Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e33322e3233322e302f32342d3234203d3e20313336373837.roa
File: 3139342e33322e3233322e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: IZWfVBhAUyu0POyGsnAuszFo3wzUP0VU4gFpqy7mVBA=
Subject key identifier: AF:68:9A:B5:BE:6B:2B:89:65:D6:F4:22:A7:00:BB:BC:1A:78:5E:09
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 5FCE37C620F6D00D16F35D8A4BFD75E61BBC9C73
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e33322e3233322e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 15 Dec 2024 18:44:30 +0000
ROA not before: Sun 15 Dec 2024 18:39:30 +0000
ROA not after: Sun 14 Dec 2025 18:44:30 +0000
asID: 136787
IP address blocks: 194.32.232.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:ce:37:c6:20:f6:d0:0d:16:f3:5d:8a:4b:fd:75:e6:1b:bc:9c:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Dec 15 18:39:30 2024 GMT
Not After : Dec 14 18:44:30 2025 GMT
Subject: CN=AF689AB5BE6B2B8965D6F422A700BBBC1A785E09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:50:2b:62:3d:53:bb:66:30:fe:d2:c1:dc:9f:
ab:5a:89:d2:be:8c:a5:b9:cd:50:d4:6b:07:a6:0d:
d7:d7:fb:97:92:b3:cc:2d:e8:50:a4:73:48:fa:8e:
e0:75:b6:80:33:8e:42:09:ef:7c:3d:cb:a3:9a:8e:
c0:99:dc:47:3c:03:6b:83:bd:3d:2a:35:ae:0c:5f:
34:bd:b3:75:bd:7c:13:be:5c:57:0b:ad:4a:8a:00:
fc:ec:c1:33:6d:38:ec:eb:4b:ba:8d:96:c1:1e:de:
bb:2f:72:bb:f6:bf:98:dd:47:c6:8f:52:e2:4d:23:
33:78:a1:df:3c:18:89:0e:97:80:12:2f:7e:13:71:
7f:3a:ef:72:32:79:83:eb:88:56:66:92:7b:92:8f:
4b:cd:62:75:ce:17:fc:33:78:9f:02:9c:37:f4:9b:
b8:2f:17:af:f9:6d:7d:5d:49:f6:f8:c8:bc:c0:7a:
e6:80:03:6f:cb:4b:66:0f:a7:60:16:0e:8e:81:0d:
3c:b2:92:a1:05:e0:77:c4:c9:f0:7a:ba:ee:57:c8:
c5:9a:15:90:cf:de:4f:9d:f9:2f:f5:27:f1:4a:5d:
8d:0f:20:a1:99:87:26:ad:78:25:c9:40:7e:4c:ca:
11:70:3c:dd:3a:1a:aa:bc:eb:6c:e7:3f:ed:f3:6d:
37:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:68:9A:B5:BE:6B:2B:89:65:D6:F4:22:A7:00:BB:BC:1A:78:5E:09
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e33322e3233322e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.32.232.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:96:c5:9b:79:f2:52:b9:41:46:6b:24:2a:33:3b:66:25:0b:
22:d1:71:a3:8d:d8:2a:26:85:84:fa:89:93:04:cd:05:89:d6:
9f:79:d0:51:1c:88:73:bb:21:85:05:e3:c4:56:b0:cc:79:ef:
ef:be:89:b0:01:56:5a:d3:90:4a:f4:24:75:e8:cf:6d:9a:c6:
e4:f9:17:61:10:37:f9:18:1a:1c:17:aa:84:54:e3:50:1a:c5:
8f:8b:c2:a4:04:73:4b:a0:3b:1a:d5:fb:1c:e0:ef:57:fd:8f:
82:29:54:1a:7a:7c:30:48:b5:d7:b4:c1:85:81:85:5d:dd:39:
06:28:e9:3a:d5:6c:2a:07:6e:3f:b4:05:6f:a1:04:de:23:77:
62:79:f1:d4:ed:e9:25:69:04:f0:be:c6:d6:92:9f:5b:e4:6f:
7e:66:72:c2:6a:59:dd:b7:e5:65:d9:90:18:1a:8b:d8:96:fc:
d6:c1:32:e4:47:d5:6a:04:12:61:8f:51:05:1c:3a:77:70:3f:
d8:22:56:25:32:3a:88:11:c6:06:d6:ab:0c:ee:a7:15:c2:a4:
87:04:e9:53:a4:4d:e0:fa:c2:c1:3a:10:21:7f:28:41:3e:88:
f9:d3:e2:ad:6a:5a:e2:48:cc:0a:16:94:fe:88:00:1d:e9:48:
ae:41:ba:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:47:41 2025 by rpki-client