Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3234312e3134382e302f32342d3234203d3e20383334.roa
File: 3138352e3234312e3134382e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: /C0ORfrdphLqL613jrJDE04+7wqjUuhXjivx20qVe8I=
Subject key identifier: A5:9F:C0:7B:BD:5B:35:BE:2C:0F:2F:CE:05:57:03:7B:5F:8B:4C:70
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 24C8ECA2F4A12558C33426CFBF19F8913B174186
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3234312e3134382e302f32342d3234203d3e20383334.roa
Signing time: Fri 14 Feb 2025 09:45:42 +0000
ROA not before: Fri 14 Feb 2025 09:40:42 +0000
ROA not after: Fri 13 Feb 2026 09:45:42 +0000
asID: 834
IP address blocks: 185.241.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:c8:ec:a2:f4:a1:25:58:c3:34:26:cf:bf:19:f8:91:3b:17:41:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Feb 14 09:40:42 2025 GMT
Not After : Feb 13 09:45:42 2026 GMT
Subject: CN=A59FC07BBD5B35BE2C0F2FCE0557037B5F8B4C70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f4:5e:35:ec:4e:a9:43:c2:0f:eb:84:a9:54:
86:20:d9:b4:ee:32:b5:77:98:55:e7:20:61:28:65:
a1:ac:9e:90:4b:3f:05:ea:95:0a:e5:68:c1:5c:81:
46:f0:b2:d9:75:cc:53:76:be:d3:74:71:eb:92:90:
65:50:22:30:1c:da:b2:52:31:38:ca:e9:c5:61:12:
a6:f5:6c:a0:35:cd:21:fc:8e:a9:fc:af:6e:d8:92:
38:e7:eb:14:6a:96:6a:92:56:08:01:81:49:7c:35:
67:ff:1c:cb:99:40:0a:e8:41:5b:ab:12:a0:f3:20:
62:59:68:e0:dd:58:e0:77:c7:f9:8f:7a:6c:84:95:
f4:e2:93:8c:bf:b4:20:11:af:c2:7c:9d:8d:1a:7f:
5d:1d:d5:f8:7a:bd:fa:25:91:05:a7:a5:a2:08:56:
d5:f2:69:9c:86:ed:43:d6:0a:d0:66:13:73:5e:18:
86:36:17:f7:76:a8:25:7e:06:f1:2d:9b:7d:85:77:
eb:aa:22:f7:0f:9d:f3:87:df:3b:fc:b5:09:b6:f1:
a9:e8:af:81:19:fe:4a:17:c3:32:7f:76:e4:81:35:
32:01:a5:c3:bf:df:ea:26:08:ca:42:07:6b:75:1c:
59:8f:57:4c:34:a8:9f:e6:93:f3:8a:5d:f7:1b:76:
b0:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:9F:C0:7B:BD:5B:35:BE:2C:0F:2F:CE:05:57:03:7B:5F:8B:4C:70
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3234312e3134382e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.148.0/24
Signature Algorithm: sha256WithRSAEncryption
74:ed:bc:66:73:b0:ab:8e:37:14:a2:9a:a9:a3:67:ef:57:3b:
de:ad:46:9a:e0:e8:ae:eb:12:85:4f:16:ab:ae:84:4a:92:84:
57:b4:b9:d4:34:bd:bb:0e:8f:6e:39:e5:b2:87:71:5d:af:44:
ac:ba:1c:87:4f:64:75:93:34:42:b1:a4:fb:49:c2:f7:f7:ff:
29:72:cd:7d:dc:ed:f5:c1:22:40:bc:20:23:17:c3:b6:d9:ac:
72:e5:84:a6:d2:f2:f1:ea:c6:29:1a:5b:80:1e:d2:98:f4:c6:
0f:13:87:20:73:78:4d:02:c7:79:c5:3b:aa:7c:45:e2:73:ba:
dc:1f:41:ca:10:26:4f:d4:53:74:81:0e:c7:e1:2f:21:da:91:
49:c5:f5:2a:b4:dd:2b:9b:e3:24:1d:41:ae:04:66:6f:ac:37:
a5:6d:03:09:ff:8f:47:c6:cb:12:53:4c:11:5a:22:49:aa:08:
1d:b5:94:11:f8:88:80:8c:a2:78:f7:54:fb:d8:76:31:29:c8:
39:70:88:03:b3:21:b1:3a:61:6f:38:51:21:04:56:85:ab:f9:
7e:3a:ff:8b:ec:3e:6f:fb:db:4f:af:40:95:53:3b:42:ac:f7:
a6:fb:b1:89:0c:e8:07:aa:97:30:c8:40:80:5e:c8:3b:4f:98:
5a:b5:54:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 10:21:21 2025 by rpki-client