Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e33342e3233322e302f32342d3332203d3e203531313637.roa
File: 3139342e33342e3233322e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: uXe4wLwCXhAymRouOC1iKrRA2t/9hYITgSBZ7UpmhgY=
Subject key identifier: F2:0E:39:01:99:6D:BE:5D:DF:0E:E2:7C:21:61:A2:CD:16:9B:86:F4
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 193A31E6927864DDE361A6D5A4486ADD038F9D74
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e33342e3233322e302f32342d3332203d3e203531313637.roa
Signing time: Fri 27 Dec 2024 11:47:14 +0000
ROA not before: Fri 27 Dec 2024 11:42:14 +0000
ROA not after: Fri 26 Dec 2025 11:47:14 +0000
asID: 51167
IP address blocks: 194.34.232.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:3a:31:e6:92:78:64:dd:e3:61:a6:d5:a4:48:6a:dd:03:8f:9d:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:14 2024 GMT
Not After : Dec 26 11:47:14 2025 GMT
Subject: CN=F20E3901996DBE5DDF0EE27C2161A2CD169B86F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2c:77:8f:a0:64:94:6b:07:85:c4:dd:ac:6d:
cd:2e:b7:c9:75:31:73:83:38:1f:57:ce:d7:0c:3f:
8b:62:f2:78:e0:ce:0f:be:bf:01:d4:6e:e5:86:d4:
89:d5:14:70:a1:20:4e:b6:6f:b3:f4:b2:99:0a:5a:
b7:d5:39:e4:e4:48:e8:54:8f:5a:65:56:c9:8c:38:
58:41:05:dc:bf:1d:72:f0:3a:a4:5c:06:86:ef:3c:
a6:9b:73:2a:73:6f:2f:ea:a9:f4:c6:0a:16:08:9c:
80:ed:0e:f9:0e:75:d1:3b:5c:f2:6d:55:89:fd:27:
7d:e5:4b:73:6e:8c:48:51:30:11:40:0d:bb:9e:ab:
16:71:19:b8:d1:8f:43:49:94:28:62:98:ad:90:90:
a8:70:0d:85:a8:55:4a:b7:82:90:0a:86:fa:82:a1:
31:d8:ec:87:83:5b:d7:3c:f3:26:e1:d4:d4:de:97:
09:ee:b3:52:e3:2f:6d:54:9c:80:a9:2f:2e:fa:d1:
bf:ae:23:e0:7e:7f:a1:2f:fe:60:e2:0d:ef:08:d4:
22:e8:97:fc:9c:e4:fe:ec:2b:65:fb:83:5e:b6:9e:
e6:8d:63:23:d2:94:55:d9:90:ec:ef:69:52:57:ba:
5d:c1:65:e0:ab:2c:33:2c:c7:47:13:62:3f:c1:e9:
fc:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:0E:39:01:99:6D:BE:5D:DF:0E:E2:7C:21:61:A2:CD:16:9B:86:F4
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e33342e3233322e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.232.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:7c:14:19:c6:54:51:75:4f:57:11:a1:05:85:f5:69:24:e1:
d0:c7:fc:f4:9c:3a:63:53:31:d9:93:a4:f6:59:2e:a5:ba:b7:
de:dd:18:9a:72:12:3f:62:86:fc:7d:e6:b9:1d:1a:0e:5d:17:
3e:bc:96:c0:e9:2c:d1:ad:4c:81:51:d4:c9:15:cb:4b:9b:2d:
ed:68:4d:c3:67:4f:af:57:2b:ee:19:91:58:0a:81:fa:f5:da:
9d:93:45:d7:9e:ec:19:55:11:76:b0:09:15:2c:8b:e9:93:e1:
b7:88:83:23:d1:40:4d:1e:3a:20:11:07:9a:62:ce:76:31:41:
b2:38:1c:ad:18:3e:eb:7a:03:51:b8:46:67:aa:cc:e7:fd:1f:
f8:5c:77:e9:6a:5c:e4:de:42:38:6e:78:07:c0:56:11:f5:ca:
49:0e:a9:96:be:aa:a6:8d:f2:13:89:d1:15:7d:11:dd:f3:cd:
c0:02:8b:af:f3:40:d6:54:32:22:97:7f:09:67:37:93:17:fe:
48:19:b6:48:e1:38:4b:cb:2e:36:82:d5:6f:cb:d8:45:6a:44:
d2:12:6c:fb:14:cf:fb:70:2e:6f:f3:96:f9:f7:a8:07:bd:3c:
a0:0d:e9:ef:4f:a3:cf:90:cb:a0:67:9b:9e:af:19:4f:82:75:
eb:69:5a:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 05:04:12 2025 by rpki-client