Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e35332e3131312e302f32342d3234203d3e20313336373837.roa
File: 3139342e35332e3131312e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: /fiYxjPv4EfnKNE7VWTpL2CRo2IwpOb89strCnu+lx0=
Subject key identifier: 2D:0D:CE:6F:2D:F1:73:11:2F:23:2A:D7:31:CA:87:E6:B7:95:98:91
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 20CE6368667F6984CBB34F29F1DCA6A34718D2CA
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e35332e3131312e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 20 Dec 2024 15:23:39 +0000
ROA not before: Fri 20 Dec 2024 15:18:39 +0000
ROA not after: Fri 19 Dec 2025 15:23:39 +0000
asID: 136787
IP address blocks: 194.53.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:ce:63:68:66:7f:69:84:cb:b3:4f:29:f1:dc:a6:a3:47:18:d2:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 20 15:18:39 2024 GMT
Not After : Dec 19 15:23:39 2025 GMT
Subject: CN=2D0DCE6F2DF173112F232AD731CA87E6B7959891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8a:82:ad:f4:5d:26:40:c5:21:2e:54:87:62:
5c:b8:54:03:10:83:7a:f6:2f:dc:e8:32:11:41:d1:
ed:72:8c:65:79:3e:f8:d6:2c:97:c6:5f:ff:ee:4d:
dc:6e:c7:ca:2e:01:19:07:39:ae:90:f9:83:13:01:
84:ae:51:b8:9b:03:9a:a0:dc:a2:d2:e7:5c:1b:d1:
5b:dc:d8:0a:db:e2:06:4d:aa:a8:3b:41:ad:b8:b7:
8f:26:42:f0:6b:92:03:31:0b:25:9b:1c:92:cb:e6:
08:ff:1f:77:c9:82:71:09:17:52:f0:d2:d8:9d:14:
bc:1d:5c:83:fd:8b:8e:9f:49:d4:0f:a3:e0:66:fc:
e7:5f:29:13:4e:dc:1f:2d:d6:cf:bd:93:70:33:f4:
a7:5d:09:e6:7d:da:58:03:77:39:5c:71:47:2f:d6:
4c:7b:2a:96:6d:fb:d5:78:29:26:68:b9:8d:e4:90:
06:37:f5:9f:15:bf:68:ec:5e:a0:ca:82:35:5a:b7:
5c:69:c8:3d:ca:a0:e4:c7:f4:2c:03:1e:35:f8:37:
9a:87:47:45:f2:4f:12:d1:69:ce:62:47:ad:e0:b5:
a3:d9:72:bd:a5:e5:f9:e7:a9:21:be:f6:f8:1e:0f:
75:c9:ba:64:d6:f3:61:a1:96:76:e5:6f:57:8d:78:
64:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:0D:CE:6F:2D:F1:73:11:2F:23:2A:D7:31:CA:87:E6:B7:95:98:91
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e35332e3131312e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.53.111.0/24
Signature Algorithm: sha256WithRSAEncryption
55:8a:a9:5c:85:34:94:ba:2d:9c:3a:42:48:e7:8d:bf:37:cc:
8d:06:20:30:d2:2d:9e:0b:3d:7b:b9:ad:78:f2:22:51:53:10:
3a:45:35:39:8d:d0:8c:ec:b1:99:c4:98:41:12:b4:21:6a:0e:
3a:07:0a:e9:f0:2e:09:ca:73:f2:97:02:d3:15:15:7c:87:40:
a6:ef:68:b2:cf:f0:b9:35:01:42:1b:65:fa:62:72:ac:2f:d3:
61:1b:3f:fb:98:57:f8:d8:49:10:f1:4d:60:5d:8a:d1:dc:07:
fc:21:63:c6:33:db:e3:12:72:1c:0c:20:28:5c:b3:ab:65:94:
23:f7:2e:82:5d:6c:03:4c:09:6a:68:d7:ef:09:66:d2:18:81:
83:20:04:06:fc:b5:fb:6c:2c:ce:bc:be:6a:0d:63:5a:1d:60:
ac:a8:9e:8c:a2:e4:45:46:d6:29:ba:45:6f:49:b8:dd:b6:f8:
42:bd:dc:4d:07:68:e6:49:1b:a4:8d:70:b1:83:47:08:3e:7a:
da:66:d3:40:ad:02:07:bb:da:89:f1:db:42:df:7d:b5:ca:16:
ff:cc:cd:d7:da:c3:44:a0:8e:b8:e9:42:d7:1e:85:c8:ee:14:
68:5c:b2:d9:76:82:dd:ee:47:41:49:86:d2:e9:69:7c:b1:b7:
14:37:c2:d6
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 02:54:59 2025 by rpki-client