Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3231322e3130332e36332e302f32342d3234203d3e20313734.roa
File: 3231322e3130332e36332e302f32342d3234203d3e20313734.roa (raw, json)
Hash identifier: U0r0TDs7JXVrBmQVHDSpP2mp5AxrZlnDW2jssms7Ve0=
Subject key identifier: E1:5A:2B:02:4B:B2:02:77:BB:97:F3:36:8C:51:D9:7C:CD:1B:04:3F
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 789D81BDC7CB2BCD4AE479D05C81DFAC2E2C8F78
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3231322e3130332e36332e302f32342d3234203d3e20313734.roa
Signing time: Fri 16 Aug 2024 17:04:40 +0000
ROA not before: Fri 16 Aug 2024 16:59:40 +0000
ROA not after: Fri 15 Aug 2025 17:04:40 +0000
asID: 174
IP address blocks: 212.103.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:9d:81:bd:c7:cb:2b:cd:4a:e4:79:d0:5c:81:df:ac:2e:2c:8f:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Aug 16 16:59:40 2024 GMT
Not After : Aug 15 17:04:40 2025 GMT
Subject: CN=E15A2B024BB20277BB97F3368C51D97CCD1B043F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e6:0e:49:ed:09:9a:c4:df:d7:0e:01:4d:84:
3f:84:4c:4c:2d:3f:3c:75:52:8a:68:2c:27:7b:55:
4a:cb:ce:83:56:9a:5e:03:48:85:4c:7e:ef:55:62:
35:99:d2:48:47:32:d4:da:84:50:fa:b6:6c:50:fa:
f2:14:72:af:e4:00:6e:43:3f:47:28:79:70:0a:60:
16:f4:a1:b9:ea:02:27:eb:f9:a0:81:5e:58:df:6a:
58:bf:63:2f:de:24:e0:98:4d:32:a4:85:23:1f:c8:
9e:0c:d5:b3:3d:05:53:a6:ac:91:f3:ac:9f:3e:86:
b4:0a:41:f5:55:16:ed:66:35:21:16:4b:29:44:9f:
1c:aa:df:c4:50:87:6d:d3:13:42:b7:60:2b:ca:8d:
f2:bf:ed:1c:a1:c9:a8:d6:b8:26:b5:f1:14:ee:fa:
d9:fd:80:a0:fd:4f:03:94:ef:c4:28:01:6e:8c:56:
29:72:fc:0d:f7:65:78:fd:45:ea:ec:f9:c0:5f:14:
e5:a2:86:11:93:9c:98:98:1b:e0:bb:fe:a5:78:a7:
ea:cb:8e:de:9f:1f:17:26:81:88:82:c2:36:6e:e7:
05:c6:d2:b4:8e:a8:5d:44:ca:f0:24:26:0a:6b:b9:
e7:4e:c5:2c:12:1d:05:0f:6b:2a:42:96:f4:91:41:
2c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:5A:2B:02:4B:B2:02:77:BB:97:F3:36:8C:51:D9:7C:CD:1B:04:3F
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3231322e3130332e36332e302f32342d3234203d3e20313734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.103.63.0/24
Signature Algorithm: sha256WithRSAEncryption
11:3e:fb:53:b7:31:fe:81:4b:ae:00:15:0c:fc:49:f6:1a:a4:
78:e1:0c:dd:28:19:97:f3:c7:91:4a:22:fc:89:57:a0:d4:b4:
67:c8:a1:b3:3c:f9:f5:42:75:ae:76:bd:a4:d0:89:d9:a0:2f:
aa:3e:f4:22:9e:6b:ff:45:c0:d3:cc:6f:70:cb:31:54:a3:9e:
1b:60:df:07:6c:de:17:c1:44:3f:2a:19:f0:8b:9e:f7:b0:e8:
d6:15:9b:71:70:d5:94:78:56:68:dd:3c:45:3e:b8:60:2f:bd:
ba:b4:88:d3:28:17:a2:9b:5c:c1:a3:e8:dd:db:8d:66:05:53:
41:5c:8a:a9:fa:8b:d3:50:7b:e5:0a:4d:bd:c4:33:a9:38:90:
d7:44:af:63:82:48:2b:e0:45:24:1d:c0:2c:53:28:c3:15:62:
23:1a:a0:0c:33:d3:72:f6:16:bd:88:66:5b:f6:6d:d1:3e:91:
f6:6c:9b:52:a4:42:37:34:d8:37:a7:ac:9d:db:cc:f4:bc:76:
f3:05:c1:13:36:b4:47:ff:c3:7d:b7:eb:60:f3:3e:c6:28:c5:
ab:79:73:9f:79:1b:2e:f7:0d:41:b3:db:f4:13:1d:2e:71:63:
e1:f7:7f:9c:08:41:a9:5b:e8:10:c3:f5:b0:ed:45:60:19:18:
8b:02:c1:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:10:47 2025 by rpki-client