Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/37372e37382e37312e302f32342d3234203d3e20323039383534.roa
File: 37372e37382e37312e302f32342d3234203d3e20323039383534.roa (raw, json)
Hash identifier: DjsiHaHFkAnPMr81BvNBjZsAJzrtsNLbW68fwjNs174=
Subject key identifier: 80:B6:31:65:D0:7A:3F:FE:FF:FC:6D:FB:A7:66:7B:09:82:BB:D3:03
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 65B8C9FCAFD890DF18FB55FCD692B4A59656EB82
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/37372e37382e37312e302f32342d3234203d3e20323039383534.roa
Signing time: Wed 19 Feb 2025 08:45:45 +0000
ROA not before: Wed 19 Feb 2025 08:40:45 +0000
ROA not after: Wed 18 Feb 2026 08:45:45 +0000
asID: 209854
IP address blocks: 77.78.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:b8:c9:fc:af:d8:90:df:18:fb:55:fc:d6:92:b4:a5:96:56:eb:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Feb 19 08:40:45 2025 GMT
Not After : Feb 18 08:45:45 2026 GMT
Subject: CN=80B63165D07A3FFEFFFC6DFBA7667B0982BBD303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:72:97:e4:a6:87:17:19:b1:a3:fc:d9:dc:92:
28:00:52:db:8f:84:57:db:68:85:17:0f:0e:96:a1:
89:c2:ee:fc:2b:20:49:e6:da:d8:78:aa:7c:0a:60:
77:e1:65:43:0b:45:1e:44:c1:fa:52:16:53:16:42:
ca:e1:1e:24:e6:b6:c1:e3:43:34:51:3c:31:24:60:
5d:9d:90:ec:9c:d0:c0:d0:7a:5a:ec:d0:91:39:6c:
04:ac:c6:40:e4:a8:1a:8f:50:93:b3:bf:8e:bc:13:
35:f9:1c:68:00:29:8a:76:b5:0d:1e:07:1a:07:14:
21:30:52:b2:f4:65:69:4e:cd:36:4b:c7:66:12:8b:
11:73:60:7d:73:f0:af:5a:57:dc:58:95:e6:92:d5:
78:46:c0:ff:5e:5c:9d:4f:83:fb:a6:96:62:2c:d7:
a0:72:da:2c:b7:99:fd:16:ae:cc:4b:26:2d:ff:e3:
89:2f:84:e5:f6:20:78:75:29:ca:d4:a4:fe:cb:18:
84:00:f1:95:da:89:0d:70:11:14:30:9d:e9:b2:cb:
8c:3e:0d:9a:dd:a9:87:83:a2:ab:62:57:26:be:23:
90:b4:d2:d4:3c:cd:5e:f3:da:29:d3:7f:73:af:a1:
be:15:73:25:62:13:d4:1b:cc:71:c3:fc:ab:8c:ba:
da:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:B6:31:65:D0:7A:3F:FE:FF:FC:6D:FB:A7:66:7B:09:82:BB:D3:03
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/37372e37382e37312e302f32342d3234203d3e20323039383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.78.71.0/24
Signature Algorithm: sha256WithRSAEncryption
34:f4:38:1d:4a:0b:67:e9:4d:a2:5b:69:41:c7:c3:0a:db:20:
5c:2c:68:84:cb:f1:8c:86:af:31:0d:dd:1d:d3:69:f3:ab:b7:
7d:e2:d1:f5:87:ca:ca:1d:4a:05:50:81:b9:11:ec:7b:7b:a0:
91:cc:21:e2:b2:02:50:e7:db:9f:a5:ef:36:8d:cf:3d:cd:05:
d4:71:c5:cd:07:a6:d0:c8:c4:87:6d:98:f6:e0:f6:ef:5a:32:
bf:8f:7c:37:b8:09:d0:3a:4d:87:8d:da:ac:8d:da:be:d4:1f:
03:1e:90:88:85:c3:63:14:ed:ed:21:e3:01:92:e2:39:61:7b:
c6:96:61:ed:cd:5b:6d:bc:74:16:03:3d:ed:3c:72:60:40:49:
70:55:29:93:b2:de:54:16:9c:d9:80:34:ac:52:1e:7f:d0:ec:
48:57:eb:b6:f9:09:b3:c7:83:41:d7:93:92:42:c6:a7:1d:d8:
1a:03:ba:4b:db:1c:6c:c3:25:65:59:ed:56:85:8b:90:a6:08:
1b:45:59:72:74:28:a7:6e:c0:29:95:e6:86:eb:32:5e:30:a8:
cd:4f:88:e3:bf:d8:d9:fc:fc:54:03:e6:31:cf:bb:01:97:a3:
3e:b3:96:70:5f:55:f9:82:36:2b:b3:8d:a6:77:f9:c4:fe:f6:
81:fd:fe:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:02:53 2025 by rpki-client