Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e34382e3230342e302f32342d3234203d3e20313336373837.roa
File: 3139342e34382e3230342e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: CRnu8ejb9irudSrztT5JQBaoziL3mcBhDY1KqU7RAJo=
Subject key identifier: F1:91:36:33:22:E2:6A:52:35:6F:5E:9E:8C:73:7E:AB:E4:CD:C9:33
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 14F8B577A47135A0665D63C9BEC20FD1891A88B1
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e34382e3230342e302f32342d3234203d3e20313336373837.roa
Signing time: Thu 20 Feb 2025 09:45:46 +0000
ROA not before: Thu 20 Feb 2025 09:40:46 +0000
ROA not after: Thu 19 Feb 2026 09:45:46 +0000
asID: 136787
IP address blocks: 194.48.204.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:f8:b5:77:a4:71:35:a0:66:5d:63:c9:be:c2:0f:d1:89:1a:88:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Feb 20 09:40:46 2025 GMT
Not After : Feb 19 09:45:46 2026 GMT
Subject: CN=F191363322E26A52356F5E9E8C737EABE4CDC933
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:04:66:d1:da:ec:8b:76:6d:b8:c7:32:f3:71:
e8:94:aa:23:5d:e2:55:91:df:95:fb:f5:a8:4c:b7:
53:24:eb:ce:8d:2a:9c:ee:45:ce:00:48:d5:95:42:
91:8e:e4:fd:ef:76:5a:6e:67:00:1f:1f:e7:44:54:
0b:6c:d4:4a:43:76:b2:5d:97:9e:c4:a8:52:8c:d8:
0b:d0:7b:2f:68:f8:43:1e:61:95:59:ec:8f:56:06:
43:0c:ab:ba:38:19:6b:71:54:7e:9b:9e:4a:c9:3a:
42:03:62:7a:80:e7:bb:f3:a3:ba:c0:4d:0e:78:01:
94:1b:10:96:36:48:3f:cc:3e:0b:e0:16:62:b6:7e:
e3:01:de:71:60:0f:f4:cb:29:9a:e0:b9:74:0b:00:
b7:c7:9f:34:5e:b4:04:a1:3e:62:38:6b:f7:fb:ee:
c4:f3:72:bb:94:d7:a4:9b:e8:a9:d3:12:64:18:ba:
d6:a9:0c:40:67:98:7b:b6:c4:1c:33:73:00:fe:7a:
1c:a3:c7:d1:28:40:2b:a7:4c:c9:ff:61:41:44:ed:
df:f7:c4:41:b2:25:6c:e2:53:e7:69:da:3a:b0:3f:
c1:b5:5f:77:d0:c6:d5:71:b4:d3:bc:a1:6c:c7:c8:
95:0b:5b:34:33:ee:c7:e9:4a:60:59:6c:c1:1c:0c:
7b:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:91:36:33:22:E2:6A:52:35:6F:5E:9E:8C:73:7E:AB:E4:CD:C9:33
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e34382e3230342e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.48.204.0/24
Signature Algorithm: sha256WithRSAEncryption
02:f7:aa:5c:30:ed:37:bc:68:19:ba:ed:78:5a:df:da:94:21:
27:3d:1b:99:d1:5d:1b:76:50:44:06:9d:4c:63:eb:ae:89:f4:
95:a6:42:8e:94:68:b8:1b:6b:c2:44:04:8f:5d:68:67:b1:56:
51:b3:89:16:12:b9:f3:dc:49:42:2c:af:c7:48:32:fa:dd:f5:
ea:1e:6c:d9:5d:e5:a7:87:1e:8a:bf:2e:85:c1:13:93:9e:89:
a0:a3:ba:3c:af:fb:47:49:59:93:e1:a2:f9:84:22:ad:58:97:
aa:b2:1f:07:4b:ad:d3:ab:60:43:68:1a:88:82:e9:1d:05:58:
96:b4:b2:bf:df:8c:ae:5e:03:e2:1e:49:4a:c3:32:c1:a2:d1:
bf:3c:f1:1a:56:8e:92:86:d9:71:38:57:d6:2f:22:6e:3c:47:
7b:12:dd:22:d3:09:98:fa:87:ec:ad:29:dc:26:b2:78:28:84:
56:a1:29:3b:6e:ee:1b:76:61:7c:fb:7d:e0:df:5e:75:00:58:
1e:a1:1c:23:5f:ac:24:44:7e:86:ac:6d:bc:64:fa:16:bd:da:
53:02:26:1f:5c:75:88:40:6a:ff:04:f7:a6:3e:02:59:4c:5b:
57:a5:d9:9e:c0:3c:47:3c:ed:7e:05:b9:0f:a3:9b:34:e0:1e:
ab:6f:e8:2f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 08:49:50 2025 by rpki-client