Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e392e33352e302f32342d3234203d3e20313336373837.roa
File: 3139332e392e33352e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: U75XWCYF3esvHPvomvsIjzIxKNSH5jFnxEs8QOlAudI=
Subject key identifier: FA:E1:8D:8C:08:14:6E:97:82:16:FA:CE:ED:08:D7:18:9D:0A:27:FA
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 554245E2ED521D2E679F746C94B1C67F18195ED5
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e392e33352e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 19:44:39 +0000
ROA not before: Fri 27 Dec 2024 19:39:39 +0000
ROA not after: Fri 26 Dec 2025 19:44:39 +0000
asID: 136787
IP address blocks: 193.9.35.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:42:45:e2:ed:52:1d:2e:67:9f:74:6c:94:b1:c6:7f:18:19:5e:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Dec 27 19:39:39 2024 GMT
Not After : Dec 26 19:44:39 2025 GMT
Subject: CN=FAE18D8C08146E978216FACEED08D7189D0A27FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:2b:b6:ef:ca:15:b0:f8:df:b0:c4:da:f4:ff:
02:c1:dc:5b:21:60:7e:00:c4:bf:5d:7c:93:fc:36:
3c:ef:7b:d5:22:ea:2f:23:1f:ea:ac:29:ab:94:d6:
05:d5:7d:0a:88:67:c0:8e:31:a8:4b:f8:52:b5:46:
14:ec:81:e5:c3:71:32:af:d1:5c:d0:1a:74:58:bc:
96:0a:32:d9:7d:8d:10:a3:36:ec:39:7c:c3:10:62:
54:92:07:a1:51:94:f6:f8:1c:45:09:a6:c5:f6:00:
7c:3a:0f:18:cd:f4:ea:9d:92:ec:44:90:90:c7:7f:
4c:b7:89:59:dd:9a:d5:c4:5c:c0:76:b1:1f:46:2e:
07:1c:a1:a5:22:2e:f9:9f:1f:9f:7f:12:13:51:8b:
be:c1:7d:fb:58:4c:58:26:11:1a:75:1f:fd:55:8a:
6a:98:6d:e7:6e:53:8d:d4:78:df:18:99:d4:df:73:
79:9e:ef:13:e9:34:c9:84:09:42:a1:00:39:98:e7:
b0:29:11:55:0e:3d:7a:fc:5b:78:5a:64:3c:e6:d1:
6a:f5:8e:3c:6e:cf:6a:61:3a:92:84:d2:d8:91:f3:
86:42:6d:4c:6c:4f:bf:20:2a:8a:a6:09:83:59:75:
74:d8:30:2b:c6:85:13:47:ab:c0:e4:91:cd:b7:32:
b8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:E1:8D:8C:08:14:6E:97:82:16:FA:CE:ED:08:D7:18:9D:0A:27:FA
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e392e33352e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.9.35.0/24
Signature Algorithm: sha256WithRSAEncryption
52:72:46:4a:27:e5:d5:27:99:0b:00:0d:f8:d0:35:84:d0:d5:
62:89:ad:24:1a:62:1a:b7:2e:1a:41:6b:16:a6:ea:3b:d6:fd:
89:c3:b9:99:12:45:6c:ff:28:93:8b:3b:3c:59:09:d5:60:9a:
b4:ff:ff:ab:8f:5a:ed:9b:f3:38:3e:33:75:a0:9f:a2:67:ec:
6a:0d:b6:e9:93:a1:1b:6e:4a:b4:16:64:d0:c2:79:6f:04:d6:
41:c2:33:d8:22:d4:fc:4d:2c:78:7e:b8:a6:85:4a:f8:a7:5c:
55:f7:a8:b8:23:83:91:67:77:6b:71:94:76:ac:c9:a6:e1:5d:
12:24:fb:4a:96:8e:6f:69:2b:6e:a0:8a:bc:9f:7e:4c:17:76:
76:ff:a2:be:13:9e:92:f4:04:1e:34:9c:c5:94:36:a4:f1:27:
17:b8:5f:58:d1:40:b8:63:c6:d4:b6:00:2b:e9:79:e8:32:1e:
11:dd:9a:a5:88:e2:e1:13:50:82:f6:bf:d3:70:81:4e:64:23:
71:3e:bf:ec:4a:d8:11:71:8c:0b:06:83:2c:51:60:cb:d5:da:
9f:fa:a7:c2:fd:9b:0c:1c:57:66:4c:75:87:70:54:5d:f2:96:
c0:41:9f:25:b8:f7:e1:04:f3:84:d4:e9:1c:90:f9:8c:0b:ea:
74:50:21:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 19:23:36 2025 by rpki-client