Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233392e3135312e302f32342d3234203d3e20313336373837.roa
File: 3138352e3233392e3135312e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: XbChxV0ywiRa02NAU+0xSdEycrg8gQiiMFyVW8YN1Zs=
Subject key identifier: A2:85:CD:3B:35:63:C7:1A:7D:C0:1D:E3:B5:4A:62:85:EE:C3:65:7B
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 7B36070F68618CC0031C79FBCEB479464069C88C
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233392e3135312e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 19:44:37 +0000
ROA not before: Fri 27 Dec 2024 19:39:37 +0000
ROA not after: Fri 26 Dec 2025 19:44:37 +0000
asID: 136787
IP address blocks: 185.239.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:36:07:0f:68:61:8c:c0:03:1c:79:fb:ce:b4:79:46:40:69:c8:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Dec 27 19:39:37 2024 GMT
Not After : Dec 26 19:44:37 2025 GMT
Subject: CN=A285CD3B3563C71A7DC01DE3B54A6285EEC3657B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e3:16:02:d5:6e:bd:b2:f3:c7:ed:95:b6:c7:
d4:a4:7a:83:ac:cd:62:b5:39:58:6f:48:0a:89:88:
86:cd:a7:8e:4b:84:b4:b3:04:0b:70:87:00:a3:f8:
d2:80:4d:0b:a6:c3:ba:f6:83:fb:99:35:34:7e:24:
3e:2e:c7:aa:da:43:05:d9:70:28:28:bb:7f:85:ed:
8f:21:ac:8a:05:d0:3d:7e:ca:ed:d5:3d:05:fc:52:
42:f8:97:5c:cc:96:66:52:2a:02:65:9d:4b:21:5e:
87:85:1f:ab:9a:8f:af:b5:48:a6:3e:fc:ad:8f:b9:
78:40:a0:15:80:4f:43:0a:3b:a4:f5:7b:00:48:6b:
05:80:89:f1:eb:74:ac:f8:c8:0d:3e:29:4a:30:8e:
06:10:5e:9d:7e:9d:85:36:54:5e:ad:66:70:30:6f:
ff:cc:68:80:76:76:95:c6:a9:60:a9:2e:e6:ae:5d:
36:11:9a:a4:57:63:c8:e7:33:7d:31:32:e7:b2:1f:
cf:69:e2:7c:72:c7:27:03:f6:ff:db:c7:09:01:95:
04:99:a2:96:8c:dc:30:3f:bd:bc:0a:8d:0c:17:46:
2f:b1:d1:e9:a0:03:a2:ec:88:47:88:59:71:04:e6:
41:48:ea:50:13:11:d8:d1:d1:d3:b4:9d:57:eb:10:
d5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:85:CD:3B:35:63:C7:1A:7D:C0:1D:E3:B5:4A:62:85:EE:C3:65:7B
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233392e3135312e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.151.0/24
Signature Algorithm: sha256WithRSAEncryption
98:ee:8c:7b:f2:fa:2d:b6:58:c7:1c:d2:27:11:0f:a1:bc:b0:
42:08:fa:02:93:08:a2:be:29:9e:a7:e7:d8:72:a5:a4:ba:a2:
05:6c:30:b7:22:b0:90:1c:a5:c5:a6:c4:36:61:1e:ab:62:df:
35:cf:51:4b:8f:cd:ac:fe:53:0d:e0:97:bc:87:a6:6d:77:01:
68:e4:b3:47:52:0e:08:cd:14:f6:e1:df:6f:e1:4f:fb:6d:65:
06:88:f6:12:62:74:1f:a8:12:74:07:86:ca:d8:a2:c9:d7:8b:
2c:48:24:8e:f9:0f:4b:0f:0f:fd:0e:c7:da:22:3b:09:e3:33:
39:57:e1:50:bd:61:fe:7e:6f:5a:4d:9c:7c:1e:c7:7c:e4:ab:
f3:06:62:82:d7:59:b6:af:c1:04:6f:45:f6:68:fa:c4:28:a1:
9e:f2:5f:4e:5e:c4:e0:b5:86:fc:1e:54:26:93:33:cf:92:de:
9c:b1:37:02:96:f1:de:5f:f4:3a:ce:e8:28:85:1a:88:22:13:
45:cc:ee:94:53:fd:3b:20:f9:93:34:5a:1a:20:64:ff:81:0f:
28:17:75:8d:09:6e:34:4d:25:86:01:71:19:bd:37:a9:b0:ab:
f2:e4:b9:9f:64:ba:bd:4d:a6:20:ac:36:d6:58:eb:b5:13:cb:
cd:dc:80:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 19:28:36 2025 by rpki-client