Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e35332e3137362e302f32342d3234203d3e20313336373837.roa
File: 3137362e35332e3137362e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: Aqi65OZhm6GG0SSU49TGFggCmiBOK5wCYRXhfN6EPVk=
Subject key identifier: F1:C2:CA:5B:31:38:FF:B4:F9:14:27:D6:1A:B0:10:C2:0E:36:82:9E
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 5410D910D547893EEF4CCFC975C66C99419AC2BA
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e35332e3137362e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 19:44:36 +0000
ROA not before: Fri 27 Dec 2024 19:39:36 +0000
ROA not after: Fri 26 Dec 2025 19:44:36 +0000
asID: 136787
IP address blocks: 176.53.176.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:10:d9:10:d5:47:89:3e:ef:4c:cf:c9:75:c6:6c:99:41:9a:c2:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Dec 27 19:39:36 2024 GMT
Not After : Dec 26 19:44:36 2025 GMT
Subject: CN=F1C2CA5B3138FFB4F91427D61AB010C20E36829E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:53:4a:2c:f8:29:f1:cb:f8:7e:24:a6:57:e4:
fc:1d:a1:0f:d5:33:b7:17:7f:22:ea:42:34:62:dd:
3f:e9:1d:ea:f7:da:55:db:7e:97:67:59:4c:12:ee:
22:cb:d8:c3:08:70:27:2f:1f:6c:84:0e:c6:6e:fb:
76:05:49:37:e9:41:6c:e3:70:e9:bd:15:28:d9:9d:
7e:8b:56:be:d0:6e:02:4e:5a:7a:ee:d5:dd:b4:b7:
b0:1e:f5:55:22:80:db:0e:34:2c:d3:08:46:8c:ee:
e4:4f:8a:a0:37:ce:8f:40:f3:8c:f0:d8:52:7a:ff:
e0:0c:77:13:50:44:f4:63:22:d5:af:f1:ec:5e:6b:
ee:a5:f1:4f:49:75:a5:26:cd:16:84:a9:b4:5b:66:
87:f5:73:90:4e:da:3f:82:17:e2:e0:23:01:40:ce:
41:69:df:5c:1c:ed:cf:12:54:d4:26:15:1b:b3:cd:
1e:74:95:50:f3:e1:68:2a:7e:b4:04:6f:0f:dd:b9:
29:1f:8f:d3:cc:32:60:96:0f:52:75:ca:c6:d1:3c:
22:74:86:79:10:66:bf:bf:67:34:5b:da:3d:68:8c:
30:73:90:ff:76:41:a0:36:45:f7:6a:2c:03:1f:69:
cc:ed:42:36:88:f8:a2:97:da:4e:ae:7a:ff:ff:55:
d7:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:C2:CA:5B:31:38:FF:B4:F9:14:27:D6:1A:B0:10:C2:0E:36:82:9E
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e35332e3137362e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.53.176.0/24
Signature Algorithm: sha256WithRSAEncryption
27:a0:ba:47:dd:90:ba:b7:4a:3f:7a:98:d8:06:87:e9:33:3d:
cc:c7:55:e5:2b:10:bf:03:10:05:42:7c:06:0b:9a:7c:60:cc:
fd:83:d7:29:06:24:32:b4:df:a6:18:96:3a:bb:c1:28:60:79:
0b:f3:e8:01:81:c7:48:2f:e5:e6:e0:c6:d4:ee:a6:50:cc:8f:
53:59:39:67:0f:80:41:2c:7e:5f:70:ea:21:ab:31:e6:3a:2d:
6a:dc:23:ea:ab:2a:bc:84:a2:49:52:3c:48:72:a9:70:6a:7b:
98:29:66:40:38:f8:ad:ad:ad:47:40:ec:03:ac:7e:4e:19:1c:
28:fc:d6:50:dc:1a:43:1a:95:68:fd:a0:9d:f7:c2:59:ee:07:
e8:28:ab:ba:ac:a4:81:a4:94:a4:58:2c:99:c6:97:7f:20:27:
1e:f1:87:15:11:8c:c0:cb:b4:d5:3f:0f:ee:28:d0:a9:33:11:
be:6b:79:c0:bf:98:8f:26:e2:9a:7b:03:17:8b:6e:dc:7f:1f:
37:12:c0:aa:dd:8c:2d:bb:5e:4e:fd:2f:b7:bc:79:bb:a5:f0:
6e:32:3b:47:87:d9:00:ec:22:9c:e4:cf:e4:e8:d7:12:16:36:
cf:a2:b1:cc:50:29:da:15:fa:77:f0:4e:a7:54:93:5e:76:ac:
1a:78:80:b6
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUVBDZENVHiT7vTM/JdcZsmUGawrowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNDEyMjcxOTM5MzZaFw0yNTEyMjYxOTQ0MzZaMDMxMTAvBgNV
BAMTKEYxQzJDQTVCMzEzOEZGQjRGOTE0MjdENjFBQjAxMEMyMEUzNjgyOUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6U0os+Cnxy/h+JKZX5PwdoQ/V
M7cXfyLqQjRi3T/pHer32lXbfpdnWUwS7iLL2MMIcCcvH2yEDsZu+3YFSTfpQWzj
cOm9FSjZnX6LVr7QbgJOWnru1d20t7Ae9VUigNsONCzTCEaM7uRPiqA3zo9A84zw
2FJ6/+AMdxNQRPRjItWv8exea+6l8U9JdaUmzRaEqbRbZof1c5BO2j+CF+LgIwFA
zkFp31wc7c8SVNQmFRuzzR50lVDz4WgqfrQEbw/duSkfj9PMMmCWD1J1ysbRPCJ0
hnkQZr+/ZzRb2j1ojDBzkP92QaA2RfdqLAMfacztQjaI+KKX2k6uev//VdedAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQU8cLKWzE4/7T5FCfWGrAQwg42gp4wHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNzM2MmUzNTMzMmUzMTM3
MzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BACwNbAwDQYJKoZIhvcNAQELBQADggEBACegukfdkLq3Sj96mNgGh+kzPczHVeUr
EL8DEAVCfAYLmnxgzP2D1ykGJDK036YYljq7wShgeQvz6AGBx0gv5ebgxtTuplDM
j1NZOWcPgEEsfl9w6iGrMeY6LWrcI+qrKryEoklSPEhyqXBqe5gpZkA4+K2trUdA
7AOsfk4ZHCj81lDcGkMalWj9oJ33wlnuB+goq7qspIGklKRYLJnGl38gJx7xhxUR
jMDLtNU/D+4o0KkzEb5recC/mI8m4pp7AxeLbtx/HzcSwKrdjC27Xk79L7e8ebul
8G4yO0eH2QDsIpzkz+To1xIWNs+iscxQKdoV+nfwTqdUk152rBp4gLY=
-----END CERTIFICATE-----
Generated at Fri Apr 4 16:12:33 2025 by rpki-client