Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137382e3133322e3130372e302f32342d3234203d3e20313336373837.roa
File: 3137382e3133322e3130372e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: 2UC2QybD+E8rJrJvzfGiCti39tw/nT+lKJtK6cLDDy4=
Subject key identifier: 5C:5F:21:B0:CF:C0:C6:E9:35:F8:F4:B6:BE:9C:98:42:A4:BB:F5:CE
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 2B84A422F26ACACFE3DF3A8E16062D260A966531
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137382e3133322e3130372e302f32342d3234203d3e20313336373837.roa
Signing time: Wed 05 Mar 2025 19:45:50 +0000
ROA not before: Wed 05 Mar 2025 19:40:50 +0000
ROA not after: Wed 04 Mar 2026 19:45:50 +0000
asID: 136787
IP address blocks: 178.132.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:84:a4:22:f2:6a:ca:cf:e3:df:3a:8e:16:06:2d:26:0a:96:65:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Mar 5 19:40:50 2025 GMT
Not After : Mar 4 19:45:50 2026 GMT
Subject: CN=5C5F21B0CFC0C6E935F8F4B6BE9C9842A4BBF5CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:a1:82:6b:42:cc:3c:fe:0d:55:d3:30:17:5d:
b4:7d:ca:cd:32:d7:47:34:c6:a8:39:67:f3:82:71:
65:5d:56:16:0f:ee:c3:66:9c:0c:23:58:db:88:a6:
4c:e8:e9:f5:67:37:58:14:eb:fb:4f:3c:3b:32:8a:
c0:bb:74:22:f5:bf:57:81:d6:11:6f:5b:a8:39:24:
c4:5a:b0:01:98:63:19:f6:2b:7d:ff:06:b2:01:7c:
7a:cd:21:49:04:f6:45:d7:e2:4f:89:87:60:5d:36:
fb:2e:66:17:45:5e:23:9e:ea:1a:6d:1a:55:7d:0b:
3f:f8:ba:cc:b3:7f:27:9c:d2:30:56:19:fe:c0:b4:
d8:fe:fa:dd:46:62:3d:55:e2:de:20:0b:77:54:73:
56:f1:e5:c4:18:0f:02:d7:ae:14:50:ab:9e:36:ae:
36:f1:b1:24:bf:4c:36:9a:6b:e7:3b:a7:b3:36:2d:
c9:a4:8f:5c:5b:0c:b4:0a:40:9c:9c:5d:59:6b:48:
12:ec:80:fd:f4:f7:bd:ed:c2:50:18:c1:e2:b0:83:
3b:cf:6b:b9:7e:5d:e7:f0:46:2f:b0:83:fd:17:91:
4a:9c:76:f1:29:c3:c3:9c:b3:c3:14:e8:f7:cf:95:
aa:cd:7e:55:3c:c1:79:05:52:d1:7f:9c:4c:68:a6:
48:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:5F:21:B0:CF:C0:C6:E9:35:F8:F4:B6:BE:9C:98:42:A4:BB:F5:CE
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137382e3133322e3130372e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.132.107.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:22:bc:a5:f8:c7:ba:02:ba:fe:45:b3:c9:b8:a3:f0:48:48:
e2:a5:f3:72:a1:17:41:8f:37:82:6d:26:0f:a7:ac:38:4b:fc:
6c:27:5e:7c:7f:ca:2e:fc:5e:10:08:ff:23:6b:c9:c7:68:ce:
bc:34:6f:32:d8:44:74:55:e0:25:2f:41:1e:bc:10:c1:cb:7e:
08:f0:a6:9b:23:87:54:77:e8:fa:2b:32:b9:16:24:b1:e8:c8:
17:a0:fa:e3:ea:65:f4:f7:08:d3:3c:ed:20:5b:3b:b0:dc:2d:
1a:0e:e7:89:c1:af:b1:ca:5d:3f:26:03:2d:e9:86:56:07:52:
2b:b4:41:3b:ea:d9:0c:ec:61:fe:f8:c8:67:79:14:ea:07:a4:
ac:7a:4f:26:6a:40:4c:62:41:d4:3c:4f:86:26:64:70:61:58:
42:84:c2:3a:6e:74:a5:50:69:41:23:02:de:fd:b4:ea:69:37:
b8:ad:2a:77:bb:37:c6:30:4f:12:94:0b:d2:57:c3:01:0b:3e:
64:6c:5c:1e:9d:b8:c7:bc:bc:96:28:7d:84:09:f2:60:12:53:
71:20:8c:67:cc:74:e9:61:28:39:56:a0:53:d8:84:54:79:b0:
80:67:8b:d1:f3:aa:81:51:29:a1:df:a8:d6:98:9f:23:e7:1f:
57:4f:08:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:13:18 2025 by rpki-client