Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e38332e302f32342d3234203d3e20313336373837.roa
File: 38322e3134392e38332e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: E4cv0mN4fw1V4c3MumP2JHaIeMnu1r6SMxmbNZ8SxNc=
Subject key identifier: EF:DD:46:55:15:E8:3F:B8:6A:33:62:FB:3A:C7:F3:44:07:F5:C8:CF
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 7A9C49E7DD83A838924C71A7D68428B9A35032B8
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e38332e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 19:44:39 +0000
ROA not before: Fri 27 Dec 2024 19:39:39 +0000
ROA not after: Fri 26 Dec 2025 19:44:39 +0000
asID: 136787
IP address blocks: 82.149.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:9c:49:e7:dd:83:a8:38:92:4c:71:a7:d6:84:28:b9:a3:50:32:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Dec 27 19:39:39 2024 GMT
Not After : Dec 26 19:44:39 2025 GMT
Subject: CN=EFDD465515E83FB86A3362FB3AC7F34407F5C8CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:5f:32:fb:63:b7:68:20:a6:3a:8d:16:77:91:
d4:94:75:f5:23:83:cf:e1:9b:4f:45:a9:75:48:75:
45:b4:9b:d6:7b:f0:ae:0d:7f:7f:d2:e2:1f:19:9c:
f9:86:90:36:d5:10:22:79:5e:29:e3:19:12:13:81:
ea:d3:02:64:35:73:db:a6:bf:bb:2c:6d:a0:8e:0c:
69:b0:9b:17:db:67:2e:bb:68:97:1d:3b:f8:d4:bf:
f0:ad:af:09:64:1e:97:8c:0b:eb:64:fc:85:6f:71:
c7:b5:a4:36:e9:9e:e7:c2:82:37:a6:18:3b:09:13:
63:c2:13:b6:b2:17:b3:33:f7:61:c9:68:16:16:d3:
a7:aa:a0:f3:5c:46:f5:7b:0c:cb:f2:05:82:7a:c9:
c7:58:3e:1b:8b:c0:5b:94:8e:0b:23:ca:c9:54:82:
ae:0c:27:99:06:97:42:2c:70:07:3b:5b:9e:67:2f:
f1:5c:56:e0:3e:10:07:d0:f3:02:d7:7a:b0:91:99:
5b:5d:df:02:05:13:f1:35:7d:7c:b2:4e:fe:8c:89:
5d:40:69:fd:59:80:d8:d5:53:88:f4:28:c7:2d:8e:
b9:99:54:2c:27:fc:f8:ac:7e:0a:c7:0f:fa:fe:1c:
f0:e4:d1:ea:c4:87:1c:17:7d:9c:2b:61:08:14:a5:
bc:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:DD:46:55:15:E8:3F:B8:6A:33:62:FB:3A:C7:F3:44:07:F5:C8:CF
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e38332e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.149.83.0/24
Signature Algorithm: sha256WithRSAEncryption
01:86:70:7a:8b:9b:a0:3a:2f:6e:30:08:1a:7c:19:a8:15:6c:
cd:17:5c:b3:06:1d:04:25:bf:2c:6f:3c:37:4c:40:99:cc:07:
fa:46:44:70:bf:54:c9:71:9f:1d:5a:57:e4:2e:8f:28:04:c6:
b3:a9:60:0a:cf:77:f1:4d:da:20:24:c1:24:be:8b:16:d9:c4:
e9:ef:2a:fd:05:a2:36:ad:0b:43:61:73:a1:cf:d7:84:66:44:
bd:c9:49:3b:9a:63:c2:be:e2:22:a2:8f:e6:b1:3b:db:ab:1f:
3b:d7:fc:06:86:0d:e6:e4:3f:88:32:ce:6d:4c:07:7b:0d:f1:
0d:8e:93:b2:ca:16:6a:c2:ae:6a:f7:24:8f:f1:fd:6b:b1:c6:
fb:e8:20:f8:52:a1:1f:79:e4:17:08:3a:ef:dd:c3:b4:ab:88:
34:97:43:11:74:3c:6e:f9:74:55:eb:07:31:6a:3b:82:0e:6d:
d9:05:3d:9d:0a:a2:59:9d:fe:57:66:73:b8:d5:f6:0b:2e:55:
16:fd:fe:c8:9d:31:11:04:bd:fc:12:f3:97:a3:d1:4a:2e:60:
5d:03:38:b8:5b:82:90:3b:47:72:dc:aa:1b:72:6b:39:db:c7:
a0:dc:8e:8a:fe:5c:d9:0b:f6:61:88:a0:fb:c5:f1:72:de:3f:
6f:df:dc:29
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUepxJ592DqDiSTHGn1oQouaNQMrgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNDEyMjcxOTM5MzlaFw0yNTEyMjYxOTQ0MzlaMDMxMTAvBgNV
BAMTKEVGREQ0NjU1MTVFODNGQjg2QTMzNjJGQjNBQzdGMzQ0MDdGNUM4Q0YwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEXzL7Y7doIKY6jRZ3kdSUdfUj
g8/hm09FqXVIdUW0m9Z78K4Nf3/S4h8ZnPmGkDbVECJ5XinjGRITgerTAmQ1c9um
v7ssbaCODGmwmxfbZy67aJcdO/jUv/CtrwlkHpeMC+tk/IVvcce1pDbpnufCgjem
GDsJE2PCE7ayF7Mz92HJaBYW06eqoPNcRvV7DMvyBYJ6ycdYPhuLwFuUjgsjyslU
gq4MJ5kGl0IscAc7W55nL/FcVuA+EAfQ8wLXerCRmVtd3wIFE/E1fXyyTv6MiV1A
af1ZgNjVU4j0KMctjrmZVCwn/PisfgrHD/r+HPDk0erEhxwXfZwrYQgUpbz9AgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQU791GVRXoP7hqM2L7OsfzRAf1yM8wHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzMjJlMzEzNDM5MmUzODMz
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
UpVTMA0GCSqGSIb3DQEBCwUAA4IBAQABhnB6i5ugOi9uMAgafBmoFWzNF1yzBh0E
Jb8sbzw3TECZzAf6RkRwv1TJcZ8dWlfkLo8oBMazqWAKz3fxTdogJMEkvosW2cTp
7yr9BaI2rQtDYXOhz9eEZkS9yUk7mmPCvuIioo/msTvbqx871/wGhg3m5D+IMs5t
TAd7DfENjpOyyhZqwq5q9ySP8f1rscb76CD4UqEfeeQXCDrv3cO0q4g0l0MRdDxu
+XRV6wcxajuCDm3ZBT2dCqJZnf5XZnO41fYLLlUW/f7InTERBL38EvOXo9FKLmBd
Azi4W4KQO0dy3Kobcms528eg3I6K/lzZC/ZhiKD7xfFy3j9v39wp
-----END CERTIFICATE-----
Generated at Fri Apr 4 16:16:38 2025 by rpki-client