Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/37372e3233372e3234302e302f32312d3332203d3e203531313637.roa
File: 37372e3233372e3234302e302f32312d3332203d3e203531313637.roa (raw, json)
Hash identifier: fUWbceTOUe/qra2/VYo0qioj+wXA81j6H+4401fMm/I=
Subject key identifier: CB:C8:B2:26:0B:9E:F3:B8:16:E4:AC:66:4A:EB:F8:83:AF:28:38:83
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 716499800524D4E05990D2677C028E621844893A
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/37372e3233372e3234302e302f32312d3332203d3e203531313637.roa
Signing time: Tue 11 Mar 2025 07:45:52 +0000
ROA not before: Tue 11 Mar 2025 07:40:52 +0000
ROA not after: Tue 10 Mar 2026 07:45:52 +0000
asID: 51167
IP address blocks: 77.237.240.0/21 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:64:99:80:05:24:d4:e0:59:90:d2:67:7c:02:8e:62:18:44:89:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Mar 11 07:40:52 2025 GMT
Not After : Mar 10 07:45:52 2026 GMT
Subject: CN=CBC8B2260B9EF3B816E4AC664AEBF883AF283883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e3:bf:db:8e:bd:29:99:a6:4e:7f:43:14:45:
b9:83:14:f7:dc:db:d7:3f:eb:1c:27:b6:34:18:2f:
3d:8b:b7:c4:f4:c5:e4:01:22:6b:37:31:04:ca:9a:
7b:d8:e4:e7:8c:b9:00:ad:95:4b:b6:98:2d:c6:74:
d1:65:d0:08:73:86:6c:7c:86:05:90:6d:7c:5e:33:
33:95:ea:9a:a4:55:e6:94:5a:fb:0c:ef:aa:fe:dc:
e0:6d:92:51:2c:a0:9b:f6:e3:20:b6:2f:c3:f0:d1:
41:7c:53:f7:32:b1:63:d9:e1:e5:bc:ac:3b:17:58:
c2:30:ad:33:75:c3:c2:71:d1:15:04:0b:d3:84:d2:
3a:62:0d:c1:be:34:4a:d0:2f:94:8d:9d:94:5b:ad:
98:44:ca:0d:4e:dc:8f:fb:ca:bf:4d:8f:d4:7a:7b:
d3:93:c0:c3:6b:b6:17:ff:e0:72:34:76:9c:e2:35:
d6:12:2d:3d:5d:be:4d:6c:2e:bd:c3:8f:56:ae:46:
56:c9:c7:f5:df:8e:75:d2:09:50:4d:89:32:a6:e6:
18:49:9c:b0:7c:ab:65:9c:11:c6:cb:29:da:3c:b8:
fb:ce:5f:98:61:a2:4b:be:d2:01:54:96:aa:14:32:
02:9f:4a:fb:f4:85:83:f4:b4:15:d6:a1:92:c6:8d:
26:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:C8:B2:26:0B:9E:F3:B8:16:E4:AC:66:4A:EB:F8:83:AF:28:38:83
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/37372e3233372e3234302e302f32312d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.237.240.0/21
Signature Algorithm: sha256WithRSAEncryption
94:05:96:54:15:c9:69:6d:6b:e8:fd:ab:f0:f6:ca:5f:4d:57:
55:0b:b0:5b:9d:5f:d5:52:9b:d4:87:4e:ad:e7:30:b9:17:74:
94:58:54:3c:c9:ec:7b:65:ac:98:39:e8:ab:5c:b4:89:0f:f5:
6a:31:1e:57:85:c2:ab:5b:05:f0:7b:58:ff:86:9f:11:bc:56:
5c:9b:e7:b5:9b:cf:41:bf:b4:c4:9d:5a:23:c6:f4:35:de:a9:
86:d1:be:3d:7a:59:e2:91:a1:f6:0e:8d:a3:02:ff:15:68:6f:
b7:73:a2:d1:33:1e:d8:5d:28:57:7e:f2:44:d5:7a:b0:04:9e:
7d:7c:c3:a0:0f:07:39:0c:b2:ba:42:32:df:0d:24:58:9b:0f:
97:f2:5b:d6:41:3a:18:ff:bf:b6:b3:36:19:19:86:0a:3d:4b:
1e:25:95:50:bf:9a:04:ad:29:6a:83:13:30:2e:5e:7c:4d:69:
97:50:db:b2:2f:72:81:77:c6:39:88:7c:6a:a5:75:52:70:f8:
ed:be:bf:68:28:43:26:38:69:b4:cb:85:f4:46:49:10:08:0f:
e2:ea:70:fd:73:86:e8:76:bb:06:84:ec:56:83:0b:9c:02:ea:
59:e7:50:a1:7a:fa:e6:40:7c:3f:26:be:67:34:92:e0:7c:1d:
52:95:08:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 05:12:20 2025 by rpki-client