Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3138392e32342e302f32342d3234203d3e20313336373837.roa
File: 3138352e3138392e32342e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: N1yJH1Wyw2Gs0EdTxKFoSSLBOv6g+HiSQDjljyLlQyE=
Subject key identifier: FC:F1:A9:7D:5D:84:FD:53:8D:F3:7D:30:8B:59:BF:72:DF:31:A1:14
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 0ACB8E6D051ACC263B85C2FD03249CF57551DD5E
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3138392e32342e302f32342d3234203d3e20313336373837.roa
Signing time: Thu 12 Sep 2024 22:04:47 +0000
ROA not before: Thu 12 Sep 2024 21:59:47 +0000
ROA not after: Thu 11 Sep 2025 22:04:47 +0000
asID: 136787
IP address blocks: 185.189.24.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:cb:8e:6d:05:1a:cc:26:3b:85:c2:fd:03:24:9c:f5:75:51:dd:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Sep 12 21:59:47 2024 GMT
Not After : Sep 11 22:04:47 2025 GMT
Subject: CN=FCF1A97D5D84FD538DF37D308B59BF72DF31A114
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:fe:c5:76:ec:32:05:86:95:df:ff:82:87:4f:
7a:44:30:24:e1:55:f8:09:e6:85:77:52:dc:ce:d2:
a5:e3:6f:1a:b8:0b:54:8a:17:70:53:0f:35:0b:12:
a7:df:87:9c:78:71:b6:15:70:ea:6e:8e:e2:58:d6:
a7:64:a3:a1:dd:ad:7a:9c:62:56:52:4b:25:7a:30:
3c:6a:bc:1b:2d:1b:0c:c4:e1:84:2f:24:47:39:6e:
c0:bc:76:e1:4c:4e:48:82:18:b5:4d:9c:7f:48:19:
23:5c:d7:b7:ea:9e:93:84:aa:02:96:6d:f4:da:a2:
c4:2f:46:40:da:2d:61:26:51:bd:41:67:74:27:97:
12:ed:57:8f:09:40:eb:ce:d0:4c:e4:98:ab:37:40:
e1:56:0b:c3:1d:85:11:22:58:e7:d8:95:9a:c9:86:
88:b7:4d:e2:84:a7:8c:97:f9:39:37:bc:70:17:71:
e9:13:63:d3:0e:5a:28:f7:34:6a:f5:1b:24:79:4b:
4e:8a:21:0f:55:c6:ee:92:6c:cb:73:68:33:fa:87:
d5:b2:3b:29:c0:c6:75:22:52:6a:04:87:22:59:7e:
93:47:d8:19:af:96:55:9f:c5:3f:37:5f:b6:10:be:
f8:e1:7f:0c:6c:eb:10:3a:90:85:51:19:ad:da:50:
49:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:F1:A9:7D:5D:84:FD:53:8D:F3:7D:30:8B:59:BF:72:DF:31:A1:14
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3138392e32342e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.189.24.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:cd:36:1d:55:bb:af:58:7c:1c:67:dc:e6:aa:27:f6:a2:ac:
6f:bc:ad:6c:34:5b:1b:25:78:10:87:43:ca:1a:a3:43:58:1b:
ac:1f:76:37:52:ef:cb:e4:16:de:54:4e:93:4a:5c:ea:99:9c:
a8:5a:a6:65:72:77:29:04:cc:29:fe:ad:6b:46:10:ba:8e:05:
81:95:b7:47:0f:1b:1c:a6:f2:33:e1:f5:41:9b:a0:f1:d0:74:
c9:8f:ed:ee:5a:87:09:18:f7:36:b9:ff:7b:6a:a1:98:86:4b:
bc:d3:60:66:59:1d:e9:02:16:b1:76:e2:4e:3e:61:53:62:bb:
a5:4b:6e:18:48:16:df:73:89:48:17:a9:ab:55:8b:9d:17:71:
c4:4e:6a:61:d7:58:15:10:eb:d4:f0:cb:14:d6:0e:b5:cd:b9:
1e:41:0b:81:40:7f:e6:6b:a0:a1:9a:59:27:69:fc:14:f9:5f:
c5:b3:8f:9d:cd:f6:79:e8:36:55:c8:9f:b4:b3:bd:62:db:87:
0d:e1:82:48:f2:54:a4:69:72:a9:b7:74:1f:e8:b9:b6:6a:76:
59:b2:8a:f4:a1:c6:4d:9f:b9:71:c9:01:ea:2b:ce:59:10:c8:
ba:88:08:3d:77:57:c0:0a:03:e0:4b:4c:36:f0:46:54:0c:80:
33:55:70:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:10 2025 by rpki-client