Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e3134372e35372e302f32342d3234203d3e203230343733.roa
File: 3139342e3134372e35372e302f32342d3234203d3e203230343733.roa (raw, json)
Hash identifier: VjmU1VtkxjQQ+Cok64911aFa5WwbDYg79S8w9BExqN4=
Subject key identifier: B0:6E:13:1F:8F:27:CA:ED:10:D7:3C:3B:2A:EB:26:A4:FF:99:B5:56
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 1F295BE2051EF05E72DAE2067597B90CAE03C611
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e3134372e35372e302f32342d3234203d3e203230343733.roa
Signing time: Fri 27 Dec 2024 11:47:37 +0000
ROA not before: Fri 27 Dec 2024 11:42:37 +0000
ROA not after: Fri 26 Dec 2025 11:47:37 +0000
asID: 20473
IP address blocks: 194.147.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:29:5b:e2:05:1e:f0:5e:72:da:e2:06:75:97:b9:0c:ae:03:c6:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:37 2024 GMT
Not After : Dec 26 11:47:37 2025 GMT
Subject: CN=B06E131F8F27CAED10D73C3B2AEB26A4FF99B556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f5:a8:99:5b:33:d3:18:fc:9c:8e:24:2b:3a:
92:11:a1:a3:93:5e:3c:69:f3:f1:14:e4:64:96:c7:
28:9c:90:ee:a9:07:0d:0a:c6:58:19:1d:16:36:da:
c4:6c:c7:6a:10:06:8a:0f:8b:1f:83:f1:3a:c2:8e:
56:ac:76:b5:39:71:ea:5b:e8:4f:01:75:10:6b:78:
63:cf:f8:7b:a2:32:e3:9c:f3:81:45:81:08:55:59:
ac:fb:38:cd:b6:b0:90:49:70:06:ef:9a:3f:29:3d:
85:53:eb:5f:a6:a3:4f:5e:31:19:72:ea:b7:ea:e7:
c9:97:e1:cb:43:61:96:48:e7:ef:ee:c3:03:72:f8:
9b:d3:49:2a:86:f8:00:f0:cb:9a:1b:7f:db:13:36:
a6:11:ad:69:25:13:70:a1:ef:af:d8:c3:7d:9b:3d:
03:c8:c2:b8:0c:13:f1:dd:1a:8e:41:f0:7f:5e:a3:
bf:9a:cd:a2:bd:16:99:e4:d4:87:a2:ed:b2:b0:45:
bf:aa:f7:14:2a:bf:02:f5:bf:55:fd:87:d6:8c:7f:
7a:21:91:2c:73:95:d7:1d:bc:00:8b:93:58:6e:82:
07:7e:bf:1a:66:81:0e:d6:14:49:8d:b3:ec:b2:42:
df:9a:8f:51:9f:93:8f:0a:65:fa:51:6b:86:be:45:
5f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:6E:13:1F:8F:27:CA:ED:10:D7:3C:3B:2A:EB:26:A4:FF:99:B5:56
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e3134372e35372e302f32342d3234203d3e203230343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.57.0/24
Signature Algorithm: sha256WithRSAEncryption
e2:d7:e6:65:3f:5f:3b:62:e4:a0:a4:f3:3b:de:cd:65:e6:b2:
fa:07:69:32:d2:de:d4:55:8b:68:3f:20:05:4e:6c:10:d7:78:
94:c2:0f:10:41:cb:b8:de:ec:fa:1e:84:6d:09:ef:25:ad:ac:
8b:05:de:e7:90:d1:dd:5c:6d:d4:67:2c:ba:d4:4f:30:4f:b4:
2e:02:56:48:c2:19:40:15:87:50:fc:79:69:60:54:2d:f5:04:
bd:07:5d:a6:70:80:07:e2:19:18:35:a9:53:a7:62:b1:e5:0b:
6a:0a:19:04:54:e3:3d:80:23:e2:24:68:22:37:44:bf:04:e9:
32:2e:cb:1f:07:58:cc:cc:7a:b9:4f:4d:be:18:a3:61:af:16:
3a:f7:3d:9a:66:f0:41:26:b7:a2:69:01:69:6f:68:e2:80:41:
b3:2b:7f:28:b4:35:ac:b8:87:c6:a5:74:43:a9:6a:2b:54:41:
f6:14:1c:b7:fe:db:17:87:c9:a6:2e:ca:63:b6:41:cf:82:a6:
8a:af:e6:e5:ca:b9:4a:98:c1:4a:8b:63:6a:a7:ba:2b:85:9f:
ea:c6:c4:94:7d:16:4c:f2:18:f3:b5:7c:7a:28:30:77:aa:80:
7a:c8:2b:26:d1:9e:04:19:fc:dc:ff:96:e2:13:9e:d6:e2:50:
c0:7a:90:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:38:00 2025 by rpki-client