Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138352e38302e302f32342d3332203d3e203531313637.roa
File: 3138352e3138352e38302e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: +hMj6npOACuNXfTJWozRGIslGLhURxCI9K5UUcHaToE=
Subject key identifier: AC:A5:EC:2F:B0:2C:D2:82:C8:E8:7A:22:C2:2A:7F:D2:18:78:23:ED
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 2C94F711F1A0E9D51F5E0DDEB990A55B9A44FD41
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138352e38302e302f32342d3332203d3e203531313637.roa
Signing time: Mon 27 Jan 2025 09:45:18 +0000
ROA not before: Mon 27 Jan 2025 09:40:18 +0000
ROA not after: Mon 26 Jan 2026 09:45:18 +0000
asID: 51167
IP address blocks: 185.185.80.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:94:f7:11:f1:a0:e9:d5:1f:5e:0d:de:b9:90:a5:5b:9a:44:fd:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jan 27 09:40:18 2025 GMT
Not After : Jan 26 09:45:18 2026 GMT
Subject: CN=ACA5EC2FB02CD282C8E87A22C22A7FD2187823ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:64:41:95:a9:90:17:79:df:fe:4d:7a:c0:50:
b7:7d:c7:fb:c5:26:da:00:f0:c7:26:19:a6:b4:c6:
ab:db:5b:3b:37:09:17:cf:d6:97:5c:9f:3e:72:c8:
43:ea:7d:e6:e3:c6:2f:67:cc:fe:00:1a:b9:8a:56:
d6:83:4a:71:a0:07:ce:8a:34:5c:f8:68:0d:6e:f1:
16:5e:01:b7:af:1b:4e:6a:ad:34:7d:cb:0d:87:5e:
d8:86:4d:73:03:13:ce:d2:98:76:3a:40:59:ce:22:
d0:0a:89:9b:83:73:3a:18:43:de:64:a5:56:74:03:
da:21:dc:68:00:06:25:a7:f8:98:63:62:42:f5:3c:
d0:76:26:4a:6b:55:b1:1a:15:fa:59:39:24:50:ec:
29:11:e4:78:49:4f:91:4f:1c:af:57:14:67:32:16:
03:f7:be:5a:99:32:d2:78:eb:b4:d5:41:65:5f:b6:
a5:a4:12:e3:b2:97:4a:c1:19:c0:b4:1b:a8:00:7c:
7f:b2:40:4b:3b:9c:d1:0b:60:46:37:fd:aa:19:35:
fd:c4:a5:95:0e:1a:19:ed:83:8d:d9:70:3d:a4:a9:
4e:18:76:d9:53:12:d7:0d:f9:2c:5c:ef:36:6c:32:
dd:14:38:31:ac:eb:55:a7:f0:ea:b2:6a:75:29:f3:
7a:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:A5:EC:2F:B0:2C:D2:82:C8:E8:7A:22:C2:2A:7F:D2:18:78:23:ED
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138352e38302e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.185.80.0/24
Signature Algorithm: sha256WithRSAEncryption
00:37:9d:af:09:89:cb:3f:92:ec:b1:e3:9c:55:70:a5:58:67:
1d:4e:4e:65:ac:be:cc:85:93:83:62:c8:ca:94:ce:ad:df:ce:
15:bf:e6:93:82:a1:5a:7e:1b:6e:b7:f8:1f:f5:5a:57:cc:81:
70:7c:78:6f:20:ad:ee:85:d7:c0:e1:55:f4:8c:88:8f:8a:07:
0a:89:ac:b2:12:ca:6d:92:70:80:a2:74:ca:15:fd:2d:37:48:
60:b8:d3:bf:af:fd:b3:06:1a:11:9a:76:3b:e3:4c:76:fd:f2:
b9:8f:b4:2e:6f:51:aa:ad:ac:c1:51:dd:e5:ad:ec:b3:71:e3:
87:dc:f2:e2:3f:84:78:ac:ba:bd:89:84:76:f2:8c:50:52:10:
8e:c6:94:42:63:ba:96:af:54:70:b9:ae:75:01:13:b6:cb:cb:
46:88:6d:09:f8:e6:2c:ca:10:c1:45:fe:4b:52:1c:73:8c:61:
4f:dd:10:27:47:2a:07:9e:9d:32:40:06:0c:e9:f8:94:b4:dd:
23:7c:c0:c3:84:b3:85:d2:87:36:fa:5e:40:68:86:34:23:2f:
1a:ef:ff:5b:2e:09:72:87:66:d6:93:1b:a7:ca:cb:b2:02:90:
ac:d1:18:28:ff:18:38:dc:b7:10:4f:18:59:d1:c6:d3:61:9d:
a3:e1:6c:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 05:11:31 2025 by rpki-client