Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/38332e39372e3131342e302f32342d3234203d3e20323039383534.roa
File: 38332e39372e3131342e302f32342d3234203d3e20323039383534.roa (raw, json)
Hash identifier: 45HgBamO7TErVxv+u35b58B1GYzxmAUEnYmZ6M+nW3c=
Subject key identifier: 14:E6:81:B4:B4:83:8B:FE:4E:6D:7E:7A:31:12:8A:A4:3D:B8:97:88
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 1ED26241D7FED0AD9B36F93CEBCC129985D7AB02
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/38332e39372e3131342e302f32342d3234203d3e20323039383534.roa
Signing time: Fri 27 Dec 2024 11:47:40 +0000
ROA not before: Fri 27 Dec 2024 11:42:40 +0000
ROA not after: Fri 26 Dec 2025 11:47:40 +0000
asID: 209854
IP address blocks: 83.97.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:d2:62:41:d7:fe:d0:ad:9b:36:f9:3c:eb:cc:12:99:85:d7:ab:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:40 2024 GMT
Not After : Dec 26 11:47:40 2025 GMT
Subject: CN=14E681B4B4838BFE4E6D7E7A31128AA43DB89788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:bd:71:0d:0d:18:b4:59:d7:83:44:85:7d:16:
d8:ec:75:a2:36:9e:96:b9:75:5f:e8:3b:89:7b:fd:
da:9b:e4:58:36:00:e6:03:a3:7e:15:62:48:6c:80:
d0:e7:8e:4a:3a:76:0b:59:fb:c4:8b:9f:ed:b3:7e:
2b:2f:2f:ef:43:74:a6:1a:08:ba:c9:df:74:1b:47:
12:f7:97:2b:6c:2b:1c:f8:43:e0:d9:c1:46:8f:44:
2c:6c:db:48:bf:7d:e4:8d:cc:cd:43:ec:68:94:bd:
21:fa:ba:39:5d:82:d3:42:ce:2a:5c:12:3f:15:d3:
b0:f0:d9:21:ef:ed:90:3b:fe:e8:c7:7f:99:b6:b5:
a0:40:6e:a4:16:3d:75:8e:03:0d:7f:ed:40:34:73:
97:48:24:93:11:4d:bd:49:2e:e0:2d:ed:ea:a8:aa:
00:4e:68:55:ab:82:32:0a:22:46:a3:5f:56:80:55:
7a:17:d1:19:b6:09:e0:5a:55:1c:27:e4:f7:62:66:
2d:58:c8:90:fc:72:a4:65:e8:b8:42:6f:00:36:ce:
4a:89:39:36:0f:6d:dc:f7:f7:2c:ce:4d:b3:b4:95:
a0:9b:51:df:9a:b0:76:95:64:b5:86:5e:62:8a:08:
65:cc:b3:3f:90:88:a0:00:81:23:55:76:af:e8:5d:
d8:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:E6:81:B4:B4:83:8B:FE:4E:6D:7E:7A:31:12:8A:A4:3D:B8:97:88
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/38332e39372e3131342e302f32342d3234203d3e20323039383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.114.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:e3:53:78:4a:7e:32:8d:48:af:a1:36:c0:56:ef:d4:79:47:
d2:bc:5b:50:41:59:f9:14:8e:6f:bb:2c:d0:05:cd:4b:ef:ce:
b7:ad:c0:8c:72:cf:69:52:9f:07:09:06:c1:99:39:7a:ee:00:
25:12:12:36:1c:9d:6e:bc:90:24:08:c2:2d:02:af:43:2b:45:
4a:d3:a4:ad:37:24:9f:d1:12:fa:8f:ba:05:cb:5e:b8:5a:11:
0f:04:80:43:bc:e8:53:0d:47:d6:6a:d8:82:66:22:a8:d7:03:
1f:cc:74:c8:30:23:e5:f3:44:bf:b3:97:f9:81:8f:7d:e5:9e:
49:7c:58:1b:2c:2e:30:f4:bc:6e:36:5c:38:21:48:0f:27:54:
1d:93:48:eb:23:88:68:d1:62:df:46:d7:22:45:68:27:78:a7:
3f:3d:80:f4:e1:e8:0a:c3:89:1a:48:a0:9a:b5:19:aa:84:aa:
18:56:eb:77:6b:35:d5:f3:fc:32:5f:be:d7:be:40:4f:e6:19:
41:e0:bf:4d:00:85:13:e0:2a:09:54:09:03:69:01:bf:b2:3a:
ec:c0:aa:39:7b:36:75:e4:fb:09:f7:7d:63:85:b2:77:0e:53:
81:cb:dc:56:2d:66:3c:1a:ac:bc:b0:58:6c:3a:cd:e3:b0:c7:
40:b5:14:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:42:27 2025 by rpki-client