Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/322e35382e37322e302f32342d3234203d3e203632323430.roa
File: 322e35382e37322e302f32342d3234203d3e203632323430.roa (raw, json)
Hash identifier: KOkW1kOL8l2R/0K7KFFV//4+O/nmf6Xl7pZBnmnxsrA=
Subject key identifier: D6:53:88:12:C7:26:00:BA:97:78:EF:96:98:30:26:5F:DD:1F:69:20
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 02087A1BA4EA13491CF0F7E687D7AFE99604703E
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/322e35382e37322e302f32342d3234203d3e203632323430.roa
Signing time: Fri 27 Dec 2024 11:47:20 +0000
ROA not before: Fri 27 Dec 2024 11:42:20 +0000
ROA not after: Fri 26 Dec 2025 11:47:20 +0000
asID: 62240
IP address blocks: 2.58.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:08:7a:1b:a4:ea:13:49:1c:f0:f7:e6:87:d7:af:e9:96:04:70:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:20 2024 GMT
Not After : Dec 26 11:47:20 2025 GMT
Subject: CN=D6538812C72600BA9778EF969830265FDD1F6920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:17:39:f3:b1:97:7f:18:3d:5f:84:3e:05:88:
5d:18:c8:59:10:85:3d:63:7d:8c:aa:96:35:92:8a:
d4:9f:8d:b8:98:93:d8:8b:13:c8:fc:9a:50:14:72:
f7:94:ca:3f:a9:b0:20:90:2b:5e:9f:66:84:db:11:
ad:19:37:a4:12:70:6f:35:c6:48:ce:af:5b:da:cd:
c8:d8:c1:8c:22:a8:5b:3a:5d:4b:b8:8a:d5:f2:ac:
eb:a8:7e:50:c7:63:9a:b3:39:11:46:5b:68:6c:36:
d6:d6:ce:66:41:c5:5e:82:b1:06:d8:9e:49:ed:aa:
d4:d1:b1:f2:7e:49:d0:a9:d7:27:6a:8c:af:59:98:
d5:75:30:51:7d:f5:6e:23:7c:c4:12:4f:df:94:39:
8b:72:b3:e3:cf:33:49:5a:74:d4:e2:f9:7a:0c:39:
4e:08:53:51:24:a5:ed:21:6a:36:a3:03:93:22:32:
b3:ce:b4:76:bb:98:03:c3:e7:88:b7:58:96:7f:7e:
ca:99:f7:99:a7:11:6d:51:84:c6:5f:9d:b3:93:8e:
fc:00:0a:f6:1d:1c:39:b1:c4:06:fa:17:f3:53:b8:
0a:6a:af:fa:6c:e6:d5:dd:98:e1:4c:b5:30:8f:75:
96:a3:4e:cb:bb:49:d4:45:57:43:16:9d:51:9a:32:
3a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:53:88:12:C7:26:00:BA:97:78:EF:96:98:30:26:5F:DD:1F:69:20
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/322e35382e37322e302f32342d3234203d3e203632323430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.72.0/24
Signature Algorithm: sha256WithRSAEncryption
27:b5:85:c9:41:ae:69:b8:b1:35:da:19:a6:f4:ba:e8:b3:c1:
da:62:84:06:4b:d3:a0:2a:a2:fd:6b:86:4e:84:03:9d:15:a5:
e4:b7:47:91:29:9e:98:0d:cd:62:1c:65:3e:ce:53:25:2b:71:
2e:4a:34:c3:29:77:1f:e8:ad:82:2a:54:8c:30:22:b5:7d:c6:
a3:da:47:e3:5a:03:74:df:49:53:15:43:9e:01:55:fb:12:b0:
3d:8b:9c:79:c1:8b:88:c9:45:57:13:c0:aa:ff:b1:ad:b4:1b:
15:b8:97:b0:3c:6e:a1:35:cf:29:30:58:e0:c5:38:55:85:32:
79:86:af:9a:0d:b0:2d:c0:23:77:90:ef:ba:06:4e:98:2c:bc:
30:ac:5b:24:c9:4e:8f:93:b8:bb:71:7f:b8:95:2d:7a:b3:56:
51:dd:83:6f:21:c5:f4:c0:3f:0b:51:08:ec:5d:91:29:b6:e3:
52:39:e3:c4:6d:11:ff:75:b6:65:b8:ea:db:2a:b8:ba:ab:b4:
f6:0b:35:48:57:4f:51:af:1f:57:49:58:88:c2:2d:56:f9:2f:
a8:dc:2d:95:b1:b4:eb:ca:ef:9e:e8:ff:9c:e0:88:d0:fe:2c:
65:22:96:af:e0:86:9d:15:bc:da:1e:e6:01:80:92:09:99:30:
aa:42:d8:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 22:20:19 2025 by rpki-client