3:05:6b:23:dd:53:da:86:9e:
6d:7d:78:7e:3c:5f:8a:11:05:b3:8f:09:e6:f8:d8:
e0:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:79:3E:21:95:5F:9B:40:60:42:0F:4E:6D:C8:B5:D2:16:6A:BD:A7
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3235322e3233322e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.232.0/24
Signature Algorithm: sha256WithRSAEncryption
85:99:72:36:64:56:40:ab:25:23:ac:80:93:af:fd:08:63:ce:
cb:6a:e9:ca:5d:ab:f3:7e:66:3f:41:43:b5:95:b9:7a:03:c6:
72:4e:df:8c:df:80:ef:f3:4c:af:b1:c7:0b:20:f4:b6:64:ec:
7c:55:7f:a8:83:97:b3:24:92:cb:cc:41:3c:25:81:31:04:a9:
c6:18:a1:be:81:c4:4e:80:df:ed:79:dc:46:d8:fe:fe:b3:c9:
ac:85:e1:ce:31:51:41:fc:d3:44:6c:f3:41:5a:95:40:70:7c:
15:0e:98:0e:a1:29:ea:93:5e:a7:57:d7:42:86:4b:8c:6a:8c:
09:0f:8f:7b:b1:62:fa:69:f9:d9:b8:c2:7f:9a:08:fa:21:ae:
30:58:b9:4e:de:05:ec:7d:e1:a3:df:d4:4e:14:e8:d6:17:49:
ac:e5:4b:df:71:a6:bc:b5:11:fe:20:42:bf:13:8a:d0:a6:da:
f3:61:8f:5f:7a:7c:e3:4b:ad:a9:a3:31:96:a0:22:ab:be:65:
ab:14:88:bc:13:b1:a0:e2:d8:2b:db:22:15:48:45:d9:af:b2:
83:39:e0:ca:45:15:ba:87:2a:b4:91:4c:e8:2e:e2:a5:5b:49:
ad:f0:a4:8c:f0:34:17:28:3c:30:d2:62:4d:4f:c9:7f:d6:30:
aa:25:01:df
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Apr 3 05:21:20 2025 by rpki-client