Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/322e35382e33382e302f32342d3234203d3e20313336373837.roa
File: 322e35382e33382e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: vH/BbTc1IpfQDBtxYkItvNuAOALR2vbf2x6ycgzpFMo=
Subject key identifier: 94:80:8E:CA:F9:7E:D1:DA:8C:40:50:3A:C7:3E:9A:AF:62:24:F9:EE
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 2CFA85DA0801D51AF4824373767EA55DDF243C72
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/322e35382e33382e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 11:47:22 +0000
ROA not before: Fri 27 Dec 2024 11:42:22 +0000
ROA not after: Fri 26 Dec 2025 11:47:22 +0000
asID: 136787
IP address blocks: 2.58.38.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:fa:85:da:08:01:d5:1a:f4:82:43:73:76:7e:a5:5d:df:24:3c:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:22 2024 GMT
Not After : Dec 26 11:47:22 2025 GMT
Subject: CN=94808ECAF97ED1DA8C40503AC73E9AAF6224F9EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b6:d2:e7:9f:1f:87:8d:76:67:c2:90:89:83:
31:6b:78:86:dc:4b:96:b2:9d:02:ea:9e:04:bd:83:
d4:3c:54:37:59:95:13:99:3a:37:c8:40:eb:95:73:
26:60:e1:c3:5f:ab:7e:ea:80:90:1a:14:15:db:39:
53:cf:e2:ae:a0:a1:3b:c4:d9:a9:01:21:ef:6a:a3:
90:5c:9d:b7:bd:40:82:58:b7:5f:56:ac:06:0c:3b:
f5:a7:49:e0:ee:5a:b9:03:1a:6e:4d:45:a6:37:a1:
94:4c:d9:f6:7b:cf:cc:c3:39:53:6c:19:de:86:38:
ed:9d:25:63:1e:2d:1a:b5:09:47:8b:93:78:bc:6d:
e7:8f:62:26:d2:b8:4c:78:f0:39:5b:e4:df:e7:28:
14:48:41:1a:a0:43:0e:d8:47:87:3b:8a:a3:83:d1:
32:72:5e:2a:58:6c:9d:96:03:ba:56:51:11:83:9c:
3e:3c:f0:56:a4:c3:bd:01:a1:f7:ab:b4:a6:62:fb:
73:4e:5b:f9:6b:f4:59:4b:4a:c4:b8:fc:eb:43:b7:
6a:89:19:f8:77:23:a4:6e:91:06:49:dc:8e:40:eb:
aa:7e:eb:02:db:22:10:8a:7b:20:4c:ff:f3:79:16:
f3:57:39:5c:d2:d9:dd:ab:43:13:36:be:1e:07:f5:
b2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:80:8E:CA:F9:7E:D1:DA:8C:40:50:3A:C7:3E:9A:AF:62:24:F9:EE
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/322e35382e33382e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.38.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:7a:3c:90:e2:f0:ff:bc:23:fe:74:24:9a:8e:f5:30:3b:87:
7f:b6:b3:c4:f8:7a:d9:33:eb:00:4d:38:e0:a0:e1:c0:40:77:
ed:44:fd:cc:17:9a:38:ca:9c:09:d1:98:19:98:c8:b1:2a:0e:
b0:62:4d:02:06:c4:fc:af:0b:d0:79:72:bd:36:99:cc:c0:75:
e3:9d:a1:6a:c3:02:a4:89:aa:f1:f8:42:aa:20:ce:a7:28:80:
a0:5c:30:72:34:e3:1f:bd:9b:e4:53:5c:92:2b:b0:99:b4:5e:
26:94:3b:6e:20:a5:d7:d0:2a:8d:d6:4d:8b:c6:89:aa:c4:ef:
06:20:53:69:55:78:c9:59:d4:ac:50:66:e2:2f:54:fe:b9:62:
d1:0c:b4:66:9a:a4:9b:ba:30:5f:f6:bf:7e:e9:04:dc:64:3a:
fd:63:46:71:af:9f:05:41:59:00:b0:21:27:d0:49:af:11:a5:
ef:cb:28:ae:24:34:fb:af:4e:27:50:52:bc:83:9c:1b:f1:5a:
a3:1a:46:c3:fc:fc:f4:d8:0f:32:99:9d:66:d7:75:d1:66:07:
59:fa:71:78:8e:e2:f5:57:9c:0c:ac:6b:ec:83:69:45:df:2c:
2e:22:7c:3f:c2:d3:f6:fa:6e:0d:69:cc:8e:ff:20:64:a3:14:
8d:e0:5d:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:25:28 2025 by rpki-client