Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3135302e302f32342d3234203d3e20313336373837.roa
File: 38322e3138302e3135302e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: HHuE0yTSDIbbzEgRsMcHmHTvxDboa8EuOwJKG/k5mZQ=
Subject key identifier: 8A:A0:C3:65:5E:E5:71:62:1E:02:47:7E:93:39:74:0B:15:F5:EE:58
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 0C999802426BBFDE03FD468B2DD31C81AF3E7D04
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3135302e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 27 Jan 2025 09:45:04 +0000
ROA not before: Mon 27 Jan 2025 09:40:04 +0000
ROA not after: Mon 26 Jan 2026 09:45:04 +0000
asID: 136787
IP address blocks: 82.180.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:99:98:02:42:6b:bf:de:03:fd:46:8b:2d:d3:1c:81:af:3e:7d:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jan 27 09:40:04 2025 GMT
Not After : Jan 26 09:45:04 2026 GMT
Subject: CN=8AA0C3655EE571621E02477E9339740B15F5EE58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:20:57:ab:91:1c:8f:d8:fa:ce:5a:aa:99:1f:
eb:71:b0:97:b9:b1:de:df:a2:5d:d4:c5:18:43:56:
8a:d7:3c:96:10:2e:41:c4:80:69:14:ad:cd:74:1b:
e7:fe:73:78:2e:4b:a9:52:d3:c7:ba:70:52:30:cd:
80:2e:df:d6:18:0e:b0:0a:d8:2f:09:a0:cf:bc:04:
2b:58:f2:c4:b3:99:6c:a9:a3:f7:1a:f5:a2:1c:e3:
e7:87:7b:a1:96:9f:df:f4:55:2b:ac:d6:3a:d6:20:
f5:a5:4f:d8:11:ae:98:8d:8e:33:c5:bd:0d:c9:12:
2b:e5:be:e9:8a:ff:fc:3a:e2:7f:a8:4c:86:5e:73:
c8:aa:4b:2c:fe:d4:b6:4c:df:7a:b3:ed:2e:82:45:
fb:b5:e4:22:14:fe:f1:67:96:4c:e9:08:a4:44:4a:
31:e7:f7:97:90:f1:b8:c2:06:d8:25:b4:d7:19:fd:
11:29:d9:24:14:04:49:2a:57:70:df:96:e2:cc:5e:
08:1f:2f:76:f9:21:7f:50:c8:de:83:89:da:5b:ba:
72:79:2f:c6:15:b8:ec:9b:1c:13:f3:9a:7b:bb:eb:
21:34:5a:0a:59:fa:31:d0:c0:e7:30:23:67:3e:78:
cf:d4:99:6b:ec:21:be:43:a1:85:1a:91:ff:ac:a3:
ee:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:A0:C3:65:5E:E5:71:62:1E:02:47:7E:93:39:74:0B:15:F5:EE:58
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3135302e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.180.150.0/24
Signature Algorithm: sha256WithRSAEncryption
93:26:f4:7f:b9:5a:ea:8a:3d:bd:a6:da:2e:81:33:6d:48:ed:
b2:77:46:17:a6:97:d3:0b:3c:9e:40:94:b7:18:e3:27:d3:5d:
a8:5b:7a:5d:f4:b8:ad:c2:31:66:25:bc:a5:79:7b:b8:a8:4b:
e4:9f:c1:7b:b2:c3:5c:fc:0b:c6:87:40:34:02:b4:48:58:c5:
bf:b6:1a:b2:3e:bb:5c:65:28:96:df:a4:9a:6e:08:9d:87:ed:
68:64:f5:83:e7:2e:b0:d0:53:f8:01:15:3d:1c:d7:1b:31:d6:
5f:80:b8:33:bb:2e:79:c6:bf:a7:84:a5:3a:89:5a:5f:6f:f7:
35:9a:7d:2b:79:70:0a:ee:a2:6e:05:33:54:0f:40:c6:34:e8:
17:06:9f:0c:bf:8f:59:90:d4:71:31:01:53:8b:00:58:e8:c2:
af:c0:21:4e:a5:79:8d:1e:7e:8f:17:25:3b:a3:87:e9:c5:c0:
4c:cd:f4:df:da:81:ae:26:01:e1:4a:70:85:de:73:c2:18:de:
3b:cf:18:d8:9a:85:d6:ab:ec:8d:ad:24:ee:63:57:a2:58:84:
e1:fc:9e:b2:1c:89:01:77:24:e2:77:52:95:3b:b8:e4:69:4e:
90:44:e6:7f:64:9b:84:78:48:35:a2:32:31:13:89:97:11:29:
c9:4d:ab:7f
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUDJmYAkJrv94D/UaLLdMcga8+fQQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNTAxMjcwOTQwMDRaFw0yNjAxMjYwOTQ1MDRaMDMxMTAvBgNV
BAMTKDhBQTBDMzY1NUVFNTcxNjIxRTAyNDc3RTkzMzk3NDBCMTVGNUVFNTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6IFerkRyP2PrOWqqZH+txsJe5
sd7fol3UxRhDVorXPJYQLkHEgGkUrc10G+f+c3guS6lS08e6cFIwzYAu39YYDrAK
2C8JoM+8BCtY8sSzmWypo/ca9aIc4+eHe6GWn9/0VSus1jrWIPWlT9gRrpiNjjPF
vQ3JEivlvumK//w64n+oTIZec8iqSyz+1LZM33qz7S6CRfu15CIU/vFnlkzpCKRE
SjHn95eQ8bjCBtgltNcZ/REp2SQUBEkqV3DfluLMXggfL3b5IX9QyN6DidpbunJ5
L8YVuOybHBPzmnu76yE0WgpZ+jHQwOcwI2c+eM/UmWvsIb5DoYUakf+so+7BAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUiqDDZV7lcWIeAkd+kzl0CxX17lgwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzMjJlMzEzODMwMmUzMTM1
MzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BABStJYwDQYJKoZIhvcNAQELBQADggEBAJMm9H+5WuqKPb2m2i6BM21I7bJ3Rhem
l9MLPJ5AlLcY4yfTXahbel30uK3CMWYlvKV5e7ioS+SfwXuyw1z8C8aHQDQCtEhY
xb+2GrI+u1xlKJbfpJpuCJ2H7Whk9YPnLrDQU/gBFT0c1xsx1l+AuDO7LnnGv6eE
pTqJWl9v9zWafSt5cAruom4FM1QPQMY06BcGnwy/j1mQ1HExAVOLAFjowq/AIU6l
eY0efo8XJTujh+nFwEzN9N/aga4mAeFKcIXec8IY3jvPGNiahdar7I2tJO5jV6JY
hOH8nrIciQF3JOJ3UpU7uORpTpBE5n9km4R4SDWiMjETiZcRKclNq38=
-----END CERTIFICATE-----
Generated at Sat Apr 5 02:59:24 2025 by rpki-client