Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233392e3134392e302f32342d3234203d3e20313336373837.roa
File: 3138352e3233392e3134392e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: fPbi7SEpANFLzmu8T38AJOMYiYJRrtyo3rfGReFGnjM=
Subject key identifier: 56:8C:C2:BF:68:05:E2:F7:78:21:06:7B:4C:23:81:7B:62:61:65:D7
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 4C2BFA9135B1716E7285E6846F056DF16EA8F990
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233392e3134392e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 19:44:40 +0000
ROA not before: Fri 27 Dec 2024 19:39:40 +0000
ROA not after: Fri 26 Dec 2025 19:44:40 +0000
asID: 136787
IP address blocks: 185.239.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:2b:fa:91:35:b1:71:6e:72:85:e6:84:6f:05:6d:f1:6e:a8:f9:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Dec 27 19:39:40 2024 GMT
Not After : Dec 26 19:44:40 2025 GMT
Subject: CN=568CC2BF6805E2F77821067B4C23817B626165D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:bd:fe:29:0e:f5:8b:0f:f5:34:d6:48:aa:22:
0c:ec:b8:c2:e3:cc:70:7f:48:10:be:77:19:93:da:
18:65:79:cc:23:07:c5:6a:43:01:64:a6:2f:ec:87:
3f:e0:fc:79:37:30:f0:5c:0c:b1:3f:30:9f:1d:4e:
f6:5d:e0:2b:78:7e:61:ee:45:1b:f5:d2:62:f5:01:
4a:04:97:d5:2d:b4:2f:a3:cf:d8:9f:9f:a2:f7:98:
d9:dc:13:fb:53:17:d9:a3:cd:74:51:9b:78:ff:17:
a2:8f:31:99:e4:12:4e:af:ed:48:78:6b:d7:99:bd:
25:bf:d8:68:d3:5c:de:1b:c7:fa:2a:65:af:1e:c5:
8c:1b:9d:fa:e7:4f:2c:58:a8:d9:bd:02:c9:91:59:
3e:3c:07:41:93:5b:99:8d:23:af:76:53:14:4e:5c:
92:3b:dc:08:ed:f0:c1:ec:66:18:f7:d7:52:d8:cf:
2b:c3:bc:87:44:92:1e:55:b8:59:bd:23:d9:fe:63:
57:26:c0:8b:7f:e3:00:e2:f0:15:54:2e:87:5e:44:
f6:7c:08:db:e8:3d:de:9a:22:e4:8a:9a:e3:26:b1:
c1:30:49:54:16:92:4c:b6:9c:19:05:3f:0c:7a:98:
24:7a:77:9d:77:a6:f2:15:d3:af:43:5f:7a:6b:66:
8b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:8C:C2:BF:68:05:E2:F7:78:21:06:7B:4C:23:81:7B:62:61:65:D7
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233392e3134392e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.149.0/24
Signature Algorithm: sha256WithRSAEncryption
38:84:ee:a6:5a:1a:9a:28:f6:e9:81:c9:18:62:6e:c4:49:30:
66:1b:f8:2b:db:d0:8b:35:3a:fb:c5:4d:a1:9d:33:92:4c:e2:
e5:a3:1f:ae:04:50:f4:4b:f6:6f:9d:96:16:e9:41:d9:65:af:
17:7d:e8:23:9f:18:4f:4d:6d:4c:a2:ab:13:ac:f0:00:4a:5f:
3c:bb:fb:86:c9:ca:49:f0:f3:d5:b7:6a:33:95:71:ee:0f:7a:
cc:f3:ff:d7:65:19:1f:88:0c:e3:29:75:e5:f3:1f:c7:f3:7f:
1f:b0:11:8a:ad:48:da:92:e4:ad:0b:de:4b:33:39:e9:af:2e:
74:15:c3:11:e2:eb:f7:d9:d0:f2:a6:f0:f3:6d:f6:c9:c1:d0:
0c:df:6a:0a:14:28:c2:f7:7d:27:36:53:61:0e:b8:bf:85:f7:
99:f6:53:5b:d4:2c:6f:4f:1f:b4:23:68:7d:6d:f6:f0:45:3a:
28:0c:36:d4:0d:bd:46:5e:d1:d0:a9:01:8c:26:c2:d3:8e:c7:
a7:10:46:91:b8:5e:a1:5d:17:a0:0a:36:28:c8:cb:2f:08:86:
3c:70:5c:5c:03:07:d6:f8:b6:07:a0:6d:47:9b:25:1b:e9:1c:
26:80:21:21:84:84:4a:63:3d:b4:62:9e:ca:2f:b1:b7:16:3c:
eb:75:a7:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:18:26 2025 by rpki-client