Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38302e37352e31372e302f32342d3234203d3e20323036323833.roa
File: 38302e37352e31372e302f32342d3234203d3e20323036323833.roa (raw, json)
Hash identifier: P4s8qqPfgxGXnY3DuRTP8M5y2P6OnJ8jUZJczajqQEI=
Subject key identifier: D9:BF:14:59:50:04:3D:C6:81:D6:7D:78:07:8B:D9:FA:34:9A:C7:C6
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 14A76D92F8568A02986E092C866CBA1B7E0543
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38302e37352e31372e302f32342d3234203d3e20323036323833.roa
Signing time: Tue 04 Mar 2025 09:45:47 +0000
ROA not before: Tue 04 Mar 2025 09:40:47 +0000
ROA not after: Tue 03 Mar 2026 09:45:47 +0000
asID: 206283
IP address blocks: 80.75.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:a7:6d:92:f8:56:8a:02:98:6e:09:2c:86:6c:ba:1b:7e:05:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Mar 4 09:40:47 2025 GMT
Not After : Mar 3 09:45:47 2026 GMT
Subject: CN=D9BF145950043DC681D67D78078BD9FA349AC7C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ef:26:c8:f8:ef:8a:46:04:af:90:aa:0b:b6:
ee:39:4b:23:5c:7a:40:b5:a9:57:16:f2:35:67:c6:
a1:a1:ee:5d:41:9b:c6:2b:31:3b:b6:bc:de:dc:26:
4f:e1:fd:91:dd:3d:da:dd:ab:fa:8a:9d:1a:ff:a2:
24:c8:11:81:d7:26:ff:fa:a4:83:60:c6:45:23:cf:
61:cc:c5:bf:57:56:fc:d9:e7:ba:e3:b4:d2:ca:4a:
56:ee:0a:e1:e1:93:f3:e2:e8:ef:35:6d:2c:7d:b8:
5e:0e:c7:97:da:49:de:a6:32:e0:e9:52:c3:fd:bf:
27:4c:e9:18:b9:94:1c:9c:63:8e:c4:3f:55:a4:b1:
86:ac:1e:ff:5c:2e:6e:2f:a7:5b:ec:ee:ef:ec:66:
69:c5:1b:62:cc:55:f2:0c:25:e7:69:eb:88:65:87:
20:9d:8a:63:a4:70:7e:0e:0a:41:30:84:ca:fc:99:
d7:88:81:5a:7c:2d:64:c0:79:41:0c:6f:42:c3:a7:
73:9f:98:69:ac:40:06:4c:fe:60:28:21:05:b4:e9:
47:ed:59:22:41:0a:23:8d:79:57:32:1d:53:7d:06:
c8:7f:de:b6:d5:38:4c:69:78:f3:26:fa:fb:d3:cc:
54:15:40:d6:42:64:3d:ce:15:88:e3:9d:82:40:aa:
ed:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:BF:14:59:50:04:3D:C6:81:D6:7D:78:07:8B:D9:FA:34:9A:C7:C6
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38302e37352e31372e302f32342d3234203d3e20323036323833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.75.17.0/24
Signature Algorithm: sha256WithRSAEncryption
06:b0:11:6b:f8:2f:d3:23:96:ee:ee:a3:79:67:5c:ce:71:c6:
59:19:63:1d:af:84:8c:6f:39:b2:48:f9:00:b1:d2:be:3e:6f:
6c:bd:db:3c:9f:b7:f2:3b:49:03:81:9b:d0:de:7c:e0:80:b6:
d0:e1:33:4b:d4:20:85:6b:ae:4e:2a:12:36:35:d8:75:ae:ee:
00:ff:ba:b2:4a:a2:83:94:58:8a:7d:3b:0d:ec:28:f1:96:97:
