Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3232372e3133332e302f32342d3234203d3e20313336373837.roa
File: 3138352e3232372e3133332e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: voW9UsrllsP1745CnZDDz2k8E+4cbAc7yGofnynQa90=
Subject key identifier: 4A:F0:D4:93:AD:98:48:F0:D5:23:BD:5C:1D:78:CE:91:B7:2A:21:1F
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 246CAF1EB5C57729E5334896EEA79AB6CFA1BA54
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3232372e3133332e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 19:44:37 +0000
ROA not before: Fri 27 Dec 2024 19:39:37 +0000
ROA not after: Fri 26 Dec 2025 19:44:37 +0000
asID: 136787
IP address blocks: 185.227.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:6c:af:1e:b5:c5:77:29:e5:33:48:96:ee:a7:9a:b6:cf:a1:ba:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Dec 27 19:39:37 2024 GMT
Not After : Dec 26 19:44:37 2025 GMT
Subject: CN=4AF0D493AD9848F0D523BD5C1D78CE91B72A211F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:70:a6:4d:50:64:0c:3d:13:71:ad:15:9e:db:
ff:0c:84:f9:67:87:89:bf:a8:55:0c:74:69:51:b5:
2a:20:af:ad:26:ae:81:59:4e:db:20:bc:94:e8:6c:
4f:dc:eb:b4:ab:a3:5c:5e:df:19:1c:8b:5a:f3:be:
02:1f:b0:c5:76:f1:dc:8f:f8:02:40:3d:d3:30:1a:
ea:b1:45:b5:a8:59:aa:a9:8f:c9:82:74:9e:c5:da:
fd:82:4d:a2:f8:9e:6d:33:65:6e:e0:85:87:81:b0:
89:83:3e:e0:fa:98:3c:9c:69:30:f6:9f:1e:c2:3e:
03:80:9d:24:a2:6a:90:e4:13:ab:54:94:93:da:3c:
3b:c8:34:4d:ac:3e:92:48:53:06:bc:fb:0c:25:ad:
2c:9e:88:cb:18:c4:9b:97:2e:ab:52:80:e8:e7:22:
95:53:cc:a9:c1:f7:42:e5:77:c4:bf:4c:11:ff:d4:
bf:e5:58:76:18:e7:77:2c:ac:84:4b:47:aa:23:a8:
77:f9:4c:93:63:54:7b:03:e1:e5:e7:b7:90:1b:27:
3c:6d:83:36:49:e1:54:a4:2f:1b:3b:25:d6:46:41:
49:6a:84:a1:e5:0a:41:78:91:93:85:f8:d0:b6:a5:
77:06:fd:07:02:4a:17:47:4d:bf:06:21:79:c5:8a:
fc:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:F0:D4:93:AD:98:48:F0:D5:23:BD:5C:1D:78:CE:91:B7:2A:21:1F
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3232372e3133332e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.227.133.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:1b:3a:18:91:4d:eb:6b:93:61:07:69:9c:c9:63:16:a2:46:
23:db:4c:1a:5f:11:15:04:b1:79:ee:91:88:b1:02:c8:47:15:
57:fa:cf:19:d2:e0:dc:63:11:b2:72:24:a7:8f:74:9b:1f:11:
3f:43:af:31:ce:b1:04:52:d6:7f:8e:a0:b3:75:86:a3:be:75:
e0:68:71:29:d8:31:d1:28:8d:a4:17:d1:ce:1a:38:85:e2:4a:
17:63:d2:34:fe:7d:ab:f4:34:bd:ad:44:33:60:07:07:f8:60:
5f:16:0f:5e:eb:df:d4:91:f7:77:17:6d:b8:8c:07:7c:03:4e:
ca:d5:36:b3:cb:d5:c1:8a:30:bd:89:b8:c2:b8:64:36:db:28:
36:8e:9e:c9:32:9a:f3:6c:ef:5d:df:a6:74:95:cd:bf:c1:19:
28:65:9d:80:93:31:ce:df:3e:58:1b:83:39:a4:7d:46:00:b1:
e8:1f:db:eb:0b:0b:2b:62:bb:81:50:09:6c:cb:ed:38:b2:f8:
d3:eb:73:ff:65:bb:92:3b:42:50:aa:8b:9a:37:71:7d:3c:4a:
88:e4:9b:54:9b:56:39:dd:d2:8b:8f:a9:ab:90:5e:fa:2e:c9:
4e:59:5f:f5:83:f5:3b:47:a8:6d:ba:86:b6:2d:e8:70:17:8c:
a3:c3:5c:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:14:36 2025 by rpki-client