Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233302e3133362e302f32332d3233203d3e203239303636.roa
File: 3138352e3233302e3133362e302f32332d3233203d3e203239303636.roa (raw, json)
Hash identifier: wMGG6RXAtz7TYGgWKbGllTMpIZmlOb0JitQweOB7Bqo=
Subject key identifier: 00:83:19:24:BE:D5:59:99:AF:53:E3:46:DE:CF:EC:A9:F2:6C:93:95
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 1A21113F31FAB2229FB4FEAB3CE2EDBD488C0878
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233302e3133362e302f32332d3233203d3e203239303636.roa
Signing time: Fri 31 Jan 2025 16:45:34 +0000
ROA not before: Fri 31 Jan 2025 16:40:34 +0000
ROA not after: Fri 30 Jan 2026 16:45:34 +0000
asID: 29066
IP address blocks: 185.230.136.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:21:11:3f:31:fa:b2:22:9f:b4:fe:ab:3c:e2:ed:bd:48:8c:08:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jan 31 16:40:34 2025 GMT
Not After : Jan 30 16:45:34 2026 GMT
Subject: CN=00831924BED55999AF53E346DECFECA9F26C9395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:dc:f3:da:81:b3:0e:98:f4:09:0f:c4:3e:ed:
97:c1:78:34:60:6b:24:90:15:42:33:eb:a8:2b:f4:
3f:c0:45:de:18:e8:45:c2:ea:36:64:07:5e:26:de:
7d:01:3d:1c:cd:d2:a9:96:53:e1:f5:72:94:71:4b:
3d:50:e6:5b:6a:8f:b4:7b:d9:8e:8f:bc:4e:ea:0d:
8e:7a:b5:97:96:87:bf:8d:b4:11:6e:11:91:16:8c:
80:ab:46:b1:7e:bb:71:47:0c:3c:e6:62:04:b2:4c:
aa:9d:dd:7f:20:60:02:9e:10:26:be:5f:a7:23:84:
10:26:c9:fc:6c:a5:c0:67:4e:be:7c:06:8d:7c:de:
33:aa:85:a2:d6:e4:b3:23:37:6e:0f:22:ea:d8:36:
d0:92:59:99:b4:3e:69:a4:df:fe:15:f3:13:07:6e:
55:26:9e:8b:37:85:c0:28:2a:06:35:0b:9a:35:60:
d3:12:e7:86:a5:b4:14:65:a9:d3:d5:ff:56:a4:e4:
80:33:fe:6d:ae:ed:1e:99:9d:0a:a4:ab:8d:1b:06:
51:d3:cb:15:f7:cf:49:76:55:93:c1:2d:fe:b3:86:
4d:8d:09:32:de:84:7d:57:07:c6:47:70:46:af:c6:
d3:c8:6c:ab:cb:67:eb:80:45:6b:14:aa:91:0d:d8:
10:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:83:19:24:BE:D5:59:99:AF:53:E3:46:DE:CF:EC:A9:F2:6C:93:95
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233302e3133362e302f32332d3233203d3e203239303636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.136.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:42:7c:0b:df:13:9a:3e:2e:1a:93:eb:74:d6:e7:35:4b:13:
9a:4a:e7:85:46:38:93:7b:2b:7b:63:dd:52:bb:08:07:65:84:
d4:a8:04:79:06:75:1e:3a:e9:93:d0:12:70:60:e9:ab:19:3f:
26:e0:2a:68:b0:f2:52:ee:e7:62:d6:a1:10:09:91:1d:31:a2:
18:5a:82:16:4f:11:18:3b:d0:7e:8d:db:65:51:af:fd:cb:f2:
67:5d:28:31:d1:c0:f9:7e:76:9a:bf:1d:ed:41:3d:16:4c:4f:
4a:13:27:9d:24:40:a0:53:a3:c3:24:cb:18:f6:ac:04:01:d9:
d1:96:6f:78:06:b9:0a:52:59:9c:d1:d2:e2:23:c3:d3:33:31:
81:38:9a:f1:8c:ec:e9:02:ee:c7:8f:5f:19:70:ee:e2:fc:42:
88:9c:bb:3e:8a:b1:a8:e7:a2:4c:d9:0f:61:e3:b2:41:22:b2:
57:38:22:f8:d9:96:d2:be:1a:e8:c9:b3:ef:86:38:38:89:fe:
00:f3:2f:96:6c:23:a5:a6:6d:9d:5f:70:c4:3b:55:65:58:d7:
3d:c3:33:85:7e:fa:94:8c:8e:9c:af:36:c4:a4:0f:d9:5e:b9:
97:d5:c7:c0:5f:81:07:cd:73:b9:45:f4:8a:b4:90:35:db:9d:
9c:f2:db:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 19:00:37 2025 by rpki-client