Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/322e35382e33392e302f32342d3234203d3e20313336373837.roa
File: 322e35382e33392e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: O2/BLwj9HFsFu6u8Mj48/fKbpDkMtGjg8/P5hR4vNGE=
Subject key identifier: C1:03:A5:03:5A:3F:A7:C6:2E:EF:CD:13:E3:C4:07:95:24:28:27:68
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 3F66EAA9D494A60D8D78A20755D552DC08252AF7
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/322e35382e33392e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 11:47:35 +0000
ROA not before: Fri 27 Dec 2024 11:42:35 +0000
ROA not after: Fri 26 Dec 2025 11:47:35 +0000
asID: 136787
IP address blocks: 2.58.39.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:66:ea:a9:d4:94:a6:0d:8d:78:a2:07:55:d5:52:dc:08:25:2a:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:35 2024 GMT
Not After : Dec 26 11:47:35 2025 GMT
Subject: CN=C103A5035A3FA7C62EEFCD13E3C4079524282768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:12:1d:f5:8b:cb:da:0b:e0:a5:e0:4d:ef:cf:
d0:f0:65:02:50:0e:44:1e:a1:83:99:2b:cb:a5:c8:
ba:de:92:2e:82:fe:c9:65:2e:3a:a6:41:75:4a:0b:
02:5b:56:2b:49:f1:e0:0c:8e:d0:06:12:91:fc:a7:
6e:34:ca:23:22:4f:36:e8:1f:b9:4f:fb:86:79:bc:
ba:eb:4c:cb:e3:38:38:e8:5d:75:bc:8b:42:37:16:
b1:a0:aa:29:3d:6b:0a:53:67:b7:ce:ab:b8:83:7b:
00:41:3f:aa:c5:71:ca:3e:33:1f:0e:18:90:6e:e8:
65:8c:bd:b3:29:4d:ef:18:46:a7:b9:09:b6:19:a8:
a5:a4:95:86:45:a2:80:cb:80:a2:ff:63:ff:94:e9:
b4:6b:e6:a1:8f:69:63:d2:08:81:4e:f6:61:33:37:
d5:7f:c4:e1:27:c9:05:f0:a5:5c:59:ca:c7:b8:78:
34:7c:d5:74:4e:9e:9f:bc:51:f1:36:cb:e6:34:0b:
ea:b6:29:87:c0:3e:b8:9c:42:01:e9:bc:00:f9:a8:
fc:71:e6:fc:03:99:d8:27:5f:11:4e:d2:b6:72:98:
7a:93:d7:02:a4:ab:b3:e6:8a:12:20:28:af:49:14:
21:e1:9a:03:48:52:ab:97:98:90:91:37:8c:20:e6:
b6:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:03:A5:03:5A:3F:A7:C6:2E:EF:CD:13:E3:C4:07:95:24:28:27:68
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/322e35382e33392e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.39.0/24
Signature Algorithm: sha256WithRSAEncryption
30:e3:cb:4a:c3:cc:84:8c:7f:02:8e:34:1f:09:a9:b6:44:de:
5b:98:e8:42:32:e3:3b:1a:69:db:e2:63:23:be:8c:2b:91:40:
c3:ad:67:05:2b:a9:02:cd:27:e9:71:62:b8:48:cf:8e:94:99:
fc:bd:1d:62:8b:3b:9f:6f:ce:88:04:d3:dd:11:e1:36:5f:4e:
a1:19:13:04:ce:ec:6e:43:56:34:16:22:3d:7f:bf:74:b2:98:
27:c0:76:a8:72:f3:72:29:e1:11:8e:e0:79:cb:49:d0:66:aa:
f1:1c:e4:43:01:49:ef:28:4a:db:35:cd:0c:ad:b1:78:29:27:
82:02:f5:37:14:46:f7:5e:39:71:6c:68:64:c6:76:0f:dd:4d:
07:32:3c:cf:1a:1b:ca:8b:ab:5f:bf:e4:a6:2c:77:32:e3:d2:
5e:32:4a:89:e7:4c:16:70:c7:92:3b:76:d8:a4:fc:48:04:ee:
79:22:15:35:3e:07:49:cc:7c:ce:6a:fd:15:2a:64:80:a1:cd:
e6:b6:f8:70:5f:ab:ef:b2:a7:e8:a3:d5:50:78:bb:b9:4a:ef:
80:dd:d6:3a:5a:ad:fd:90:66:8c:08:27:5c:29:c5:b5:da:b7:
da:10:cc:18:7f:a6:db:b3:4e:8f:b3:3f:78:b2:26:06:84:a2:
53:3a:21:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:52:50 2025 by rpki-client