Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3134372e37382e3132392e302f32342d3234203d3e20313336373837.roa
File: 3134372e37382e3132392e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: ikY8pl6i64rLnPUkBT3kEeL0ARywMx7DtRUT4jKHwwo=
Subject key identifier: BE:56:D0:4F:30:6B:3E:3E:61:6A:33:60:35:56:97:65:37:66:83:0F
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 3D9C246F61E48039572143CAF111C5F65A01F6D8
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3134372e37382e3132392e302f32342d3234203d3e20313336373837.roa
Signing time: Thu 31 Oct 2024 14:05:24 +0000
ROA not before: Thu 31 Oct 2024 14:00:24 +0000
ROA not after: Thu 30 Oct 2025 14:05:24 +0000
asID: 136787
IP address blocks: 147.78.129.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:9c:24:6f:61:e4:80:39:57:21:43:ca:f1:11:c5:f6:5a:01:f6:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Oct 31 14:00:24 2024 GMT
Not After : Oct 30 14:05:24 2025 GMT
Subject: CN=BE56D04F306B3E3E616A3360355697653766830F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ea:c0:6c:a5:4e:4d:e1:18:b9:29:40:6c:53:
db:67:f7:9d:6b:50:8b:85:f5:ed:88:86:c7:48:04:
cb:a3:45:31:ad:60:fd:cb:16:7c:d6:c7:b0:d8:98:
27:5f:dd:38:53:6a:a2:fa:b3:fb:df:a8:16:98:bd:
37:f8:35:2b:47:b6:f8:36:3e:96:e6:22:5e:08:5b:
e2:4c:1a:41:95:f1:1b:d9:33:c6:6b:71:97:91:d0:
33:29:95:a5:04:36:22:12:8c:b3:48:4b:65:d6:9c:
c5:35:1b:a0:93:c2:b6:ed:55:09:90:f9:ce:48:f3:
e7:a9:87:57:4c:66:4a:53:34:e7:af:c5:06:11:f4:
d1:d2:ef:a0:23:41:ce:53:1f:80:61:58:10:57:ab:
53:2c:ea:64:09:06:4a:22:73:4d:df:7a:1e:0d:1a:
31:70:6a:3a:b7:48:f2:04:77:aa:86:b2:d1:44:63:
ee:b8:5f:4f:08:89:4d:b6:ef:e2:50:ef:41:7c:d7:
c7:aa:a5:19:01:cc:ee:84:b0:b8:5e:2d:84:85:6a:
75:4a:f9:c5:75:1c:c9:22:c9:0f:e3:4a:33:f6:1a:
df:17:1d:d9:5a:b2:83:58:17:e6:36:5c:96:a9:75:
7e:d7:89:4d:45:31:d6:a0:06:be:92:db:ba:3f:fd:
b2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:56:D0:4F:30:6B:3E:3E:61:6A:33:60:35:56:97:65:37:66:83:0F
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3134372e37382e3132392e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.129.0/24
Signature Algorithm: sha256WithRSAEncryption
49:b7:33:92:82:fa:b9:05:70:31:50:ce:d9:fc:e7:de:2f:b8:
fa:29:30:f8:ea:42:9b:e0:a7:28:0b:ad:c7:43:0e:f7:45:7b:
a4:5c:ef:37:5e:57:e8:83:04:b4:16:7c:7a:d1:a7:7d:59:70:
d5:40:a4:47:5e:20:be:8c:f1:89:da:73:47:17:a0:5f:83:6c:
59:62:48:20:0a:3a:f9:37:1e:2e:8f:39:5f:93:0a:15:13:a5:
4c:00:f5:63:75:cd:49:94:4d:e7:90:16:ac:1a:bc:b9:a7:14:
6f:09:34:b9:25:13:35:00:02:49:f8:73:52:c7:48:f1:29:00:
a2:8c:7f:85:37:3d:ce:af:d0:b2:6f:2a:e3:e7:13:fb:88:fe:
ea:9f:16:00:f6:63:79:bb:75:13:79:01:81:e8:f5:d3:4c:4d:
72:a5:db:02:13:21:11:11:9f:91:5f:72:e7:5d:0a:67:85:7e:
a9:56:59:5b:8e:41:7b:df:60:bc:22:8c:48:8f:75:72:cd:b6:
ff:6b:55:9d:09:5d:f5:e1:e3:95:d6:5d:9f:32:34:b8:3c:0c:
fc:af:f3:74:07:59:29:1a:0a:0a:d0:be:85:ae:c3:41:2e:f0:
3b:10:e6:bc:9f:99:85:98:ea:71:7b:85:b3:bf:b5:fb:a6:79:
62:44:1d:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:41:49 2025 by rpki-client