Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e31382e302f32342d3234203d3e20313336373837.roa
File: 3135352e3133332e31382e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: bghv9staZlVg72g1TePruekhOr991NUikum3JElTTbM=
Subject key identifier: 82:ED:FF:57:51:B4:FF:24:F9:C2:94:F4:83:8E:E2:DF:39:36:6F:8F
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 6FAED50F77101FB34143BE8CB682E78B91411D74
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e31382e302f32342d3234203d3e20313336373837.roa
Signing time: Sat 01 Feb 2025 22:45:36 +0000
ROA not before: Sat 01 Feb 2025 22:40:36 +0000
ROA not after: Sat 31 Jan 2026 22:45:36 +0000
asID: 136787
IP address blocks: 155.133.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:ae:d5:0f:77:10:1f:b3:41:43:be:8c:b6:82:e7:8b:91:41:1d:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Feb 1 22:40:36 2025 GMT
Not After : Jan 31 22:45:36 2026 GMT
Subject: CN=82EDFF5751B4FF24F9C294F4838EE2DF39366F8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:95:80:cd:98:ac:fe:d6:29:9d:f8:a2:e1:38:
3d:22:c8:6d:81:aa:95:b9:e3:91:32:e9:13:47:b8:
84:28:66:fa:70:29:ef:6d:54:9a:7f:9d:83:56:b5:
c5:f8:1e:01:ad:61:a1:48:0a:7f:b3:9d:49:f0:cf:
86:1d:e9:83:3c:a9:47:d2:3b:06:4e:08:76:50:0d:
c5:7d:81:b8:2b:95:cb:55:a4:c4:df:3e:50:71:1a:
a9:47:97:8f:e3:21:05:d3:e7:d5:df:01:f7:25:45:
42:db:03:29:c7:d3:9e:a9:60:59:e7:a3:c7:54:41:
5d:46:93:6a:22:55:5a:50:c4:8a:40:0c:33:0e:1d:
44:7c:f1:d4:3b:79:b2:a7:b6:80:06:ba:60:13:92:
b7:70:99:89:3b:78:49:58:d1:a2:62:62:5d:a5:93:
fd:1f:ad:3d:a7:4f:84:27:dd:d6:6c:8d:14:53:5e:
c7:12:5e:ed:4c:f0:23:c9:6e:f8:f2:84:78:6f:ff:
65:81:83:01:bc:a1:c0:4a:2c:59:17:d9:73:a8:8a:
95:e4:95:68:f0:01:26:b6:9c:4d:3c:a0:dd:9b:15:
35:9b:07:b4:9b:92:f3:51:ba:2c:53:47:8d:db:dd:
3a:a0:98:ab:28:1a:9b:7b:63:2f:38:03:a8:ba:19:
ab:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:ED:FF:57:51:B4:FF:24:F9:C2:94:F4:83:8E:E2:DF:39:36:6F:8F
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e31382e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.133.18.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:d1:e1:16:cc:0c:1c:3a:34:d2:4e:88:9e:80:a8:c9:33:29:
d9:08:4b:43:8e:1a:ec:33:3d:b4:45:cb:e9:77:f8:d5:89:af:
1a:75:d2:c7:c6:be:f8:bf:36:3f:10:45:05:c2:5c:af:d8:95:
c6:14:c5:da:3c:c5:cc:5d:dc:01:2d:e3:b4:b1:45:d5:d0:51:
2f:9b:ca:79:0d:92:72:a6:e9:f7:03:8c:18:ed:d8:af:40:42:
36:3b:af:b3:22:1b:83:52:fe:36:62:a4:cf:d1:27:d9:e5:af:
82:62:af:6a:78:10:e3:9b:a6:cb:76:93:d0:a0:d2:19:9b:83:
d0:bb:c4:7f:0d:c4:15:86:a7:e0:0a:76:df:89:9e:dd:be:1c:
27:1d:b8:3e:77:ca:7e:a7:07:21:8d:4e:35:f6:28:50:9a:a7:
c2:46:29:98:c9:ce:02:95:8d:11:1d:df:a2:4c:ca:92:02:1c:
1a:8e:94:c8:76:ca:a9:5a:70:8d:68:a3:1f:d0:25:34:43:70:
04:63:e8:87:bc:40:81:26:36:a4:1c:2c:3e:1e:37:f3:20:bd:
3f:f0:61:66:b9:2b:6f:ff:04:82:8f:19:7a:f8:0d:c2:4c:37:
0d:26:9e:6c:3c:fd:b4:6c:46:16:3d:83:a2:d9:2a:be:32:8a:
b1:2c:cb:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 19:28:38 2025 by rpki-client