Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e37312e302f32342d3234203d3e20313336373837.roa
File: 3135352e3133332e37312e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: yswV6Ntk3H6i9vgNsyNxCwgU2QUdUOeh2MCpO35CONI=
Subject key identifier: 2D:A2:5A:FF:01:3E:DD:A8:04:E9:C9:81:2C:B9:90:68:A0:64:E9:88
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 6E752ED15F6583944E575F6F0EE55093CA73FA6C
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e37312e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 27 Jan 2025 09:45:29 +0000
ROA not before: Mon 27 Jan 2025 09:40:29 +0000
ROA not after: Mon 26 Jan 2026 09:45:29 +0000
asID: 136787
IP address blocks: 155.133.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:75:2e:d1:5f:65:83:94:4e:57:5f:6f:0e:e5:50:93:ca:73:fa:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jan 27 09:40:29 2025 GMT
Not After : Jan 26 09:45:29 2026 GMT
Subject: CN=2DA25AFF013EDDA804E9C9812CB99068A064E988
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:77:f1:8e:2c:c7:60:48:2e:c7:b5:ed:56:a4:
53:e3:30:67:56:12:21:a5:81:85:4a:ba:d1:fa:1a:
d7:64:35:af:dd:7c:fd:dc:7c:24:63:3b:c3:ea:ea:
81:ea:33:02:52:7b:6d:9d:61:44:78:1a:41:b8:c7:
2f:18:1f:23:07:8d:c6:49:3f:4b:ae:1a:8c:0c:6f:
06:c2:d7:1f:c9:9a:fc:ee:9a:24:e6:d2:19:a6:2d:
65:42:fd:2c:c7:36:91:25:91:2f:6a:47:31:16:c6:
33:48:b6:ef:97:17:17:8b:17:c7:d6:d2:d3:3a:30:
23:50:eb:23:3d:4a:b7:5f:86:df:b2:6a:2b:fc:05:
b4:49:76:dd:6c:23:a7:7e:a6:e3:06:9f:e8:9c:9f:
f6:09:ed:4e:e0:58:13:03:05:ae:bb:4e:95:a4:d5:
b2:05:f5:22:6c:6c:f3:4f:34:ef:90:98:f8:08:4d:
bd:3a:d9:fa:08:3b:3d:7f:20:f4:13:60:d5:67:d1:
b6:85:9e:5b:2e:e5:5a:da:c2:cc:46:45:a2:5e:96:
02:ab:94:d4:53:49:c9:a9:99:e4:8f:63:8d:58:b2:
72:2e:22:3b:27:b4:56:ed:17:a7:a9:03:bd:a7:e7:
95:67:50:f7:69:24:e1:d8:8b:ee:25:ce:41:6d:08:
c0:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:A2:5A:FF:01:3E:DD:A8:04:E9:C9:81:2C:B9:90:68:A0:64:E9:88
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e37312e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.133.71.0/24
Signature Algorithm: sha256WithRSAEncryption
36:7f:1a:05:61:66:b4:0d:30:2f:b4:58:55:a6:93:7a:a4:0e:
92:b7:6e:c9:6d:87:f7:3a:7b:e4:0b:f0:2f:f9:6c:a6:99:a5:
f9:3a:34:23:c7:58:a0:15:68:c4:fb:c0:e8:00:82:d5:21:ff:
b1:53:8c:06:89:7d:a6:d3:b3:96:2d:d1:2f:85:2d:aa:7d:f5:
2a:4b:d6:e1:09:e1:b6:47:6d:a0:9e:06:8a:50:28:03:5c:1e:
3f:85:4d:8f:07:a3:ff:b4:b4:48:0e:a1:2e:87:dc:60:1e:83:
38:e9:81:94:11:82:92:1b:64:4e:60:c4:3c:0f:b3:46:6f:22:
a8:43:e2:0f:61:a7:30:16:92:7d:bf:fe:27:48:db:f7:4e:4c:
b9:55:35:e4:21:b8:a7:ee:f5:92:cb:4f:26:d6:84:2a:da:a0:
7d:c2:24:8f:77:18:50:47:f5:27:c7:ab:d2:48:6a:e3:16:0f:
5f:7a:a4:2a:f6:26:c9:b1:7c:70:42:a1:ca:f9:44:a2:06:59:
db:5f:83:7e:9c:02:df:37:a9:e2:31:13:0b:9d:50:08:d5:4e:
dc:db:56:b1:e9:cc:ad:59:7d:75:f7:26:25:06:a1:ec:d7:ff:
b4:12:01:3e:db:b1:69:af:b1:03:dd:1f:55:bb:0f:22:7f:16:
f1:53:61:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:13:19 2025 by rpki-client