Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/33312e34302e3231322e302f32342d3234203d3e20323031383832.roa
File: 33312e34302e3231322e302f32342d3234203d3e20323031383832.roa (raw, json)
Hash identifier: VmA6L75SGjRHYNWqSuz7QX4dCj6eBqStcoXv+3UFx5U=
Subject key identifier: 04:95:63:44:CE:F1:E5:7E:40:46:C5:8D:E8:CB:9B:32:F4:9D:6E:CF
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 6FB1B081C602A1EDC73451C29002CD00263EC2EB
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/33312e34302e3231322e302f32342d3234203d3e20323031383832.roa
Signing time: Fri 27 Dec 2024 11:47:44 +0000
ROA not before: Fri 27 Dec 2024 11:42:44 +0000
ROA not after: Fri 26 Dec 2025 11:47:44 +0000
asID: 201882
IP address blocks: 31.40.212.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:b1:b0:81:c6:02:a1:ed:c7:34:51:c2:90:02:cd:00:26:3e:c2:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:44 2024 GMT
Not After : Dec 26 11:47:44 2025 GMT
Subject: CN=04956344CEF1E57E4046C58DE8CB9B32F49D6ECF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e4:f9:bf:c4:d5:32:03:61:45:c7:25:5b:30:
03:d0:c7:f8:be:db:bb:ee:30:41:d1:20:2d:2f:74:
2d:09:3d:86:42:4e:b3:48:ba:07:98:39:b3:d9:bd:
f2:37:30:d4:13:df:d4:2a:f0:e0:f9:73:96:c2:01:
2c:fc:ab:30:f3:a9:eb:f9:42:d1:e7:43:a7:a4:9d:
94:ce:6e:9a:b2:6f:f9:91:5f:63:20:c5:7b:6f:5d:
d6:e3:d9:0c:be:4b:52:7c:dc:5e:3d:04:7e:e1:00:
8f:67:f2:36:b7:ca:a8:7a:f5:92:dd:64:ce:95:90:
2e:03:f6:fd:fe:e9:dc:f9:1c:bc:43:f3:ba:6f:fb:
42:5d:c8:16:06:90:40:13:30:b7:d5:d7:d6:e2:d4:
54:34:5e:97:2d:b2:85:91:50:d9:fe:88:f4:3a:ea:
8f:e0:17:39:3c:a5:06:77:fd:9b:c4:97:30:28:a7:
74:fd:ac:fa:9e:49:8e:e0:a7:0c:56:db:dd:37:50:
99:0f:2f:2d:cd:46:13:40:b1:25:8d:6b:34:a4:64:
d7:99:2d:89:4a:8d:73:c5:0d:d2:c0:1a:dc:70:d9:
bf:d0:d2:74:41:ef:e8:d5:43:ce:a1:e8:99:c3:aa:
19:ad:cf:9d:2b:07:34:55:68:8c:67:f7:bc:f6:5a:
00:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:95:63:44:CE:F1:E5:7E:40:46:C5:8D:E8:CB:9B:32:F4:9D:6E:CF
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/33312e34302e3231322e302f32342d3234203d3e20323031383832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.212.0/24
Signature Algorithm: sha256WithRSAEncryption
21:c7:0c:55:b0:28:eb:8c:15:53:ac:ec:16:64:35:93:e2:f4:
82:5a:f1:14:2f:81:f8:f8:5d:29:f1:d2:8a:75:5d:dc:8d:e8:
d7:01:2e:1a:78:91:29:19:b3:d2:69:02:3d:37:33:2a:89:ba:
ce:6b:d3:ab:c4:b6:82:c0:0c:67:8c:ba:cb:6c:a7:48:9d:25:
92:0c:14:13:f3:66:3b:ed:c4:ea:9f:65:63:29:ab:2c:7a:73:
f4:8a:11:aa:2a:ce:7b:3e:b9:9b:a8:79:09:65:3f:52:4e:3d:
43:1e:82:36:1a:7a:50:6c:6a:b3:e7:6f:8d:f4:79:a1:38:f1:
8d:c4:20:35:00:5b:d3:68:79:4b:13:bb:34:9a:0d:79:f3:33:
44:b8:99:7a:6a:73:94:1d:11:ec:c6:f0:2f:73:31:5a:75:04:
14:69:ea:fe:b9:e4:f7:05:02:59:cf:bb:11:38:52:a9:94:04:
6a:28:b4:30:f6:cc:d1:c9:f2:50:35:30:0a:d0:27:f7:fe:c9:
f3:75:85:e7:79:0f:31:07:bb:a7:a5:57:7b:fe:32:46:91:21:
46:5f:50:c5:47:a9:88:01:c0:69:af:48:89:59:a0:c6:a8:60:
c9:f5:ea:65:d4:34:94:f3:03:e0:be:b1:a9:21:00:00:77:30:
5b:19:0d:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 10:05:16 2025 by rpki-client