Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138382e3235312e302f32342d3234203d3e20313336373837.roa
File: 3138352e3138382e3235312e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: waNiMKqhXGPEnEcE2b2jLNbcB+/K6hJ2H2CWdOjwOaY=
Subject key identifier: 92:05:6E:AF:18:4D:DB:36:A6:F7:30:73:10:F9:83:DD:09:A8:80:35
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 7B055D33AAB02BA75F7F1A7868464A96320592DB
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138382e3235312e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 27 Jan 2025 09:45:10 +0000
ROA not before: Mon 27 Jan 2025 09:40:10 +0000
ROA not after: Mon 26 Jan 2026 09:45:10 +0000
asID: 136787
IP address blocks: 185.188.251.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:05:5d:33:aa:b0:2b:a7:5f:7f:1a:78:68:46:4a:96:32:05:92:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jan 27 09:40:10 2025 GMT
Not After : Jan 26 09:45:10 2026 GMT
Subject: CN=92056EAF184DDB36A6F7307310F983DD09A88035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:3f:4e:e9:34:39:0b:02:22:81:d8:e4:19:9e:
70:3a:86:64:04:8f:6b:97:a6:c8:4f:86:81:cc:bb:
dd:27:d9:a2:f3:3d:cb:c7:83:48:66:93:30:ff:04:
a8:e6:75:79:86:7d:c6:d3:f6:48:14:5f:ce:aa:e6:
64:4c:be:05:c8:4d:fb:3c:2f:93:18:23:32:29:0c:
5e:c7:61:29:ca:56:69:f7:b8:14:52:3f:8b:3d:a4:
aa:a8:68:7b:6a:33:aa:92:03:55:fa:46:32:96:de:
61:f8:c6:62:48:c5:3d:14:3b:3f:3c:3e:7a:21:e3:
ac:c6:5d:7f:70:e4:05:b3:1c:d5:66:64:be:46:fe:
1e:d5:31:67:db:a0:58:f5:b1:fc:8a:5d:e8:30:c5:
2a:86:c7:92:c3:6b:51:95:26:93:2d:e9:24:b0:40:
6b:eb:64:1f:83:bd:4e:9b:0b:9a:c3:a3:b4:e7:6c:
ee:68:47:6e:bd:33:56:3a:21:dd:5f:a7:4e:74:22:
f5:d9:b4:77:2c:39:9a:08:2b:a6:cf:da:39:2e:e2:
8b:3c:b5:26:57:c7:3b:cf:54:0e:d8:ef:6c:9d:83:
54:f1:aa:1e:e1:4d:fc:3a:6a:66:e9:93:81:e2:50:
02:a5:80:dc:74:60:34:c6:f5:c3:f6:16:86:dc:b1:
15:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:05:6E:AF:18:4D:DB:36:A6:F7:30:73:10:F9:83:DD:09:A8:80:35
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138382e3235312e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.251.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:cb:fc:03:8e:68:a9:e7:e7:5a:ad:92:5b:dc:c4:c4:f3:82:
54:e5:f1:4c:e8:11:85:a9:c8:1a:ef:a6:1f:d7:a6:0e:69:77:
64:39:ad:f3:c0:d5:3a:e0:0d:03:6c:22:ea:23:48:57:61:ee:
bc:18:1e:4d:72:88:06:d4:0c:86:f4:a5:4f:50:ec:0c:73:71:
b6:d6:73:b7:83:81:ad:da:c1:e8:58:ed:b6:a9:c8:67:e2:03:
df:03:1a:3b:9d:79:f4:4f:71:78:b8:70:39:dd:33:ad:76:bd:
f2:70:56:5e:f6:48:59:52:3b:ee:fe:94:c2:c5:96:0e:ea:45:
4c:44:c6:e8:07:bc:a9:c0:c7:b5:e6:d8:e0:5d:9d:28:01:59:
34:35:54:19:f2:cc:31:db:93:6e:49:35:3f:b2:bc:77:fa:3f:
bc:d9:08:78:13:21:26:34:4e:c8:c2:4f:1c:43:6d:e1:a1:04:
c1:2d:d9:16:7b:9a:73:af:33:97:c4:c3:cb:11:61:d9:8d:5c:
37:bf:82:35:d7:29:f2:63:41:83:56:6f:a1:c9:d9:e4:f8:11:
d4:75:5f:2d:e6:59:0e:f7:ae:4b:c0:55:79:cf:2e:49:b7:8d:
8f:17:ec:dd:d9:10:60:bd:c6:78:f2:d7:58:b8:fd:19:59:96:
fc:04:25:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:16:41 2025 by rpki-client