Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3137322e302f32322d3234203d3e203437353833.roa
File: 38322e3138302e3137322e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: EOKUaCVOYABQDkyQWN0TMKeoA54kbXwr6WVn5dbou8I=
Subject key identifier: 97:79:C6:B0:97:3B:D6:3E:9C:0C:E3:4B:63:A5:B2:F6:0A:15:26:CD
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 4E027D3E8E5EE915ED1278F7ECF865B6D8DB4DFC
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3137322e302f32322d3234203d3e203437353833.roa
Signing time: Mon 27 Jan 2025 09:45:09 +0000
ROA not before: Mon 27 Jan 2025 09:40:09 +0000
ROA not after: Mon 26 Jan 2026 09:45:09 +0000
asID: 47583
IP address blocks: 82.180.172.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:02:7d:3e:8e:5e:e9:15:ed:12:78:f7:ec:f8:65:b6:d8:db:4d:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jan 27 09:40:09 2025 GMT
Not After : Jan 26 09:45:09 2026 GMT
Subject: CN=9779C6B0973BD63E9C0CE34B63A5B2F60A1526CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:53:1a:ff:5d:57:08:42:ec:fa:04:1c:46:03:
17:50:44:33:fe:d2:ac:28:9b:4e:6a:13:86:ca:6e:
24:37:3a:4b:9d:39:0a:64:b8:f8:cd:86:84:0d:2f:
4f:01:6c:ee:e6:9e:60:ac:fc:69:33:91:a7:32:f1:
e8:1d:32:4b:b1:ff:14:df:23:90:3f:ab:fb:8d:b5:
07:29:83:ea:e6:59:ad:98:dd:ff:f3:02:2e:2c:30:
22:ac:59:8a:4b:a6:fc:ca:8f:61:d7:ea:90:ac:e7:
31:66:f6:07:1a:1a:a4:47:ff:85:95:cb:fd:9a:4e:
bd:46:e6:8a:a5:4c:50:54:94:46:a2:2b:dd:38:cb:
5f:0a:0c:d2:e7:e2:91:c4:00:22:94:de:9c:83:ad:
e8:e5:99:ec:7f:2f:f4:e3:b4:58:19:b8:ce:b0:ad:
a5:af:95:6b:73:ef:22:91:3b:95:94:58:9f:a8:f6:
55:fa:27:57:8f:46:55:29:d9:49:9d:42:9f:26:5f:
a4:e2:e6:2f:6f:04:4c:82:fb:f1:00:f8:df:5a:95:
c9:92:9e:a0:5c:27:a1:a6:6f:b1:de:dc:bd:43:60:
f7:2f:ac:82:75:ff:c1:8e:0f:63:5b:02:24:b6:f0:
6a:24:ae:ec:1f:69:91:9c:7e:dc:cf:ac:c5:82:af:
2f:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:79:C6:B0:97:3B:D6:3E:9C:0C:E3:4B:63:A5:B2:F6:0A:15:26:CD
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3137322e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.180.172.0/22
Signature Algorithm: sha256WithRSAEncryption
90:4c:bb:54:0d:4e:74:0f:9c:2b:dd:f4:f2:f7:8d:47:70:94:
06:7c:04:03:f8:c0:f5:34:33:1b:87:cf:66:69:a8:61:36:77:
d6:2f:e2:aa:f6:cf:33:c3:05:31:7c:10:73:a2:50:09:dd:54:
00:e0:ff:46:35:61:49:40:c4:97:6a:36:f7:e9:f5:9b:d1:bd:
be:d7:45:1d:b2:cd:4c:79:7a:bb:ea:8a:1d:b4:27:61:4c:5d:
60:68:3d:e0:cf:64:be:e7:10:b9:21:4c:10:a9:9d:94:34:34:
ed:df:d7:47:9d:68:e5:a7:3c:1e:7a:f8:d4:9b:28:be:72:63:
71:be:f8:84:01:cf:46:0f:3d:0e:9a:44:42:10:88:18:81:38:
ad:a3:8b:e8:db:bf:41:f8:04:dd:ca:ba:36:f7:52:95:7b:29:
f5:d0:52:e6:35:56:10:b3:31:9f:50:58:67:14:0d:5e:a8:37:
a5:9e:b1:e1:31:71:04:4a:19:b8:cf:0d:d7:51:47:af:40:1c:
e8:ef:1b:f5:17:af:5d:10:bb:6e:6d:4a:e2:23:9a:db:3e:b3:
0b:2a:f6:d7:1c:e8:cf:40:30:38:fb:aa:90:ad:48:74:cc:a9:
07:29:2a:d3:61:a8:d5:70:f2:e5:a6:e6:d9:00:74:e7:b9:cb:
c0:1a:f2:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:06:04 2025 by rpki-client