Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38302e37352e32302e302f32342d3234203d3e20323036323833.roa
File: 38302e37352e32302e302f32342d3234203d3e20323036323833.roa (raw, json)
Hash identifier: uStNHtkT5L6iX/JAvHxlow9REmknEBsgRyh8wfKJPpQ=
Subject key identifier: AE:33:FD:DE:6A:8F:DA:4B:E9:D3:A5:40:B8:DE:4E:D4:3F:FE:78:1B
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 06616BB7058BFD7324B1BCDC89C6BF94D019BB9B
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38302e37352e32302e302f32342d3234203d3e20323036323833.roa
Signing time: Tue 04 Mar 2025 09:45:48 +0000
ROA not before: Tue 04 Mar 2025 09:40:48 +0000
ROA not after: Tue 03 Mar 2026 09:45:48 +0000
asID: 206283
IP address blocks: 80.75.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:61:6b:b7:05:8b:fd:73:24:b1:bc:dc:89:c6:bf:94:d0:19:bb:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Mar 4 09:40:48 2025 GMT
Not After : Mar 3 09:45:48 2026 GMT
Subject: CN=AE33FDDE6A8FDA4BE9D3A540B8DE4ED43FFE781B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6e:6d:47:4a:76:b9:0e:ad:75:66:6c:0a:5b:
ff:c0:02:6a:9c:0b:61:f0:f1:33:6c:69:67:79:97:
aa:b0:4f:68:c3:6d:0f:f1:9c:b4:42:5b:da:86:59:
ee:0e:21:a3:12:10:9f:83:73:3a:94:8e:73:13:f7:
b6:55:97:7f:d0:f8:a1:d5:c8:b0:58:f7:e8:4c:08:
7c:a0:e6:c1:45:9d:c9:75:fc:b1:bd:4a:b9:35:99:
9f:80:78:6d:a4:05:07:ad:b3:c2:79:7a:07:cf:6e:
d6:d8:d3:d7:17:77:21:d2:64:6f:50:15:04:dc:6d:
b1:96:43:f4:b1:44:fa:12:80:2a:c6:f5:9b:72:a2:
cc:22:c0:0a:67:00:41:9a:26:24:af:25:58:05:f3:
b0:93:0a:0c:5f:42:de:c0:1f:e3:34:5c:71:28:ea:
c7:00:d0:bf:6d:56:86:f1:1c:af:45:80:d4:a7:58:
91:32:16:9e:8b:fd:e1:28:3d:e8:37:e6:9c:fa:1c:
9b:bc:2e:24:01:0b:6c:96:b6:2e:a2:2e:ee:33:c6:
76:c6:38:65:5f:ba:86:cb:50:fe:d6:83:43:a6:3a:
c2:20:16:ff:7e:e4:a2:79:77:dc:0d:a0:2e:d2:5f:
7a:59:85:74:d2:0c:ef:e3:f8:77:f5:7a:52:1f:fa:
68:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:33:FD:DE:6A:8F:DA:4B:E9:D3:A5:40:B8:DE:4E:D4:3F:FE:78:1B
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38302e37352e32302e302f32342d3234203d3e20323036323833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.75.20.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:15:6f:97:61:d4:e2:fa:bb:8d:13:19:29:f4:d2:6f:6f:da:
35:f7:69:b4:3e:62:c2:e7:62:fa:bb:44:0d:c2:85:aa:0f:30:
5a:e2:cd:ec:36:22:ea:33:1c:c2:80:6a:bd:cc:ff:77:02:64:
28:ef:6a:64:94:d2:38:81:45:07:95:55:33:bc:f7:f7:43:d4:
aa:68:c4:ca:35:06:80:89:1f:d5:ca:94:4c:e0:95:36:f0:12:
d8:56:33:eb:97:ff:f4:f4:48:d1:01:09:ef:76:9b:71:3b:52:
d1:48:60:90:f4:2e:d7:76:02:7f:a3:11:72:02:46:1b:c5:7e:
e2:be:39:44:9e:01:05:bb:d5:7c:e9:59:1c:97:fa:16:12:0b:
fc:b0:34:f1:1d:39:28:f8:7f:02:6c:c8:da:ae:72:1c:73:96:
c5:23:b7:fb:6c:8f:4b:2f:4a:1a:df:01:ca:35:33:a4:e0:5f:
66:7e:f5:55:0f:c9:1d:a9:f9:a4:d2:e5:d4:1e:29:ec:a0:6e:
29:ee:a5:aa:a5:9c:84:17:f2:b6:a5:4b:64:53:5f:0a:e5:5d:
77:cb:c2:f9:84:d2:19:b3:2d:65:13:af:71:2d:c4:cb:be:cf:
f8:98:61:fc:bf:72:4e:f9:d2:56:35:13:0d:4e:79:7f:5f:4f:
12:27:91:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:04:39 2025 by rpki-client