Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e35332e3131302e302f32342d3234203d3e20313336373837.roa
File: 3139342e35332e3131302e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: vtszwKSCuf+ZvX/lGe75hTeLnC7UOOXcD9cZRsUU1lo=
Subject key identifier: 29:21:CA:29:16:66:B2:03:79:4D:26:D0:AA:5F:13:47:89:D8:9E:14
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 65EDFADF0F580FCFBCC11379EA137D4BC71D8CAA
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e35332e3131302e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 20 Dec 2024 15:23:38 +0000
ROA not before: Fri 20 Dec 2024 15:18:38 +0000
ROA not after: Fri 19 Dec 2025 15:23:38 +0000
asID: 136787
IP address blocks: 194.53.110.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:ed:fa:df:0f:58:0f:cf:bc:c1:13:79:ea:13:7d:4b:c7:1d:8c:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 20 15:18:38 2024 GMT
Not After : Dec 19 15:23:38 2025 GMT
Subject: CN=2921CA291666B203794D26D0AA5F134789D89E14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b6:e5:a4:01:f4:31:92:f1:51:93:c5:79:cf:
fb:b1:68:4b:7c:b3:f8:30:e4:8b:dd:fc:b7:74:39:
b0:5c:c4:3a:dd:bf:67:52:2d:06:c6:96:c4:6e:07:
38:0e:d3:59:6f:a2:99:e9:1d:4b:c3:f1:67:c2:a8:
86:95:39:16:26:31:c8:64:56:79:a1:cb:d0:b6:aa:
54:ba:b8:e2:b3:04:ee:9c:73:c5:0a:8f:af:d8:df:
91:c6:c3:2d:9c:ad:1b:67:e9:91:00:71:99:e3:ce:
0b:b7:22:f4:35:12:85:ab:0c:38:66:ab:62:67:41:
c1:22:43:f3:91:c6:9f:93:40:34:32:fb:40:95:81:
a0:5b:17:07:d4:04:95:6d:0c:eb:bd:16:44:4b:2e:
22:2e:bc:72:d2:36:bc:15:5f:8c:51:91:b6:e6:7e:
cf:21:fa:48:7f:2b:fc:61:e2:7d:f0:a9:35:13:04:
74:2f:21:61:0f:be:3a:a6:11:30:5d:70:13:4d:4c:
ee:63:d3:f9:1d:74:6e:6f:c2:39:25:07:0b:26:6a:
04:fc:0a:90:95:ee:72:60:c0:a9:4e:26:77:9b:40:
df:bb:c1:52:1e:24:36:22:23:58:31:5b:81:52:3b:
d3:68:a9:10:d8:e8:55:e3:60:fa:7c:42:b8:3f:15:
ce:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:21:CA:29:16:66:B2:03:79:4D:26:D0:AA:5F:13:47:89:D8:9E:14
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e35332e3131302e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.53.110.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:8d:70:ee:1d:54:e0:49:54:f1:b8:08:ee:23:a4:be:19:49:
43:1a:ed:96:1b:5c:87:65:b2:78:14:4e:28:9b:08:3c:47:c7:
a1:ef:67:38:71:5a:48:2c:31:c3:22:4d:28:64:9d:37:83:2f:
8d:5e:83:a4:41:d5:47:41:e8:2e:dd:9c:f8:8d:60:58:43:48:
5e:2f:04:e0:68:02:46:5a:78:77:31:a4:0c:91:5b:fd:14:22:
9e:9e:11:9d:d8:14:8a:ee:53:c4:b3:96:87:ae:7d:f5:2d:3f:
05:29:4c:69:47:e3:87:30:9e:82:35:eb:9e:c8:34:4c:b7:2e:
f7:65:43:19:4b:fe:86:98:9a:3d:0d:44:b3:03:20:a3:2e:e1:
af:58:de:0e:ea:3d:9c:f6:16:1f:1d:26:3c:d0:d4:17:58:32:
fa:6a:7c:08:78:1d:0e:39:7d:7f:bf:7b:ad:20:c2:d9:04:c2:
9e:f8:d0:44:f7:9f:a9:15:e6:23:a2:91:8f:1e:c3:0b:85:8d:
58:7c:59:c3:8d:67:e1:15:6d:f7:89:f8:7a:cb:ee:e0:03:55:
1f:8a:2e:f8:94:d7:0e:d8:9f:12:46:da:d6:a9:83:a3:8b:23:
db:d7:2e:c7:36:06:4a:e2:47:a0:5c:b9:7b:27:7a:92:d0:bd:
06:a8:83:df
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:52:34 2025 by rpki-client