Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3139352e39332e302f32342d3234203d3e20313336373837.roa
File: 3139342e3139352e39332e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: wjSDTV8dqrFBX68gUpYYVob8WrSUspyKPm2tWe0nkEY=
Subject key identifier: CA:5E:AB:7E:62:E7:94:B5:97:FE:A8:06:E7:7A:5E:94:77:51:ED:B2
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 177D4E80A00DA8A2EBE7FADDDD3B6CCF9723F66E
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3139352e39332e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 27 Jan 2025 09:45:07 +0000
ROA not before: Mon 27 Jan 2025 09:40:07 +0000
ROA not after: Mon 26 Jan 2026 09:45:07 +0000
asID: 136787
IP address blocks: 194.195.93.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:7d:4e:80:a0:0d:a8:a2:eb:e7:fa:dd:dd:3b:6c:cf:97:23:f6:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jan 27 09:40:07 2025 GMT
Not After : Jan 26 09:45:07 2026 GMT
Subject: CN=CA5EAB7E62E794B597FEA806E77A5E947751EDB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e6:43:d4:39:e5:bd:10:8f:5c:f6:05:3e:8c:
ed:55:08:32:8f:5d:72:2d:3b:7c:01:13:df:7d:bf:
3b:d3:ac:d8:93:75:f5:37:05:a1:07:38:40:e5:bf:
8b:c5:f4:d5:9d:0c:a6:fb:98:99:e5:40:17:15:a6:
15:10:41:29:dd:5d:c8:38:34:81:62:4f:2d:8e:38:
7b:6e:61:94:76:99:10:8e:fb:9f:d5:40:8d:01:67:
a4:03:45:d1:88:d7:04:b3:7a:0d:4f:c8:73:5b:45:
ef:5f:68:f1:92:b7:a8:32:46:3e:f9:26:13:47:f7:
b0:b5:23:7a:2b:24:61:33:25:53:88:36:11:c0:f9:
8f:08:d1:98:4f:28:39:59:bb:00:2c:ed:be:f2:c2:
29:e3:35:8f:ac:81:a3:7e:1c:20:67:d7:27:ad:9f:
2d:6b:d7:b3:68:dd:5a:73:c7:13:ff:68:ba:5e:e7:
79:5f:c3:a2:66:db:3f:03:ab:a4:01:cd:b9:f4:d3:
90:cc:74:2d:af:5a:1d:ad:c3:47:c4:67:32:81:5c:
c5:3d:b2:54:a3:d1:1b:19:1e:b1:26:7c:60:cf:22:
8d:20:22:38:15:7f:35:4b:cb:34:8f:5c:03:43:1d:
1c:07:01:1c:f1:77:bd:38:16:d0:f1:bd:97:ba:eb:
a6:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:5E:AB:7E:62:E7:94:B5:97:FE:A8:06:E7:7A:5E:94:77:51:ED:B2
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e3139352e39332e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.195.93.0/24
Signature Algorithm: sha256WithRSAEncryption
75:9a:91:db:ae:a7:51:a3:1f:0e:c2:df:b4:44:f7:95:8a:0f:
36:73:ed:86:1b:54:59:f2:2d:af:38:20:f8:2c:71:ef:b9:5e:
be:8a:d7:82:af:50:7a:94:92:3d:8f:da:9c:56:1f:74:ca:a4:
ac:e6:33:7e:61:41:1b:d5:71:98:f8:79:ff:5d:28:cb:f4:4a:
dc:b5:8f:e2:bf:1a:85:21:fc:c4:bb:37:ff:14:3c:86:02:b3:
99:8d:4e:03:13:ed:1b:44:6d:a3:3c:d3:90:f3:66:21:ac:d8:
a7:f5:a5:6d:db:75:cc:67:7a:67:88:12:b6:3a:4a:79:e4:6b:
ce:46:79:29:95:da:63:23:f8:b2:9c:14:75:76:03:c9:da:d0:
b4:66:f1:c5:da:8a:99:6d:fa:20:a8:61:7e:25:70:88:49:f3:
04:32:f5:cd:58:d4:64:cf:ce:40:d9:4a:6a:0b:27:d9:08:fe:
df:78:83:9a:b5:05:7f:43:7c:d1:81:aa:85:53:c3:ec:b3:2d:
0e:58:91:90:d5:f1:44:11:fe:76:71:ec:30:0c:5a:0c:7f:30:
dd:26:0d:58:db:92:05:c9:60:e7:ed:cb:30:bb:83:11:ab:b1:
b2:22:51:ac:f3:bc:1c:fd:76:7f:f5:fa:93:c2:39:1a:a0:09:
a5:22:ba:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:14:38 2025 by rpki-client