Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e33342e3233332e302f32342d3234203d3e20313336373837.roa
File: 3139342e33342e3233332e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: iYr9sysLtyV6hicLl/AoAiViuPZeaOBs0BTBbnCMdS8=
Subject key identifier: 71:A9:AF:C4:72:9C:F2:26:E4:3C:98:16:70:59:3C:9D:95:31:89:2B
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 667AD718F03B2AC9B02046C4D0C47F9549D6499E
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e33342e3233332e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 11:47:39 +0000
ROA not before: Fri 27 Dec 2024 11:42:39 +0000
ROA not after: Fri 26 Dec 2025 11:47:39 +0000
asID: 136787
IP address blocks: 194.34.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:7a:d7:18:f0:3b:2a:c9:b0:20:46:c4:d0:c4:7f:95:49:d6:49:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:39 2024 GMT
Not After : Dec 26 11:47:39 2025 GMT
Subject: CN=71A9AFC4729CF226E43C981670593C9D9531892B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:db:83:8e:11:ac:36:7a:f7:4b:7b:44:a3:6a:
bd:06:6d:e8:1d:12:3f:43:02:c2:88:f1:2e:be:c6:
14:df:1b:16:db:b4:0b:71:27:54:3f:2c:dc:aa:4e:
12:a9:67:80:37:a0:87:77:4a:e3:48:e5:5e:18:40:
6e:ed:b7:94:85:cb:ee:0d:92:fc:f0:61:06:01:aa:
34:f4:4a:ee:e2:13:b5:60:a6:49:e7:a6:03:d9:34:
9b:f6:73:bf:74:0f:ce:f1:56:88:3a:5e:97:e4:ff:
b9:2d:8d:f5:bc:32:08:1d:7e:df:68:76:3a:23:de:
92:37:b5:68:51:cf:e0:6e:20:6c:ee:67:87:b1:90:
47:f8:16:eb:47:49:a4:02:00:9e:cb:99:0e:ad:8d:
a7:ca:69:d5:09:ab:d7:71:71:ab:52:a2:8b:06:af:
41:e3:18:3f:11:1d:49:52:1b:fe:43:62:0f:14:e9:
63:d9:62:8f:f0:7c:cd:a0:15:71:7c:98:e1:bb:c5:
af:c3:5c:8b:e5:06:1e:bc:6f:5a:69:36:e8:25:3c:
c1:14:de:67:ba:42:bf:fa:25:a3:ee:e2:82:02:4c:
e8:01:68:dd:c9:b6:1d:29:3e:6f:1d:4a:37:b0:82:
66:80:e7:a1:0b:b4:76:d4:b3:f8:27:82:42:a7:ad:
4f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:A9:AF:C4:72:9C:F2:26:E4:3C:98:16:70:59:3C:9D:95:31:89:2B
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e33342e3233332e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.233.0/24
Signature Algorithm: sha256WithRSAEncryption
22:38:8f:93:b3:0d:0f:6f:9a:8b:eb:33:51:a3:45:0e:39:e3:
c8:2c:af:ae:b1:05:eb:3f:58:07:f8:20:d3:2b:e0:76:e9:88:
9a:36:ac:bb:2f:9c:53:43:ea:09:19:e5:a8:d5:e9:b9:22:a4:
8f:d4:cd:59:86:53:3d:4d:f6:f5:7f:04:4b:70:ad:bc:cd:af:
a8:ae:6f:1a:94:09:f3:8e:3a:52:b4:4c:ed:45:31:0e:70:83:
59:bd:03:ce:b1:42:e9:4a:bf:5e:0e:13:b1:af:ca:81:09:ba:
85:be:86:73:f3:c6:1d:59:45:db:b5:ae:2b:ba:87:34:11:c8:
f3:a5:4b:33:16:1d:a0:e5:ee:73:43:a3:9c:da:f8:fd:d0:f2:
c1:08:0e:aa:8c:d5:72:19:4a:f0:4f:a3:83:e9:32:2f:4a:c9:
25:74:4b:96:47:0c:b1:3e:e8:b7:b3:1f:ea:92:0c:35:34:bc:
48:25:6a:63:f5:d4:8b:da:1d:85:97:2b:04:20:3d:28:cd:6f:
ec:5b:1f:fa:34:61:bf:14:5d:da:a7:b0:dc:44:97:fb:c6:06:
ee:77:92:d6:ce:f5:bd:7d:c9:88:19:94:46:3a:db:de:41:3c:
72:86:15:a6:a6:7b:62:3a:0c:83:48:55:04:c4:89:ad:f4:fe:
25:2b:68:45
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Apr 9 14:07:35 2025 by rpki-client