Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3234332e35372e302f32342d3234203d3e20313336373837.roa
File: 3138352e3234332e35372e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: W7p0/y3dSVJGmzbakN0Z+cRPV+WEw8cli2L/u70qcUQ=
Subject key identifier: 11:99:56:BC:60:46:F3:21:AF:16:AE:23:28:DB:60:6C:07:50:7D:A3
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 1CDE35CF336A2942B33D74D069DD1E4E3742CCDB
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3234332e35372e302f32342d3234203d3e20313336373837.roa
Signing time: Tue 23 Jul 2024 21:04:22 +0000
ROA not before: Tue 23 Jul 2024 20:59:22 +0000
ROA not after: Tue 22 Jul 2025 21:04:22 +0000
asID: 136787
IP address blocks: 185.243.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:de:35:cf:33:6a:29:42:b3:3d:74:d0:69:dd:1e:4e:37:42:cc:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Jul 23 20:59:22 2024 GMT
Not After : Jul 22 21:04:22 2025 GMT
Subject: CN=119956BC6046F321AF16AE2328DB606C07507DA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b0:f1:2d:34:a4:7b:4a:91:d9:c6:cb:aa:35:
84:df:45:42:eb:3e:0b:2b:85:a5:33:b2:19:09:82:
be:a1:7e:5b:96:78:a1:18:a7:eb:6e:fb:3b:ff:d2:
f5:0f:3e:71:15:3a:b9:8e:20:cd:7f:35:de:a5:48:
e8:5b:35:d3:90:15:13:ad:33:d9:03:7e:85:70:93:
d7:7b:c6:79:eb:5f:46:5f:dc:f8:02:9b:b8:21:9e:
32:e8:c0:80:f5:2a:b4:d3:97:32:21:18:f6:ea:30:
c0:27:9d:35:ff:42:1d:e2:a9:11:43:1f:d1:f3:99:
59:35:3c:6f:35:b9:2b:95:76:28:df:74:42:fc:2d:
44:ab:b7:00:8a:a7:e2:d0:7e:35:a0:d4:56:8c:97:
40:f5:f1:cb:29:88:09:50:b2:5e:1e:a9:82:a8:ae:
1a:65:fd:23:f4:51:a9:4b:ca:87:0f:a1:dc:c5:87:
34:c7:24:18:38:5c:e0:c6:65:23:76:c0:b1:66:70:
e7:a6:bf:83:59:db:8f:0d:d0:6b:e2:0c:2f:5b:0c:
6b:bc:81:24:30:c1:bc:79:b1:4a:1a:64:d1:f1:48:
d8:07:0f:0d:f8:df:17:e1:b7:44:e5:ed:4c:21:99:
ca:d6:d0:73:9b:ec:be:aa:32:66:f2:c8:27:54:41:
39:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:99:56:BC:60:46:F3:21:AF:16:AE:23:28:DB:60:6C:07:50:7D:A3
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3234332e35372e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.57.0/24
Signature Algorithm: sha256WithRSAEncryption
88:ee:57:a5:26:d9:ca:74:10:7d:f2:4d:af:07:b4:18:48:9f:
ff:62:66:c8:a7:f3:35:9c:a8:76:1c:de:43:15:4a:53:5f:08:
85:65:9b:de:de:e6:d5:3e:e2:7b:f5:0b:c1:74:d5:dd:63:78:
07:c5:09:7c:05:f7:3d:2e:ec:42:55:39:ab:11:bd:93:05:cf:
3a:68:f7:c1:1a:85:92:34:75:d1:06:f7:f3:cd:1c:ef:ca:7c:
33:7e:1d:8b:1e:91:92:36:3b:5b:bd:f3:2a:da:a0:f0:cf:14:
76:8f:c1:e4:28:bf:53:cd:1b:44:d4:98:2e:ef:41:c3:7c:31:
73:37:2d:8e:86:97:83:8c:85:a0:ec:fd:78:c1:43:00:85:40:
ee:4e:c5:04:29:fe:49:94:54:9f:ad:c0:55:34:3b:64:ae:38:
2f:99:b4:2e:f7:36:1b:45:14:94:61:67:a2:fd:04:91:7b:11:
fd:8e:97:78:04:f5:23:2b:9c:78:55:fe:f3:c1:8c:d8:81:5b:
ed:16:0e:f9:3f:07:7b:02:0d:6e:26:e3:e7:49:bb:8a:f2:c7:
cb:55:86:41:91:cf:16:63:e8:94:25:22:da:dc:0b:db:14:1c:
c9:14:e8:d7:74:5e:76:e9:6a:92:b5:7d:a5:49:05:56:83:9d:
36:16:d2:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:32 2025 by rpki-client