Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3134372e37382e34382e302f32322d3234203d3e20333936333139.roa
File: 3134372e37382e34382e302f32322d3234203d3e20333936333139.roa (raw, json)
Hash identifier: x8MMe6Sgi4C/X79VLu4szc9FS55VeLLBFXaVOYTKjVU=
Subject key identifier: 11:12:1D:BD:37:7F:D2:5B:68:92:3A:C0:79:91:57:51:0A:C9:54:F8
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 7B92D9BFF0D1B84CD4CFE5AE9AC601659BB2EB6D
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3134372e37382e34382e302f32322d3234203d3e20333936333139.roa
Signing time: Mon 27 Jan 2025 09:44:47 +0000
ROA not before: Mon 27 Jan 2025 09:39:47 +0000
ROA not after: Mon 26 Jan 2026 09:44:47 +0000
asID: 396319
IP address blocks: 147.78.48.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:92:d9:bf:f0:d1:b8:4c:d4:cf:e5:ae:9a:c6:01:65:9b:b2:eb:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Jan 27 09:39:47 2025 GMT
Not After : Jan 26 09:44:47 2026 GMT
Subject: CN=11121DBD377FD25B68923AC0799157510AC954F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:db:16:54:70:04:a6:90:e2:fd:89:67:25:34:
2a:de:fc:12:58:b4:a6:68:58:51:4e:58:5a:7c:70:
a6:4e:20:57:b6:47:13:af:63:21:bb:18:90:a4:15:
b7:90:7c:f4:d9:19:49:bb:b0:b4:48:f4:fa:b6:c4:
b2:32:f7:7a:aa:02:8f:fb:19:92:9b:ef:fa:61:1b:
fc:5b:b2:1b:f5:43:d1:cf:3a:f8:d6:99:29:29:61:
4c:86:1d:80:a8:55:b1:a9:24:7d:ea:f6:33:63:9d:
2a:c1:8f:46:0e:54:08:51:93:b8:4e:6b:c4:e9:01:
ac:b2:f1:43:42:bb:0d:cf:01:2e:4a:c7:9d:0a:d7:
17:fd:89:5a:86:43:b7:f7:d4:3c:bf:03:0c:b2:ba:
c0:d8:8e:58:9e:c4:a1:12:3e:9d:eb:d4:db:89:be:
e2:e6:66:a1:75:07:27:f0:65:bb:12:35:43:4d:4d:
db:6e:96:6c:ec:05:6b:93:fc:56:ca:71:5d:0e:ec:
31:a3:86:a3:06:ab:f8:64:15:4c:94:0f:ad:90:c6:
3b:70:66:62:33:de:bc:cd:4f:5b:9c:3f:cf:66:63:
8a:00:b2:a4:71:54:73:cb:60:63:88:da:52:8c:02:
38:f5:2e:6b:1b:a4:f0:1b:e3:12:c9:5e:27:45:58:
56:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:12:1D:BD:37:7F:D2:5B:68:92:3A:C0:79:91:57:51:0A:C9:54:F8
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3134372e37382e34382e302f32322d3234203d3e20333936333139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.48.0/22
Signature Algorithm: sha256WithRSAEncryption
43:ae:52:51:63:ec:6c:dc:7e:45:77:f8:7d:b6:0f:03:ae:24:
8d:7c:1f:fc:12:3c:a5:aa:e6:95:71:c7:44:80:09:86:6d:b0:
d5:0d:a0:43:25:14:70:1f:76:10:63:d7:34:85:7e:ac:50:2f:
8c:a7:dd:eb:60:67:d6:81:bc:6b:f8:ab:27:a1:1a:a6:06:7f:
17:e1:ee:a8:be:98:21:64:9e:cc:8c:46:a1:1b:1d:e3:94:60:
79:9b:95:88:2a:2f:42:92:60:db:81:60:e2:f8:47:db:e3:36:
34:dc:f4:a1:5e:3e:cd:bd:03:6d:f0:ea:64:e6:fe:bc:dc:f9:
4f:db:67:2d:e2:e7:50:20:72:63:db:9e:9f:2c:5e:95:fc:df:
97:4c:8f:d5:bd:dd:91:c0:e8:0f:7c:10:ab:16:3b:33:b4:cd:
1d:8d:be:8f:83:7e:ff:9d:f9:d4:2b:b5:d7:4b:62:4f:4a:d9:
07:a3:a8:4d:56:06:f8:60:60:73:50:b6:aa:72:31:24:3f:98:
54:6c:39:d8:a5:a4:cc:4c:b1:54:79:01:95:d0:96:d1:81:2f:
33:e7:c8:da:e3:d5:d7:4b:55:77:e3:4a:33:be:7f:86:f0:c7:
a6:f5:c2:56:f7:91:68:1c:c1:68:34:73:e8:95:a2:99:bc:2e:
40:16:fc:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:40:00 2025 by rpki-client