Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e33322e3233342e302f32342d3234203d3e20313336373837.roa
File: 3139342e33322e3233342e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: y8i9jwMFztS99phRJtjOEVzP3N1UlTro9GsQqHx9q0Y=
Subject key identifier: 35:7C:36:31:3E:9B:BD:D4:A0:D5:10:01:83:82:85:21:51:03:44:7F
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 2E79486CE51A0B4D5D7E23E66B99FBB8298D1004
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e33322e3233342e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 15 Dec 2024 18:44:30 +0000
ROA not before: Sun 15 Dec 2024 18:39:30 +0000
ROA not after: Sun 14 Dec 2025 18:44:30 +0000
asID: 136787
IP address blocks: 194.32.234.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:79:48:6c:e5:1a:0b:4d:5d:7e:23:e6:6b:99:fb:b8:29:8d:10:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Dec 15 18:39:30 2024 GMT
Not After : Dec 14 18:44:30 2025 GMT
Subject: CN=357C36313E9BBDD4A0D51001838285215103447F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:6f:ad:2a:6f:9c:0d:aa:2d:c6:d1:a4:bf:45:
39:dd:af:8b:90:9d:45:2d:55:0d:ca:2f:d4:84:07:
5f:4d:bd:8d:8c:82:58:52:e3:c0:2c:49:61:5f:eb:
45:03:51:0a:c4:9a:5a:aa:9f:f6:c0:b4:59:73:8b:
84:e7:d3:16:93:97:7b:9d:44:c5:e7:fd:df:b4:3d:
ac:7c:9f:d8:a3:74:a9:63:25:9f:5b:36:6c:4a:92:
16:24:b8:6f:ef:c5:dc:fa:8a:82:cb:fc:df:3d:a4:
17:f7:53:dc:65:3d:99:ff:26:d0:45:d0:94:1e:08:
c0:88:64:92:d4:89:eb:b2:aa:d9:ad:a4:e1:88:50:
e6:03:57:b5:1e:27:02:f1:ee:d0:6d:1b:7d:23:d0:
c3:6a:14:30:ee:5d:58:23:65:99:e4:c0:6f:04:e3:
d9:1c:fc:19:d3:e5:00:64:68:9e:aa:9b:d6:4e:9a:
6c:8a:65:0a:11:f5:e9:fa:01:0e:f8:91:8b:fa:d4:
7c:6d:c7:30:1f:40:f8:6b:72:5a:38:82:a7:5c:c8:
09:07:af:42:36:9e:64:85:c0:d0:db:1f:54:fd:e8:
a6:69:90:3b:ce:bf:e2:dc:04:11:22:a4:dd:19:98:
84:3d:4f:26:23:20:fa:05:99:4a:b1:88:6f:2b:b0:
5b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:7C:36:31:3E:9B:BD:D4:A0:D5:10:01:83:82:85:21:51:03:44:7F
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139342e33322e3233342e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.32.234.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:e9:9e:1d:58:44:79:50:2a:c7:e0:20:d6:a8:97:f6:49:84:
f0:97:8a:c7:b1:58:01:78:50:aa:ce:ae:4c:42:1e:50:51:60:
35:32:05:b1:97:21:3c:fa:06:3c:85:fb:23:62:72:99:eb:ed:
9b:46:e6:33:32:04:49:f8:d2:53:2e:b6:9a:38:64:70:f2:d6:
aa:42:e9:12:92:d0:fa:62:7a:77:27:5e:a4:65:88:4c:f0:60:
fe:18:71:ef:ae:54:a7:dc:ba:55:90:f1:7c:40:52:20:2f:f5:
b8:4c:e8:dc:07:95:63:38:97:83:78:b0:ba:18:52:46:1f:b8:
9f:1d:2a:6e:a1:d8:67:f7:bb:37:f5:f7:ea:8d:ea:d7:56:37:
22:57:af:70:99:3f:63:75:4d:d8:1d:49:72:5d:a7:4d:03:57:
a3:8f:71:29:00:6a:a1:0d:ed:fa:2d:e1:d7:27:de:97:05:8b:
79:a4:8e:6a:64:87:f5:ae:37:39:bb:59:9d:45:92:3a:fb:1d:
66:91:86:a0:4b:bf:94:d1:0e:d0:7e:1e:ab:2f:22:ea:5f:ed:
1c:47:72:3a:b1:ca:51:28:55:1f:2e:81:ae:f3:cb:08:db:d4:
7f:26:f5:bd:ea:14:46:ed:d3:f7:ec:52:16:1c:de:9b:80:19:
92:68:f5:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:15:13 2025 by rpki-client