Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/352e3235322e3134322e302f32342d3234203d3e20313336373837.roa
File: 352e3235322e3134322e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: UgY6PPKJkro7jlvrhmABP/b2o7RjiYoZCT8YKKl8MmQ=
Subject key identifier: 63:D2:CC:E6:EB:A3:34:C2:51:CA:BB:41:AE:09:A9:B5:26:B4:3C:CF
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 309F3643904DD44CAD365A6C1C89D4B2AD0EA7A5
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/352e3235322e3134322e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 20 Dec 2024 15:23:37 +0000
ROA not before: Fri 20 Dec 2024 15:18:37 +0000
ROA not after: Fri 19 Dec 2025 15:23:37 +0000
asID: 136787
IP address blocks: 5.252.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:9f:36:43:90:4d:d4:4c:ad:36:5a:6c:1c:89:d4:b2:ad:0e:a7:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 20 15:18:37 2024 GMT
Not After : Dec 19 15:23:37 2025 GMT
Subject: CN=63D2CCE6EBA334C251CABB41AE09A9B526B43CCF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ac:1c:19:71:e2:63:b8:78:5b:6f:65:8c:e6:
e5:ea:e9:42:48:3b:6e:d4:87:a3:06:d9:49:d0:9e:
af:90:51:33:a6:7f:4e:7b:65:27:76:c7:78:a9:e0:
7a:fd:fb:83:63:b2:c1:ab:f1:ac:33:f1:c6:e2:6e:
24:03:70:35:46:d5:c2:93:d1:51:ce:90:96:f0:46:
be:62:74:a1:0d:70:ca:fa:9e:7c:7b:05:a4:63:f9:
b9:f6:e0:8d:3c:f1:d3:b8:4c:5a:61:5c:81:69:5b:
e1:8f:67:82:76:20:7d:a1:8d:ed:79:1b:b9:36:83:
f6:7c:1c:a2:1e:bb:e7:3b:23:f3:0d:90:66:14:58:
10:1b:db:c6:ec:68:ea:db:b1:d8:6a:e9:6e:96:4d:
c9:e8:46:1a:5d:0f:c3:6e:3c:64:90:64:e2:7d:a0:
64:dd:2f:fe:2c:63:68:3a:a1:f3:42:8a:73:f1:26:
51:75:ef:54:75:0c:52:ac:15:99:2b:ef:51:07:de:
83:19:ff:33:b7:67:03:29:c5:0d:a8:95:41:48:47:
8e:06:03:5a:d0:58:e6:21:a2:1c:4d:10:a7:dd:22:
4b:c7:54:27:ae:05:e5:7d:e0:f0:69:9f:04:99:5f:
81:74:7e:cd:44:47:0a:78:7d:84:b5:1b:02:b7:5f:
8b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D2:CC:E6:EB:A3:34:C2:51:CA:BB:41:AE:09:A9:B5:26:B4:3C:CF
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/352e3235322e3134322e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.142.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:94:ba:c0:a0:cb:4b:68:a7:e2:95:d7:24:b3:02:8a:a1:af:
64:76:19:3c:22:52:79:90:31:1b:86:34:ba:8f:20:47:9c:76:
32:1b:fe:97:15:ad:ea:04:a3:4e:04:f5:36:8e:0b:49:90:8f:
b9:66:f5:17:4c:64:c1:d0:d2:a7:3b:be:10:62:3b:26:80:25:
3e:45:d2:cc:5a:33:4a:f7:b4:61:90:f5:c2:60:96:55:1b:20:
3e:cc:f3:40:a5:84:63:11:9d:6b:0c:bf:49:d5:d3:ef:8f:09:
91:a8:25:06:e9:d5:65:c1:b5:6f:54:f3:0a:15:6e:9a:50:0b:
76:b2:1f:d4:93:08:a0:e7:50:d4:b3:88:1f:00:56:ec:ac:57:
69:ac:3d:4c:35:1a:a5:ba:3a:57:1e:f6:e2:b6:7e:6a:0c:70:
96:de:be:37:9c:69:bf:b6:2e:67:76:5a:62:dc:85:ee:57:31:
7e:d1:a9:48:e5:1f:fe:da:5b:c7:ea:7b:34:c1:3c:52:97:b4:
3e:68:e4:1d:dc:01:56:5d:10:ee:fb:45:a0:56:1e:96:da:7d:
85:d0:19:01:04:a0:5c:de:73:4b:58:fb:56:a1:07:6b:41:1c:
3f:80:07:2f:e4:0a:d9:44:c4:99:43:2a:e6:21:77:2a:2c:32:
fe:bd:af:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:55:38 2025 by rpki-client