Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39322e3131382e35312e302f32342d3234203d3e20313336373837.roa
File: 39322e3131382e35312e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: tF6jxjRZYaAi6LFhzme2KOSkqN2ctXK7tc+YWgEz5iQ=
Subject key identifier: 95:37:6A:FC:82:38:81:52:13:E8:1E:8B:3A:4E:1B:09:B6:F9:69:19
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 5FA18B52DE2BE5E74E6C2712B2BD7A243DD958E9
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39322e3131382e35312e302f32342d3234203d3e20313336373837.roa
Signing time: Sat 01 Feb 2025 22:45:38 +0000
ROA not before: Sat 01 Feb 2025 22:40:38 +0000
ROA not after: Sat 31 Jan 2026 22:45:38 +0000
asID: 136787
IP address blocks: 92.118.51.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:a1:8b:52:de:2b:e5:e7:4e:6c:27:12:b2:bd:7a:24:3d:d9:58:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Feb 1 22:40:38 2025 GMT
Not After : Jan 31 22:45:38 2026 GMT
Subject: CN=95376AFC8238815213E81E8B3A4E1B09B6F96919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ac:05:9b:84:99:2f:2b:b7:6d:12:e0:87:7f:
28:95:62:04:2d:9a:f0:7c:d1:32:99:f4:78:0f:7f:
74:06:c5:17:95:19:09:93:14:41:49:e3:d3:06:46:
29:9c:fa:21:89:03:42:59:2e:1e:e9:8a:31:10:97:
88:f0:c9:bc:63:80:9c:b5:1b:6b:2c:ad:f5:f6:ec:
7c:aa:f1:40:b7:e2:fd:15:8d:52:5c:66:b9:60:aa:
50:6c:53:23:d1:b8:8c:f8:a3:6e:12:93:49:9f:04:
df:42:5a:37:07:a6:f1:4a:d6:fb:37:04:77:ba:98:
cc:b6:96:5e:b6:57:45:eb:f7:ea:12:48:67:d9:c4:
01:04:cc:8e:69:4b:0f:47:5f:93:51:f8:69:3f:69:
0f:45:38:b9:65:5e:54:cd:95:7d:da:89:b1:7c:92:
46:71:31:6d:e9:7a:d3:2f:1e:47:9f:73:cd:72:e3:
6d:e9:50:cf:72:a7:04:e3:d5:35:ad:f4:fe:c6:79:
a7:5b:b8:05:de:0e:c2:b9:ac:a7:8c:2f:e9:a8:73:
50:2d:fb:86:79:b1:63:b9:07:32:d6:ed:bf:9f:8d:
9a:82:eb:70:34:88:cd:a9:f9:c6:50:03:6a:25:08:
08:0a:71:33:fc:8b:b9:46:ad:e9:f7:ca:2e:31:89:
42:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:37:6A:FC:82:38:81:52:13:E8:1E:8B:3A:4E:1B:09:B6:F9:69:19
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39322e3131382e35312e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.51.0/24
Signature Algorithm: sha256WithRSAEncryption
06:ba:5a:b9:a1:a9:ba:7d:9a:77:41:06:15:aa:6d:bd:49:08:
78:a7:29:13:4b:7d:f1:e5:dc:b9:a3:d6:28:57:4e:f2:a0:97:
61:3a:80:a8:f6:a9:e6:ed:de:44:69:c9:cb:72:35:37:4d:fc:
c8:42:0a:71:7c:44:2e:e8:cc:25:99:43:a2:fe:8f:61:9c:9c:
52:ca:1c:80:0b:bd:7f:42:89:4b:92:45:64:8c:51:d5:bb:43:
e6:72:42:c9:e8:c8:85:f0:d5:66:46:cb:f7:5b:e2:84:05:53:
47:96:fa:86:ad:1d:3b:c8:5a:61:24:4b:85:d9:c6:c6:90:c0:
db:9a:63:cf:ff:96:7f:93:90:df:b3:82:ca:fa:07:7d:e8:71:
e1:91:3e:77:e0:e4:1a:2d:a5:18:76:97:f5:29:29:22:84:41:
d8:d4:4b:e6:93:54:e7:33:20:9d:56:0c:85:44:96:87:55:ab:
54:e4:fc:e3:d1:d7:1e:31:0e:d0:12:25:04:f1:4b:a0:70:a5:
69:02:f6:2c:70:06:3d:36:77:42:10:d6:66:81:34:20:52:a9:
03:2d:39:17:e4:ce:86:77:53:be:a1:26:10:a5:a0:19:5f:03:
3c:ac:64:42:41:f6:c6:d4:4e:35:80:2c:36:55:ce:26:1c:54:
d6:45:43:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:28:23 2025 by rpki-client