Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/38352e3230382e3135382e302f32342d3234203d3e20313336373837.roa
File: 38352e3230382e3135382e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: J5MLZgLNrl496fLLmcgBsWCxeIZv26YCtTZsbwHTgTI=
Subject key identifier: D2:B9:5C:47:54:69:B5:E6:A1:10:9D:CE:34:8E:CF:BE:0A:0A:82:CE
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 5081CE1B7E3AABE5CC6B0BB97A0808D5B6A35931
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/38352e3230382e3135382e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 20 Dec 2024 15:23:30 +0000
ROA not before: Fri 20 Dec 2024 15:18:30 +0000
ROA not after: Fri 19 Dec 2025 15:23:30 +0000
asID: 136787
IP address blocks: 85.208.158.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:81:ce:1b:7e:3a:ab:e5:cc:6b:0b:b9:7a:08:08:d5:b6:a3:59:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 20 15:18:30 2024 GMT
Not After : Dec 19 15:23:30 2025 GMT
Subject: CN=D2B95C475469B5E6A1109DCE348ECFBE0A0A82CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:f9:38:dc:ed:62:25:54:cd:ee:ce:16:3c:46:
e7:e1:2a:15:98:62:ef:74:81:f2:61:82:04:4b:d3:
c1:3d:58:f2:b9:9d:3f:44:a3:f7:05:3b:bc:dd:4d:
74:bb:30:c3:ac:91:9c:6d:3d:72:03:d6:09:b1:55:
12:da:17:8d:8f:59:69:bd:b1:8c:fe:49:5a:e4:04:
a2:36:35:f6:c1:a3:35:86:92:dd:89:13:27:38:c6:
e6:fb:90:72:59:5d:a4:2b:f1:90:d6:cf:3a:42:fd:
5b:ef:68:4a:3a:fe:30:37:77:ad:83:16:16:dd:a8:
0d:bd:bc:99:9b:70:cd:da:e5:e4:43:18:43:d7:14:
9d:73:1a:52:12:0e:60:00:9a:44:5c:69:7a:b5:fb:
5d:e2:98:bb:7b:1e:cb:2e:8f:6a:3b:df:c2:c9:a9:
0a:93:0e:a7:bd:a8:84:29:0b:0b:dc:53:46:22:74:
83:cf:42:1e:ac:c7:bd:f7:66:5d:f1:c4:f4:48:82:
68:16:7e:da:dd:ef:3d:df:81:d4:91:da:41:f5:10:
78:b8:c8:ba:f7:12:1a:a5:b6:c9:3c:cd:a6:a6:75:
73:56:59:3b:c7:0a:5d:93:63:e2:0f:ce:dc:e9:02:
bc:be:c7:f7:e1:74:56:08:7b:73:42:fa:29:73:13:
f2:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:B9:5C:47:54:69:B5:E6:A1:10:9D:CE:34:8E:CF:BE:0A:0A:82:CE
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/38352e3230382e3135382e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.158.0/24
Signature Algorithm: sha256WithRSAEncryption
51:30:83:13:3e:81:ee:ca:b9:2a:bc:5a:86:1a:a6:f4:e6:e2:
24:e8:63:a8:fb:ec:82:3c:34:1b:bb:e5:99:a2:81:0b:4a:2a:
6e:83:ba:2f:36:ec:86:75:56:91:3d:9a:85:33:41:bb:0f:df:
70:61:0c:1f:ca:87:e9:36:86:8c:9d:98:e7:2a:e6:3e:55:01:
84:e8:2b:60:fc:81:8a:00:72:27:8f:29:c9:a0:e7:d0:af:d4:
8e:ab:4c:4f:84:9a:7e:d5:c4:2b:5f:3e:09:ff:18:53:28:5d:
a2:13:f2:3f:58:d3:e8:7f:6c:bf:f9:13:6d:69:95:36:82:d5:
22:c2:6c:72:90:2e:67:af:c4:69:be:4a:a5:9c:e4:fc:16:97:
68:03:33:4c:30:b6:e0:e4:0d:ab:c0:3d:3f:53:73:8d:dd:df:
b3:19:e7:42:f0:51:04:fb:20:5e:50:0c:ab:a4:5e:ef:a4:5d:
ed:b2:5c:03:6c:65:55:1a:5b:76:74:d3:0e:1c:9d:10:57:b5:
17:5e:57:11:bb:d9:3f:2d:e6:bb:4c:2f:fe:bf:53:a0:0d:4e:
20:32:60:58:10:77:df:cd:31:90:17:98:c3:49:35:ae:57:74:
93:bc:91:4b:3f:b7:0d:51:c9:52:3b:ef:23:c5:00:1f:7b:70:
5b:70:76:0f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:52:02 2025 by rpki-client