Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e38302e302f32342d3234203d3e20313336373837.roa
File: 38322e3134392e38302e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: j+AiF6EDcqLsZf+ZfIgHNhGwZL+oUcuo06urTkeVop0=
Subject key identifier: 35:67:85:59:66:F7:91:C3:E1:7F:33:11:CA:FC:19:21:18:62:9F:4B
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 76D25361E83875DAEA98EAB446509E6A8A2606E0
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e38302e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 19:44:39 +0000
ROA not before: Fri 27 Dec 2024 19:39:39 +0000
ROA not after: Fri 26 Dec 2025 19:44:39 +0000
asID: 136787
IP address blocks: 82.149.80.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:d2:53:61:e8:38:75:da:ea:98:ea:b4:46:50:9e:6a:8a:26:06:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Dec 27 19:39:39 2024 GMT
Not After : Dec 26 19:44:39 2025 GMT
Subject: CN=3567855966F791C3E17F3311CAFC192118629F4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d0:80:cc:e0:ac:90:45:42:ff:40:71:58:06:
58:f9:47:6e:09:b3:90:e4:90:a4:e9:a8:92:d4:48:
95:49:1d:f3:94:8d:e0:0c:97:d4:00:93:04:25:bb:
9b:b2:9e:d2:1f:ac:3a:94:32:91:cc:17:3d:42:5b:
89:3b:94:cd:64:1a:f6:36:d3:a5:5e:32:96:96:8b:
4d:13:3d:29:c1:da:50:8e:f9:7c:1f:07:d3:1f:a5:
aa:7d:d8:e3:84:78:f5:6e:ec:1c:3d:34:7e:9e:41:
a0:d3:f8:89:ca:2f:b6:67:dc:c8:b5:e3:73:13:ab:
22:ed:21:b9:d6:ff:3f:c9:80:e9:72:c3:56:38:e5:
12:87:cd:ba:bd:a6:51:9b:e2:fe:51:01:e0:6c:32:
99:c6:ac:09:5b:48:2d:62:30:d0:b5:a8:f2:53:a8:
83:1a:7b:58:df:4f:6e:e7:80:8d:2e:69:b4:12:11:
d0:fd:59:45:4a:15:d7:03:85:8b:59:f8:b5:d5:6d:
e9:01:44:98:9b:b3:08:29:d7:36:5f:c3:dd:49:da:
6b:96:08:6d:e4:1f:14:7a:54:d8:9c:5b:7f:83:22:
ff:ba:60:83:12:90:f9:bd:91:e1:8b:ab:9e:72:85:
9a:e9:6c:9f:8f:82:9f:e5:c7:74:ea:af:03:56:df:
a9:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:67:85:59:66:F7:91:C3:E1:7F:33:11:CA:FC:19:21:18:62:9F:4B
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e38302e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.149.80.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:48:cb:08:3a:05:e6:51:37:14:15:cb:4f:bb:7c:84:ed:b9:
f1:af:e1:a1:25:f1:5f:16:a3:b0:07:4b:04:31:2f:b1:8f:94:
8a:9e:0e:23:a9:0e:f1:4e:e4:0f:e5:8c:31:4c:9c:e2:0b:f2:
92:48:39:0b:c2:82:42:f1:82:2d:6c:53:d1:3b:10:7b:af:23:
b0:70:f6:cb:7c:b0:f2:1a:92:a7:05:35:7f:70:18:a7:7a:74:
7e:c9:dd:91:24:74:06:1f:8e:96:c8:7b:41:bf:a5:91:63:4e:
30:fc:90:c3:59:ae:18:a4:86:c8:4c:5e:a9:55:69:4e:4a:80:
1c:2a:b2:07:ab:2e:ac:c8:64:e4:98:56:98:a1:15:ec:23:a5:
8c:d0:d8:4c:01:81:0a:8e:6f:88:db:17:64:10:1f:b5:6a:f5:
d1:69:a6:89:a6:c0:81:6c:9b:eb:c0:6b:9b:e4:7f:4f:1d:77:
73:14:47:6e:6b:8b:b5:99:dd:33:a6:66:e9:b9:6c:c9:68:13:
8f:a3:1e:b9:7a:9c:29:c7:c8:19:36:48:bc:9e:47:f1:7e:63:
04:05:81:5a:25:9f:64:66:5c:59:ba:51:7a:92:d6:cd:c7:91:
79:4f:82:93:39:d0:e0:4d:3a:b1:13:9b:ce:c0:3b:d1:f1:a4:
04:76:a4:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:15:22 2025 by rpki-client