Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231312e33332e302f32342d3234203d3e20323034313730.roa
File: 3138352e3231312e33332e302f32342d3234203d3e20323034313730.roa (raw, json)
Hash identifier: eVMDGXIpLeSBc0o+6wIf4rHpEryhsccz48c3271uqiA=
Subject key identifier: 66:87:32:34:AC:85:80:3B:F8:0A:8F:A7:A4:BA:A7:FF:0A:ED:85:BA
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 6A8281C428CC6E67F1B04F05ADA5CDFB25254965
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231312e33332e302f32342d3234203d3e20323034313730.roa
Signing time: Tue 25 Jun 2024 21:47:15 +0000
ROA not before: Tue 25 Jun 2024 21:42:15 +0000
ROA not after: Tue 24 Jun 2025 21:47:15 +0000
asID: 204170
IP address blocks: 185.211.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:82:81:c4:28:cc:6e:67:f1:b0:4f:05:ad:a5:cd:fb:25:25:49:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Jun 25 21:42:15 2024 GMT
Not After : Jun 24 21:47:15 2025 GMT
Subject: CN=66873234AC85803BF80A8FA7A4BAA7FF0AED85BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:1f:e7:bf:9b:74:9d:d2:40:f8:00:df:98:6c:
72:63:30:88:83:e6:ad:f7:f3:d7:94:d3:ed:2f:04:
7d:54:e8:b9:52:f2:15:95:30:b2:8a:b8:38:8b:0c:
bd:7c:97:73:d6:02:b7:54:64:47:d9:20:85:03:8d:
96:7f:39:be:db:49:a7:31:24:f8:09:4e:04:fa:b3:
8a:28:3b:fd:6d:73:0c:13:3e:d3:bc:48:94:8f:7f:
d4:04:05:14:56:7e:08:b9:6f:64:3b:e1:f0:45:db:
1b:c7:d6:d7:b5:a2:87:f9:ea:60:56:ee:03:fc:44:
0a:b5:8d:2e:a3:fe:28:c9:c2:10:94:cc:f8:de:05:
ea:30:f3:dc:f5:66:00:ec:3f:18:10:be:e4:e4:84:
8a:66:6a:52:e2:47:dd:b0:9f:0f:84:d9:ff:c5:16:
99:45:6b:aa:7c:88:ed:c3:d7:80:18:60:7d:56:13:
3e:5b:3d:73:f0:f3:1e:c7:eb:62:41:18:78:63:a6:
0b:b2:fa:45:6e:49:bf:e0:63:67:8f:d8:c1:59:ea:
68:48:0b:3a:97:d1:3e:97:3b:fd:0a:89:19:2e:38:
ec:b1:90:06:cb:6d:92:18:f9:0b:e1:e5:be:b4:c1:
db:97:16:d5:75:b9:45:21:c8:58:06:09:f4:2e:38:
b8:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:87:32:34:AC:85:80:3B:F8:0A:8F:A7:A4:BA:A7:FF:0A:ED:85:BA
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231312e33332e302f32342d3234203d3e20323034313730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.33.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:bc:30:bc:d4:19:59:da:76:54:31:10:0e:87:70:55:08:07:
66:b9:3d:37:31:6e:70:c4:08:9b:d4:16:81:43:58:5c:92:ca:
14:22:f2:fb:2e:a2:a9:04:e0:ba:6c:d9:e8:7d:a2:93:f1:23:
21:42:5b:e3:67:70:7a:6e:0a:ef:b7:15:1b:ed:1d:e0:c3:07:
75:6f:1b:ce:af:95:84:e2:83:21:31:c0:4e:65:55:d7:12:d4:
8d:f5:91:39:37:05:14:c6:47:04:d1:c0:8a:df:2b:94:f9:fc:
01:0f:63:42:30:4a:c8:3a:10:3d:ca:76:74:4a:1a:b8:21:ba:
52:9f:cf:60:f5:df:15:19:14:ff:b7:41:45:fa:c2:70:fb:2c:
66:26:b1:15:0c:51:95:45:22:a4:e7:bb:7f:da:ca:c9:e4:c0:
5a:fc:77:5f:06:8c:23:bb:a9:58:f6:b5:7d:f7:79:03:b7:3f:
93:c9:0d:74:f3:7f:9f:80:75:da:bf:b1:2e:e3:89:2c:ff:ee:
e7:43:3c:89:b5:18:a7:64:96:09:99:73:b7:2b:53:06:7d:cc:
ac:72:ba:98:fb:b2:cf:6e:55:9c:a8:72:27:1c:df:41:c5:c2:
1b:6d:46:22:b9:fd:ca:03:89:a4:6f:d6:0a:55:c5:b7:66:5b:
a4:53:96:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:31 2025 by rpki-client