37:26:4d:6f:28:47:48:95:b6:21:47:59:39:81:34:4c:96:bf:
f2:07:a8:ba:de:65:75:28:7b:2e:88:9a:4a:78:e0:49:19:db:
d3:8f:2f:1b:6d:38:26:fb:ae:67:26:ce:38:94:68:64:03:cf:
b3:ea:4e:3b:82:3a:26:b2:51:ed:1d:3b:b6:6f:96:a6:f8:8c:
08:b5:ec:cb:fe:d5:db:6f:25:5a:3a:42:be:89:f0:9d:d7:13:
1c:38:82:53:be:20:77:25:bf:00:e0:95:53:f9:05:c4:11:16:
26:2b:3d:55:b7:f3:10:8e:12:c6:c2:d2:df:10:d5:0e:fd:20:
7f:cb:b4:2c:dc:ae:48:e0:46:6a:6a:d4:c4:e0:bc:78:23:c9:
f4:cf:05:e0:6d:1f:a8:71:f1:70:23:b9:c6:36:6d:54:dd:76:
2a:09:c3:84
-----BEGIN CERTIFICATE-----
MIIFMDCCBBigAwIBAgITFKdtkvhWigKYbgkshmy6G34FQzANBgkqhkiG9w0BAQsF
ADAzMTEwLwYDVQQDEyhhYjJkY2MxNjljOTVmMmIxNGRmMzFkZDI0YTFmNjcwMzRl
YTc3NzljMB4XDTI1MDMwNDA5NDA0N1oXDTI2MDMwMzA5NDU0N1owMzExMC8GA1UE
AxMoRDlCRjE0NTk1MDA0M0RDNjgxRDY3RDc4MDc4QkQ5RkEzNDlBQzdDNjCCASIw
DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMTvJsj474pGBK+Qqgu27jlLI1x6
QLWpVxbyNWfGoaHuXUGbxisxO7a83twmT+H9kd092t2r+oqdGv+iJMgRgdcm//qk
g2DGRSPPYczFv1dW/NnnuuO00spKVu4K4eGT8+Lo7zVtLH24Xg7Hl9pJ3qYy4OlS
w/2/J0zpGLmUHJxjjsQ/VaSxhqwe/1wubi+nW+zu7+xmacUbYsxV8gwl52nriGWH
IJ2KY6Rwfg4KQTCEyvyZ14iBWnwtZMB5QQxvQsOnc5+YaaxABkz+YCghBbTpR+1Z
IkEKI415VzIdU30GyH/ettU4TGl48yb6+9PMVBVA1kJkPc4ViOOdgkCq7fMCAwEA
AaOCAjswggI3MB0GA1UdDgQWBBTZvxRZUAQ9xoHWfXgHi9n6NJrHxjAfBgNVHSME
GDAWgBSrLcwWnJXysU3zHdJKH2cDTqd3nDAOBgNVHQ8BAf8EBAMCB4AwgZUGA1Ud
HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5u
ZXQvcmVwb3NpdG9yeS9mZTM3MDhhMC02N2Q1LTRhYzItYWJjNC1hMzMyNTkwYjk5
YWYvNC9BQjJEQ0MxNjlDOTVGMkIxNERGMzFERDI0QTFGNjcwMzRFQTc3NzlDLmNy
bDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvcXkzTUZweVY4ckZOOHgzU1NoOW5BMDZu
ZDV3LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6
Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9mZTM3MDhhMC02
N2Q1LTRhYzItYWJjNC1hMzMyNTkwYjk5YWYvNC8zODMwMmUzNzM1MmUzMTM3MmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMDM2MzIzODMzLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUEsR
MA0GCSqGSIb3DQEBCwUAA4IBAQAGsBFr+C/TI5bu7qN5Z1zOccZZGWMdr4SMbzmy
SPkAsdK+Pm9svds8n7fyO0kDgZvQ3nzggLbQ4TNL1CCFa65OKhI2Ndh1ru4A/7qy
SqKDlFiKfTsN7Cjxlpc3Jk1vKEdIlbYhR1k5gTRMlr/yB6i63mV1KHsuiJpKeOBJ
GdvTjy8bbTgm+65nJs44lGhkA8+z6k47gjomslHtHTu2b5am+IwItezL/tXbbyVa
OkK+ifCd1xMcOIJTviB3Jb8A4JVT+QXEERYmKz1Vt/MQjhLGwtLfENUO/SB/y7Qs
3K5I4EZqatTE4Lx4I8n0zwXgbR+ocfFwI7nGNm1U3XYqCcOE
-----END CERTIFICATE-----
Generated at Fri Apr 4 16:02:40 2025 by rpki-client