Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/39312e3231342e36352e302f32342d3234203d3e20313336373837.roa
File: 39312e3231342e36352e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: GIu4XY/6oTCcV7PVmlum+2yjOdHc4zBFPdJCVR37RoQ=
Subject key identifier: 40:E0:29:C2:F4:D0:42:FE:DB:C5:11:9D:3A:E7:38:0A:6B:D3:33:22
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 110BE3B3214D2B54815BFC0C2AE3E86F6893BA5E
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/39312e3231342e36352e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 11:47:28 +0000
ROA not before: Fri 27 Dec 2024 11:42:28 +0000
ROA not after: Fri 26 Dec 2025 11:47:28 +0000
asID: 136787
IP address blocks: 91.214.65.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:0b:e3:b3:21:4d:2b:54:81:5b:fc:0c:2a:e3:e8:6f:68:93:ba:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:28 2024 GMT
Not After : Dec 26 11:47:28 2025 GMT
Subject: CN=40E029C2F4D042FEDBC5119D3AE7380A6BD33322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:81:0f:24:9c:bb:92:78:4d:13:1a:c5:39:5a:
cc:0d:40:53:d5:b9:b9:d8:a5:12:25:13:4b:88:29:
9a:ee:10:da:c4:c3:a8:14:99:f9:3e:81:13:aa:4d:
1e:ff:0b:b9:0a:f8:4e:62:1c:a6:a1:cc:43:a8:28:
80:78:d5:d3:ef:4b:7b:e9:53:01:07:4f:2a:bc:84:
2a:9b:fd:73:83:9c:dc:59:24:ee:c1:3c:25:c1:89:
fa:f1:99:a3:da:df:cd:91:4f:6d:a3:ec:5a:ea:60:
00:77:48:bd:32:7d:24:bb:04:22:06:76:82:1e:10:
03:c0:35:08:6e:56:18:af:08:da:5d:ff:65:93:49:
34:3d:c0:1a:d4:ed:1b:b6:9b:b3:c4:5e:2b:96:e5:
1b:08:ea:24:68:19:c9:48:7d:cf:a6:4f:c8:73:c2:
1e:34:9a:16:3b:1b:13:94:66:bc:f6:03:b2:9d:d4:
ac:4e:8d:43:eb:3a:7d:d2:9d:f6:56:4e:56:b4:dd:
9f:0a:fb:de:ae:24:9f:8a:4e:02:3d:52:fd:32:29:
48:6f:24:31:ca:21:fa:8d:90:3c:c6:c4:e5:24:68:
18:46:87:06:b2:37:ca:58:15:73:60:a1:86:0a:3b:
d2:3b:b9:cb:7d:b8:6e:bd:58:24:11:2f:79:68:df:
17:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:E0:29:C2:F4:D0:42:FE:DB:C5:11:9D:3A:E7:38:0A:6B:D3:33:22
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/39312e3231342e36352e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.214.65.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:ab:64:51:7f:75:92:85:bf:85:51:d6:11:dc:8f:db:f2:46:
92:77:91:7a:c0:de:c2:5a:14:f7:d5:1c:72:e6:84:21:cc:af:
01:33:4b:a2:f8:de:3b:4e:26:dc:73:05:dd:85:6e:3c:15:5e:
c2:24:69:b4:c5:18:60:15:1b:3a:76:00:d7:fa:00:c0:b7:09:
c7:d2:fe:e2:f2:c0:7e:dc:03:11:f4:1b:8c:28:e2:ee:20:a8:
8d:53:89:d0:e8:14:19:6a:75:d4:bf:21:a1:ba:78:e7:a5:21:
90:43:e2:ec:c1:8e:16:63:d4:48:b1:6f:61:69:53:60:8b:7f:
22:a6:1a:b2:01:e6:41:0e:ca:77:44:95:b0:08:f3:40:94:49:
53:92:ac:b5:3c:50:f6:99:55:39:25:2b:66:93:8f:3b:0e:9e:
30:88:6d:7f:c6:f1:99:90:b3:d7:11:91:68:08:c9:47:b7:81:
c0:51:23:f4:6c:a2:11:b0:ae:b6:cb:d9:d8:24:9a:d6:3a:ed:
dd:0a:a1:bb:de:f1:67:1a:5b:08:96:12:3c:b9:4c:f4:5c:d8:
bf:93:eb:62:ff:1d:35:70:b7:1a:e3:41:9d:18:54:6f:36:4a:
24:37:62:61:b3:69:e4:85:71:4c:a2:77:3b:2b:67:75:60:22:
0a:e7:09:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:49:52 2025 by rpki-client