Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39322e3131382e34382e302f32342d3234203d3e20313336373837.roa
File: 39322e3131382e34382e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: atj27ZMtLezTjcSfyK/JiaqelMY9g1H1Xz6ywapVjQU=
Subject key identifier: 63:48:CC:97:D7:13:9D:AF:53:07:EA:F4:61:3E:15:9C:1F:87:8E:DF
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 103A8A2B1873F696E029DE75D1F1193678ED4A30
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39322e3131382e34382e302f32342d3234203d3e20313336373837.roa
Signing time: Sat 01 Feb 2025 22:45:36 +0000
ROA not before: Sat 01 Feb 2025 22:40:36 +0000
ROA not after: Sat 31 Jan 2026 22:45:36 +0000
asID: 136787
IP address blocks: 92.118.48.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:3a:8a:2b:18:73:f6:96:e0:29:de:75:d1:f1:19:36:78:ed:4a:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Feb 1 22:40:36 2025 GMT
Not After : Jan 31 22:45:36 2026 GMT
Subject: CN=6348CC97D7139DAF5307EAF4613E159C1F878EDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c4:b2:bb:43:91:ec:26:4b:d4:62:3a:51:42:
2f:1e:53:0e:0c:81:dc:b1:62:d2:56:b6:2f:31:83:
19:0d:90:43:2f:46:41:9f:92:05:44:ca:5b:f4:c5:
18:3e:1c:a5:98:0d:19:40:80:2f:5c:a8:44:32:a3:
2e:a3:1b:5c:46:f3:8e:a9:65:21:be:d8:c6:01:82:
e4:31:15:37:4c:c8:6a:69:7f:d4:60:66:99:49:c7:
3b:0d:6d:87:b1:a3:b6:57:4f:4d:65:95:07:d5:cd:
32:88:55:4d:2d:7a:bc:02:bb:0b:b6:3a:57:ae:bb:
f3:47:74:89:e9:22:8c:ac:87:47:85:03:a4:f6:6a:
01:dc:a6:33:6f:9b:08:2c:b6:95:14:9a:3d:4c:a0:
d0:d6:74:99:cc:05:d3:02:2e:a7:d2:d4:9f:cd:96:
38:15:77:92:05:a1:86:4f:f5:ff:b5:3c:eb:51:a6:
d5:47:39:ee:9a:4d:85:6c:92:33:75:2a:43:30:1b:
53:f1:50:54:fb:49:54:87:ff:1a:75:36:d5:97:0f:
c2:f4:76:4e:b5:ff:af:ae:d1:60:3d:9c:35:78:55:
02:6b:fa:c9:6f:fe:a6:61:17:af:87:68:06:bc:e1:
f7:8e:a8:12:66:ea:96:05:cb:38:52:17:fe:0a:94:
09:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:48:CC:97:D7:13:9D:AF:53:07:EA:F4:61:3E:15:9C:1F:87:8E:DF
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39322e3131382e34382e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.48.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:ed:36:51:d9:49:61:cb:9c:2b:d9:90:25:bc:65:6a:c9:fb:
dd:95:5d:b1:4a:06:c5:0e:c7:51:0d:a5:49:6b:7c:f1:fd:44:
4e:3b:ec:a6:12:4f:db:f7:5a:bf:d6:5a:0a:49:a1:0f:aa:63:
b8:08:49:9b:8b:dd:0c:1c:e3:09:fc:a6:19:b6:2d:44:86:99:
0a:09:b5:60:58:b2:70:91:87:51:06:b0:75:2e:1c:bb:9a:82:
fa:44:1a:80:3d:3d:66:4b:02:b9:1c:bb:08:63:5a:9b:cc:a5:
25:21:02:ca:8c:db:e9:44:0e:d2:ba:8a:39:91:79:b8:69:93:
ec:bc:26:dc:e6:e1:e1:17:35:0c:75:86:e0:64:99:fb:f1:ac:
64:dc:6b:47:24:00:97:26:a6:cd:66:92:a1:b8:f8:25:45:fa:
7f:c1:5a:76:9d:89:91:32:33:b4:44:45:89:c7:2f:77:6e:1d:
92:5e:ac:ba:b4:68:3b:04:a6:43:99:50:4b:81:66:bc:f7:75:
63:e6:5b:bd:e6:07:f5:11:c5:cf:5c:4f:a3:1b:8c:16:b8:e4:
df:3c:e7:a3:a4:53:ba:0f:52:42:32:ad:c0:fe:fa:70:53:83:
74:be:ec:9a:bd:83:26:49:ab:48:27:08:2a:ec:4a:d6:63:82:
da:57:8a:d0
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUEDqKKxhz9pbgKd510fEZNnjtSjAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNTAyMDEyMjQwMzZaFw0yNjAxMzEyMjQ1MzZaMDMxMTAvBgNV
BAMTKDYzNDhDQzk3RDcxMzlEQUY1MzA3RUFGNDYxM0UxNTlDMUY4NzhFREYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwxLK7Q5HsJkvUYjpRQi8eUw4M
gdyxYtJWti8xgxkNkEMvRkGfkgVEylv0xRg+HKWYDRlAgC9cqEQyoy6jG1xG846p
ZSG+2MYBguQxFTdMyGppf9RgZplJxzsNbYexo7ZXT01llQfVzTKIVU0terwCuwu2
Oleuu/NHdInpIoysh0eFA6T2agHcpjNvmwgstpUUmj1MoNDWdJnMBdMCLqfS1J/N
ljgVd5IFoYZP9f+1POtRptVHOe6aTYVskjN1KkMwG1PxUFT7SVSH/xp1NtWXD8L0
dk61/6+u0WA9nDV4VQJr+slv/qZhF6+HaAa84feOqBJm6pYFyzhSF/4KlAkXAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUY0jMl9cTna9TB+r0YT4VnB+Hjt8wHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzkzMjJlMzEzMTM4MmUzNDM4
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
XHYwMA0GCSqGSIb3DQEBCwUAA4IBAQBd7TZR2Ulhy5wr2ZAlvGVqyfvdlV2xSgbF
DsdRDaVJa3zx/UROO+ymEk/b91q/1loKSaEPqmO4CEmbi90MHOMJ/KYZti1EhpkK
CbVgWLJwkYdRBrB1Lhy7moL6RBqAPT1mSwK5HLsIY1qbzKUlIQLKjNvpRA7Suoo5
kXm4aZPsvCbc5uHhFzUMdYbgZJn78axk3GtHJACXJqbNZpKhuPglRfp/wVp2nYmR
MjO0REWJxy93bh2SXqy6tGg7BKZDmVBLgWa893Vj5lu95gf1EcXPXE+jG4wWuOTf
POejpFO6D1JCMq3A/vpwU4N0vuyavYMmSatIJwgq7ErWY4LaV4rQ
-----END CERTIFICATE-----
Generated at Fri Apr 4 19:26:11 2025 by rpki-client