Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38342e3234372e3136302e302f31392d3332203d3e203531313637.roa
File: 38342e3234372e3136302e302f31392d3332203d3e203531313637.roa (raw, json)
Hash identifier: 57qhRDUgybtQxG27v89RwVdWxaKZm/PGnupxNahN9Bk=
Subject key identifier: BD:90:61:5C:54:57:CC:64:93:0D:27:49:48:C2:BF:00:AD:8C:1C:BD
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 719D3AA7477EB8ED5575459FA4170F9B39DFF54C
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38342e3234372e3136302e302f31392d3332203d3e203531313637.roa
Signing time: Mon 16 Dec 2024 17:44:32 +0000
ROA not before: Mon 16 Dec 2024 17:39:32 +0000
ROA not after: Mon 15 Dec 2025 17:44:32 +0000
asID: 51167
IP address blocks: 84.247.160.0/19 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:9d:3a:a7:47:7e:b8:ed:55:75:45:9f:a4:17:0f:9b:39:df:f5:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Dec 16 17:39:32 2024 GMT
Not After : Dec 15 17:44:32 2025 GMT
Subject: CN=BD90615C5457CC64930D274948C2BF00AD8C1CBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ec:76:8c:f7:82:be:c9:60:6a:4a:7b:1a:38:
36:9c:2e:dc:df:5e:7d:da:81:e1:09:03:ff:05:8b:
49:d6:74:e0:24:e2:7c:7f:07:a5:21:ae:ca:6a:f1:
fa:95:51:aa:79:ad:03:ca:0b:f6:57:86:50:6e:45:
6f:b3:f1:3f:a6:dc:a6:78:c4:54:03:26:0e:81:0f:
a7:75:06:4d:8c:27:86:ed:30:27:8d:fe:0a:fe:65:
9e:2b:1f:b1:99:64:11:8c:88:72:b2:81:b4:fc:ce:
fe:d6:12:ee:10:ee:e3:eb:4d:d6:93:cb:99:f1:d8:
b9:dd:64:42:7c:cf:eb:0e:15:3f:f6:08:ef:b5:96:
42:30:1e:44:b8:ea:44:1f:bd:11:54:0d:c3:97:ba:
21:d0:7d:23:7c:96:fc:c7:d8:1b:8a:0c:6e:4b:60:
e5:7c:ea:19:92:df:b3:dc:af:e6:e8:99:3d:5e:f5:
f7:31:05:ec:24:1c:1a:cc:36:a5:f5:8c:96:a3:d7:
d5:01:f1:f2:33:77:8e:bf:1e:4d:78:d3:69:89:d7:
0b:70:97:fd:4f:01:dc:3f:03:30:c6:44:6a:c0:88:
a8:e0:68:a8:df:49:72:16:f7:12:1f:d1:eb:b3:26:
80:14:3b:ca:3a:78:ff:f5:bb:8b:01:ab:3d:6d:f3:
90:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:90:61:5C:54:57:CC:64:93:0D:27:49:48:C2:BF:00:AD:8C:1C:BD
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38342e3234372e3136302e302f31392d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.247.160.0/19
Signature Algorithm: sha256WithRSAEncryption
0d:5e:9f:f1:95:58:aa:f9:58:af:eb:31:2c:76:b1:c5:53:79:
fa:69:f7:34:3e:ba:c4:b4:a6:b5:92:30:e0:3a:ec:a6:d3:5c:
b1:5c:a6:b4:25:27:e3:2a:c0:8f:02:07:49:41:89:15:a9:18:
02:74:fe:fc:48:2f:71:60:17:20:af:f1:e6:13:75:63:02:9e:
a6:26:0e:d1:05:10:6f:43:e6:84:16:fd:06:72:47:19:04:91:
e7:76:64:6d:ce:0a:df:79:76:de:65:02:8e:78:7e:2c:72:a6:
ea:02:d5:b6:cc:22:f9:24:49:5d:56:ed:2e:8b:16:c8:58:8b:
b6:f0:1d:3f:6b:af:f2:45:9b:61:92:f5:59:b7:61:53:c9:56:
34:1d:53:0e:8c:ad:9b:28:c4:c4:c3:77:4c:60:22:3b:b4:eb:
c9:f1:a4:27:6a:d7:65:df:a0:1e:a5:f6:4a:df:f0:25:64:7b:
f3:da:56:9c:9c:3f:37:4c:87:39:60:79:e5:f8:25:7e:3a:3b:
b8:1c:5d:b8:e5:33:6f:27:13:5d:b9:b7:d0:e8:01:08:53:32:
45:ae:4b:30:55:7d:92:4e:95:4c:7c:9f:ba:55:45:b7:93:a7:
8e:d7:af:bc:a2:29:d4:9a:a2:80:02:d1:f9:e9:4e:43:8d:8d:
e5:df:55:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 05:00:55 2025 by rpki-client