Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3139362e32322e302f32342d3332203d3e20313336373837.roa
File: 3138352e3139362e32322e302f32342d3332203d3e20313336373837.roa (raw, json)
Hash identifier: eFSTWwONPHY15OpSw43R1ezBU2Ln92bSc4tLXlNLpI4=
Subject key identifier: FD:E9:8F:0B:21:94:DE:26:D7:09:FD:96:81:2A:17:CF:2B:9C:3A:69
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 30326148F7778998E35B512AF6FAB0660E696CBC
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3139362e32322e302f32342d3332203d3e20313336373837.roa
Signing time: Mon 30 Dec 2024 15:41:18 +0000
ROA not before: Mon 30 Dec 2024 15:36:18 +0000
ROA not after: Mon 29 Dec 2025 15:41:18 +0000
asID: 136787
IP address blocks: 185.196.22.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:32:61:48:f7:77:89:98:e3:5b:51:2a:f6:fa:b0:66:0e:69:6c:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Dec 30 15:36:18 2024 GMT
Not After : Dec 29 15:41:18 2025 GMT
Subject: CN=FDE98F0B2194DE26D709FD96812A17CF2B9C3A69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:66:23:b7:94:18:89:cf:0a:a1:31:7e:e5:7e:
2d:a4:70:a3:3d:b3:1a:dc:3c:19:04:9a:bb:f1:fa:
cd:32:b2:3d:ff:9e:52:fc:ec:52:4f:e3:59:92:b1:
4c:b4:24:d4:74:1d:a6:38:fe:b6:72:f5:c2:60:65:
31:17:b2:48:fe:c2:aa:a6:3f:ad:b7:c8:27:73:5d:
fa:64:d8:f8:d8:d5:df:b0:d3:e1:a0:70:95:2b:90:
47:45:85:c3:e3:98:a5:c0:5e:24:af:3c:17:a4:65:
70:66:71:5e:d3:39:2d:e1:59:a0:2a:bc:00:66:92:
19:e3:7f:f0:ae:a4:05:d0:49:66:be:af:31:97:cf:
71:69:ce:67:08:8b:18:7b:6f:d5:59:cb:c7:cf:10:
3d:ea:92:2b:f1:c1:44:45:b8:8f:fd:13:37:8d:c4:
79:78:f0:31:58:13:71:95:ed:78:8b:bc:ee:eb:2a:
53:37:aa:dd:15:3c:a6:20:9a:ca:38:0c:13:c9:27:
65:3e:47:21:08:3e:8d:36:85:03:8e:52:ee:bb:0f:
0d:0d:88:24:83:55:09:cb:7e:2b:75:23:90:a6:92:
38:07:0e:55:d9:86:48:fe:a3:34:fd:4b:5d:1c:05:
07:9c:b0:24:1e:f9:a8:c7:36:0c:10:32:a7:3a:63:
08:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:E9:8F:0B:21:94:DE:26:D7:09:FD:96:81:2A:17:CF:2B:9C:3A:69
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3139362e32322e302f32342d3332203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.22.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:8c:b8:5f:d7:12:1b:02:a3:e4:f2:ca:c6:6f:09:f5:75:a6:
05:24:21:db:7e:87:ef:5e:b3:be:76:c6:48:ee:39:6e:02:5e:
6b:5c:b4:33:a7:b2:aa:e8:70:a0:78:98:ac:1f:ae:c7:8d:63:
d5:41:40:98:d7:c1:c4:60:a3:04:f8:46:d4:f9:9e:02:35:b2:
5c:c6:ea:f5:22:30:8f:31:fc:7a:9b:b9:1e:67:35:5c:9d:6e:
a3:6f:1f:47:4b:b9:27:d5:38:93:b5:9b:1a:ca:34:7e:a0:28:
48:5d:f2:8a:be:19:98:78:1c:14:64:19:68:93:c6:d3:af:38:
bb:2d:7d:a8:bb:9e:d1:2d:fc:fb:c8:ed:22:b8:81:2c:ad:59:
74:c3:d9:0b:59:9e:c9:dd:68:84:ca:6a:1b:2c:1b:02:33:b4:
9e:38:a4:23:66:3e:75:2b:ee:e3:60:b3:75:4c:26:68:b7:da:
ba:4d:56:07:4b:a4:4c:18:af:2d:09:54:dd:88:29:77:ad:9b:
77:44:99:c4:bd:04:5a:b7:2d:88:7f:20:0b:81:f8:f7:f3:96:
d9:e1:a8:cd:dd:00:e4:19:ba:bf:b5:e5:2d:ae:ff:02:60:a3:
9c:3f:2a:fd:10:d3:1a:c9:b4:94:ea:d2:e5:1f:ee:ca:27:0b:
9c:60:a1:04
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUMDJhSPd3iZjjW1Eq9vqwZg5pbLwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj
MjMxM2EzYTAeFw0yNDEyMzAxNTM2MThaFw0yNTEyMjkxNTQxMThaMDMxMTAvBgNV
BAMTKEZERTk4RjBCMjE5NERFMjZENzA5RkQ5NjgxMkExN0NGMkI5QzNBNjkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlZiO3lBiJzwqhMX7lfi2kcKM9
sxrcPBkEmrvx+s0ysj3/nlL87FJP41mSsUy0JNR0HaY4/rZy9cJgZTEXskj+wqqm
P623yCdzXfpk2PjY1d+w0+GgcJUrkEdFhcPjmKXAXiSvPBekZXBmcV7TOS3hWaAq
vABmkhnjf/CupAXQSWa+rzGXz3FpzmcIixh7b9VZy8fPED3qkivxwURFuI/9EzeN
xHl48DFYE3GV7XiLvO7rKlM3qt0VPKYgmso4DBPJJ2U+RyEIPo02hQOOUu67Dw0N
iCSDVQnLfit1I5CmkjgHDlXZhkj+ozT9S10cBQecsCQe+ajHNgwQMqc6YwgNAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQU/emPCyGU3ibXCf2WgSoXzyucOmkwHwYDVR0j
BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J
eE9qby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzODM1MmUzMTM5MzYyZTMy
MzIyZTMwMmYzMjM0MmQzMzMyMjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC5xBYwDQYJKoZIhvcNAQELBQADggEBAA2MuF/XEhsCo+TyysZvCfV1pgUkIdt+
h+9es752xkjuOW4CXmtctDOnsqrocKB4mKwfrseNY9VBQJjXwcRgowT4RtT5ngI1
slzG6vUiMI8x/HqbuR5nNVydbqNvH0dLuSfVOJO1mxrKNH6gKEhd8oq+GZh4HBRk
GWiTxtOvOLstfai7ntEt/PvI7SK4gSytWXTD2QtZnsndaITKahssGwIztJ44pCNm
PnUr7uNgs3VMJmi32rpNVgdLpEwYry0JVN2IKXetm3dEmcS9BFq3LYh/IAuB+Pfz
ltnhqM3dAOQZur+15S2u/wJgo5w/Kv0Q0xrJtJTq0uUf7sonC5xgoQQ=
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:49:19 2025 by rpki-client