Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e392e33322e302f32342d3234203d3e20313336373837.roa
File: 3139332e392e33322e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: WqoiQ6MmcGOuOtNADeQKwIK4FPdMVE4EeAVeS01h3/Y=
Subject key identifier: 4E:5B:B5:04:3B:50:7A:4C:0B:43:B5:30:B1:CD:50:69:18:4F:F3:B0
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 3097BBDCF22D54CB70FCFAC6CFAFEE48F46F0362
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e392e33322e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 19:44:41 +0000
ROA not before: Fri 27 Dec 2024 19:39:41 +0000
ROA not after: Fri 26 Dec 2025 19:44:41 +0000
asID: 136787
IP address blocks: 193.9.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:97:bb:dc:f2:2d:54:cb:70:fc:fa:c6:cf:af:ee:48:f4:6f:03:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Dec 27 19:39:41 2024 GMT
Not After : Dec 26 19:44:41 2025 GMT
Subject: CN=4E5BB5043B507A4C0B43B530B1CD5069184FF3B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ed:ba:2a:17:8c:51:aa:a1:e4:34:88:31:c3:
06:74:7c:d3:5e:d5:27:18:f5:48:6c:6f:f9:d9:30:
f1:7e:3d:ae:19:d5:53:a2:8a:ba:02:5c:3a:f8:6f:
ac:49:2b:97:00:06:eb:3a:04:ee:ba:ca:bc:50:c9:
c1:d8:bb:d2:dd:28:65:32:3a:80:a6:45:56:0d:43:
85:6d:ab:26:1e:c0:fb:c7:6c:bf:b0:95:ea:1e:4f:
20:ab:0a:4e:14:23:10:e7:d5:fb:16:6e:95:35:62:
7a:4a:6c:73:67:a6:e8:ba:9b:16:f7:46:57:c0:c9:
a8:e4:83:b3:bf:65:4f:50:e0:ec:d2:61:df:d2:35:
e0:85:9e:cd:74:f9:bc:2f:f3:9d:1f:2a:bf:16:cb:
b8:24:65:d9:83:f2:1b:6e:4b:5f:5f:d3:fc:b6:4c:
25:62:41:2f:c1:ce:0a:54:e9:9e:c7:06:47:9e:dd:
c3:4a:4c:74:66:75:36:83:f8:f4:3b:fb:ec:3b:34:
41:9b:37:ad:d0:4c:ae:37:24:a3:85:6a:2b:03:09:
67:06:b3:f3:b8:d1:33:69:a8:b3:f1:63:2f:e9:9f:
79:85:7d:ef:0b:95:dd:8d:52:e9:73:23:23:ed:a2:
37:f7:85:71:06:b4:36:57:3b:8e:c0:aa:6b:62:13:
b0:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:5B:B5:04:3B:50:7A:4C:0B:43:B5:30:B1:CD:50:69:18:4F:F3:B0
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e392e33322e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.9.32.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:90:db:3e:f6:57:63:25:cb:d4:6a:18:24:1b:86:17:49:a4:
b7:71:56:8b:41:a7:7b:b8:d7:09:7f:79:b7:70:3e:f7:60:7a:
33:fc:a5:c9:75:c4:b2:1c:91:9c:ef:8d:2a:0e:a4:0c:57:4c:
2a:f0:88:eb:46:14:a3:d6:54:75:96:b9:f8:58:88:e3:46:d6:
e3:63:cf:03:f9:fd:ed:f2:09:15:86:cc:e9:af:42:b9:92:57:
39:39:8e:eb:e6:4c:5a:4a:80:d3:25:0a:92:fc:db:a5:4c:8e:
e1:54:4e:fd:e3:ac:85:36:17:6f:3f:6e:4e:71:39:c9:2a:02:
08:e6:02:bc:a4:9a:21:e2:d7:08:3e:ba:e9:fe:7c:c4:aa:9d:
1d:8c:bf:9e:f5:b6:3f:a5:83:9c:10:44:1f:16:12:09:e0:bb:
17:1d:16:6d:d3:7c:88:9e:24:ab:9a:5c:4f:32:9f:42:8b:38:
4d:48:4e:25:84:82:05:8c:0b:00:68:a8:ad:fd:34:eb:3e:01:
33:e7:4a:3f:80:0f:d1:05:4c:ae:8a:23:3b:fb:c8:51:8c:a5:
a8:13:dd:ac:df:5d:12:9d:98:71:e4:49:27:d7:fe:e1:23:5e:
c2:da:f8:eb:2e:81:82:b1:03:bd:39:0c:e6:ba:23:2a:79:79:
7b:4a:11:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:15:26 2025 by rpki-client