Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e37392e302f32342d3234203d3e20313336373837.roa
File: 38322e3134392e37392e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: wDj2iXKdVj+uvtYPu/mMZHk4L+6OVXVpm9PPMusvmSU=
Subject key identifier: 12:59:82:74:DB:24:D3:46:76:60:DE:F1:98:03:9F:C8:92:E1:6A:A9
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 558996E23CE894A09D9F2260572A57B907F8B61C
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e37392e302f32342d3234203d3e20313336373837.roa
Signing time: Tue 31 Dec 2024 19:44:43 +0000
ROA not before: Tue 31 Dec 2024 19:39:43 +0000
ROA not after: Tue 30 Dec 2025 19:44:43 +0000
asID: 136787
IP address blocks: 82.149.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:89:96:e2:3c:e8:94:a0:9d:9f:22:60:57:2a:57:b9:07:f8:b6:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Dec 31 19:39:43 2024 GMT
Not After : Dec 30 19:44:43 2025 GMT
Subject: CN=12598274DB24D3467660DEF198039FC892E16AA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ae:dc:bc:bf:5f:60:e5:a0:14:23:0f:5b:6c:
bf:2a:96:11:a6:3c:6b:49:42:a8:21:19:4d:a7:43:
6c:89:8a:b1:9d:59:b3:0f:e3:08:fc:2a:ee:81:7e:
ce:a9:f1:99:82:b8:e7:82:07:8f:74:71:14:11:d3:
52:f1:5d:c2:7c:d4:28:10:62:44:56:b1:72:78:dd:
82:6d:3e:4d:6a:69:23:3c:23:c0:91:c2:3d:0f:6b:
78:32:0a:bb:93:16:2f:d6:c9:e9:16:9f:6f:b5:6f:
dc:de:97:b8:b5:78:5f:28:a6:9e:91:69:40:5d:c3:
84:9a:f4:cb:42:15:4f:f4:1e:dc:40:5e:8a:7a:1f:
e0:60:a9:32:26:90:5d:3b:e5:9b:57:66:18:21:e7:
0c:75:a4:9d:09:0d:a3:8e:d2:c7:45:97:86:a1:94:
86:c2:83:bf:cd:4a:b1:fa:8a:6f:42:cd:fc:a1:23:
0f:f5:79:6f:98:24:2c:92:dc:e1:c5:4d:df:ab:5e:
c9:df:f5:00:eb:f5:a7:0d:51:3e:0c:80:93:ee:78:
63:60:46:99:be:00:2e:6f:30:88:9d:cd:85:fa:7d:
8f:f4:c0:f8:f6:97:2b:dd:80:c6:f3:cd:69:83:37:
cb:e8:65:0b:48:97:99:d3:3a:bb:d5:34:76:a6:59:
f6:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:59:82:74:DB:24:D3:46:76:60:DE:F1:98:03:9F:C8:92:E1:6A:A9
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e37392e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.149.79.0/24
Signature Algorithm: sha256WithRSAEncryption
43:1a:5c:76:1b:7b:9e:88:1d:86:78:b5:10:14:47:03:0c:91:
99:c6:d0:d3:13:ba:4e:ef:c9:e4:4b:f9:26:21:d2:a3:e5:d7:
11:20:b8:cf:83:4d:62:ad:6e:d2:5d:6a:48:c9:11:f3:18:77:
34:89:d2:75:6c:6b:b6:bd:70:f7:4f:af:06:40:1e:e3:86:36:
ae:46:b1:77:38:82:55:1c:66:2d:ea:d3:93:7b:50:8d:71:51:
74:4e:5d:ad:ef:fc:1a:9c:42:15:79:84:6a:af:18:26:78:d4:
9c:4a:2c:20:03:ef:58:bd:b9:b8:c6:a1:cd:dc:25:2e:e6:0b:
7a:e2:22:6d:cf:59:27:e5:51:a5:67:29:68:88:15:82:42:a7:
ae:63:b9:70:fa:9f:c9:8d:8e:83:7c:09:50:fd:d1:37:e3:e1:
29:bf:53:d9:7f:e6:39:bc:1c:60:1b:e3:e8:b1:2b:57:f7:46:
d7:c1:a0:3c:1d:56:6b:76:1b:8f:dc:de:5b:4e:82:65:69:83:
24:c4:db:f4:59:d3:36:01:4f:04:72:7a:ef:1b:ac:b8:d8:20:
ca:66:09:78:82:48:43:8b:fb:2a:ea:4b:62:3c:83:2f:0b:e3:
4d:db:a3:7f:e9:41:03:42:87:b8:a5:0c:42:34:53:d3:1b:8f:
71:ca:f1:a1
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUVYmW4jzolKCdnyJgVypXuQf4thwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNDEyMzExOTM5NDNaFw0yNTEyMzAxOTQ0NDNaMDMxMTAvBgNV
BAMTKDEyNTk4Mjc0REIyNEQzNDY3NjYwREVGMTk4MDM5RkM4OTJFMTZBQTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3rty8v19g5aAUIw9bbL8qlhGm
PGtJQqghGU2nQ2yJirGdWbMP4wj8Ku6Bfs6p8ZmCuOeCB490cRQR01LxXcJ81CgQ
YkRWsXJ43YJtPk1qaSM8I8CRwj0Pa3gyCruTFi/WyekWn2+1b9zel7i1eF8opp6R
aUBdw4Sa9MtCFU/0HtxAXop6H+BgqTImkF075ZtXZhgh5wx1pJ0JDaOO0sdFl4ah
lIbCg7/NSrH6im9CzfyhIw/1eW+YJCyS3OHFTd+rXsnf9QDr9acNUT4MgJPueGNg
Rpm+AC5vMIidzYX6fY/0wPj2lyvdgMbzzWmDN8voZQtIl5nTOrvVNHamWfZ7AgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUElmCdNsk00Z2YN7xmAOfyJLhaqkwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzMjJlMzEzNDM5MmUzNzM5
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
UpVPMA0GCSqGSIb3DQEBCwUAA4IBAQBDGlx2G3ueiB2GeLUQFEcDDJGZxtDTE7pO
78nkS/kmIdKj5dcRILjPg01irW7SXWpIyRHzGHc0idJ1bGu2vXD3T68GQB7jhjau
RrF3OIJVHGYt6tOTe1CNcVF0Tl2t7/wanEIVeYRqrxgmeNScSiwgA+9Yvbm4xqHN
3CUu5gt64iJtz1kn5VGlZyloiBWCQqeuY7lw+p/JjY6DfAlQ/dE34+Epv1PZf+Y5
vBxgG+PosStX90bXwaA8HVZrdhuP3N5bToJlaYMkxNv0WdM2AU8EcnrvG6y42CDK
Zgl4gkhDi/sq6ktiPIMvC+NN26N/6UEDQoe4pQxCNFPTG49xyvGh
-----END CERTIFICATE-----
Generated at Fri Apr 4 16:15:35 2025 by rpki-client