Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138342e3138392e302f32342d3234203d3e20313336373837.roa
File: 3138352e3138342e3138392e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: Vgnq07bePTgKHOs+8YhVxAWUSOFGMoIuVk+1cVUL9us=
Subject key identifier: 15:95:73:D4:DD:82:5B:DD:D4:3D:38:3F:58:40:95:16:D5:E2:21:3A
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 605925489243B4511DA15938AA37296DF9384433
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138342e3138392e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 15 Dec 2024 18:44:29 +0000
ROA not before: Sun 15 Dec 2024 18:39:29 +0000
ROA not after: Sun 14 Dec 2025 18:44:29 +0000
asID: 136787
IP address blocks: 185.184.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:59:25:48:92:43:b4:51:1d:a1:59:38:aa:37:29:6d:f9:38:44:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Dec 15 18:39:29 2024 GMT
Not After : Dec 14 18:44:29 2025 GMT
Subject: CN=159573D4DD825BDDD43D383F58409516D5E2213A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:21:36:16:58:69:ae:d2:e9:82:9e:06:71:fc:
cb:9f:c6:f0:53:4b:03:5f:23:c2:54:14:34:08:e6:
ec:09:14:65:ef:b2:fe:be:57:0b:37:9a:bb:4e:81:
67:42:c4:6b:f1:35:36:52:07:f2:46:14:56:02:1b:
16:da:fd:63:f5:02:5f:bc:bb:fa:f9:bc:cd:10:53:
02:85:ce:09:85:70:be:0b:33:41:35:e3:f3:40:22:
f3:06:50:29:56:b8:f9:0a:b0:9d:9e:02:0f:d9:69:
49:a3:ed:4c:85:af:65:86:94:cb:ca:0c:36:c4:a9:
50:47:c4:f5:95:13:c3:ce:35:17:9a:fa:a1:88:55:
57:64:aa:c7:bc:c1:34:d7:fd:b2:96:47:2a:d8:68:
ae:cf:b3:ca:97:dd:96:dd:ae:1d:a4:12:91:67:be:
a3:ca:0c:e9:3b:55:98:25:6d:db:ea:ed:c6:46:21:
76:e9:f4:a3:a1:ca:87:3f:fc:44:22:a9:41:a8:eb:
15:b3:50:29:2e:ca:1f:a8:84:e1:99:08:a4:bf:79:
f1:eb:35:9e:a8:df:34:b9:a0:81:43:f7:64:e1:b5:
5d:15:c4:65:29:c2:de:de:30:cc:4b:29:3a:4f:4a:
d9:e1:db:e6:3e:30:6b:9a:c7:a1:c7:ef:ea:e2:02:
71:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:95:73:D4:DD:82:5B:DD:D4:3D:38:3F:58:40:95:16:D5:E2:21:3A
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138342e3138392e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.184.189.0/24
Signature Algorithm: sha256WithRSAEncryption
40:f2:57:07:55:54:af:f5:7e:e6:91:9c:02:6c:81:b7:83:99:
87:a0:ae:e2:f8:9c:ae:1e:f0:b7:0f:c5:9d:ec:8a:cf:07:c8:
6b:21:38:86:15:0c:3d:cc:cf:bf:97:27:95:01:f1:88:5e:ce:
4d:24:67:68:9e:cd:3d:d6:18:e9:7d:9d:33:7a:9e:66:ef:5d:
ea:3d:11:1b:4b:4a:c9:ad:21:02:8b:ad:41:22:de:e2:cd:db:
5f:c9:e7:06:b0:2e:0c:8f:c1:fc:a3:17:38:ed:b3:e1:ad:19:
70:ee:b0:d7:d9:49:45:76:22:33:ce:31:df:c4:74:39:74:56:
f9:4c:ed:90:de:00:b7:cd:f5:5b:91:37:e6:6d:04:53:cb:a3:
2b:28:f0:7d:89:7d:4c:a7:88:e3:2a:8f:6b:c6:65:77:8f:2d:
96:15:69:25:52:fa:1a:8f:bf:62:bf:70:78:84:ab:b0:fb:9b:
2b:31:f4:29:f9:a6:c1:45:0b:b5:cc:42:11:89:1a:c7:b6:19:
c1:e3:6b:3d:ab:b4:fd:1f:83:c0:02:aa:aa:b6:fe:ff:01:94:
81:c4:69:86:df:b1:78:f8:14:57:1b:eb:cd:5f:bf:9d:23:03:
e1:ec:b7:a4:43:56:d1:8d:c9:c8:2c:2c:1d:bf:08:e4:09:1d:
c1:9c:94:c0
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgIUYFklSJJDtFEdoVk4qjcpbfk4RDMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNDEyMTUxODM5MjlaFw0yNTEyMTQxODQ0MjlaMDMxMTAvBgNV
BAMTKDE1OTU3M0Q0REQ4MjVCRERENDNEMzgzRjU4NDA5NTE2RDVFMjIxM0EwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSITYWWGmu0umCngZx/MufxvBT
SwNfI8JUFDQI5uwJFGXvsv6+Vws3mrtOgWdCxGvxNTZSB/JGFFYCGxba/WP1Al+8
u/r5vM0QUwKFzgmFcL4LM0E14/NAIvMGUClWuPkKsJ2eAg/ZaUmj7UyFr2WGlMvK
DDbEqVBHxPWVE8PONRea+qGIVVdkqse8wTTX/bKWRyrYaK7Ps8qX3Zbdrh2kEpFn
vqPKDOk7VZglbdvq7cZGIXbp9KOhyoc//EQiqUGo6xWzUCkuyh+ohOGZCKS/efHr
NZ6o3zS5oIFD92ThtV0VxGUpwt7eMMxLKTpPStnh2+Y+MGuax6HH7+riAnGPAgMB
AAGjggJBMIICPTAdBgNVHQ4EFgQUFZVz1N2CW93UPTg/WECVFtXiITowHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMTM4MzQyZTMx
MzgzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEALm4vTANBgkqhkiG9w0BAQsFAAOCAQEAQPJXB1VUr/V+5pGcAmyBt4OZh6Cu
4vicrh7wtw/FneyKzwfIayE4hhUMPczPv5cnlQHxiF7OTSRnaJ7NPdYY6X2dM3qe
Zu9d6j0RG0tKya0hAoutQSLe4s3bX8nnBrAuDI/B/KMXOO2z4a0ZcO6w19lJRXYi
M84x38R0OXRW+UztkN4At831W5E35m0EU8ujKyjwfYl9TKeI4yqPa8Zld48tlhVp
JVL6Go+/Yr9weISrsPubKzH0KfmmwUULtcxCEYkax7YZweNrPau0/R+DwAKqqrb+
/wGUgcRpht+xePgUVxvrzV+/nSMD4ey3pENW0Y3JyCwsHb8I5AkdwZyUwA==
-----END CERTIFICATE-----
Generated at Fri Apr 4 16:13:18 2025 by rpki-client