Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e3136302e36342e302f32332d3234203d3e203437353833.roa
File: 3139332e3136302e36342e302f32332d3234203d3e203437353833.roa (raw, json)
Hash identifier: 1TEoBLdGxbByCne+BPYXv6FyQEA1qaiITKnWY34O1co=
Subject key identifier: 29:25:CE:38:85:1E:A0:75:A6:3D:0E:20:7C:D2:B9:00:F5:43:69:CE
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 50956C4645BD856970038D2EB00BED1BC8B61158
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e3136302e36342e302f32332d3234203d3e203437353833.roa
Signing time: Mon 27 Jan 2025 09:44:49 +0000
ROA not before: Mon 27 Jan 2025 09:39:49 +0000
ROA not after: Mon 26 Jan 2026 09:44:49 +0000
asID: 47583
IP address blocks: 193.160.64.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:95:6c:46:45:bd:85:69:70:03:8d:2e:b0:0b:ed:1b:c8:b6:11:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Jan 27 09:39:49 2025 GMT
Not After : Jan 26 09:44:49 2026 GMT
Subject: CN=2925CE38851EA075A63D0E207CD2B900F54369CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:57:b6:66:39:83:55:29:ce:04:52:4b:65:73:
16:48:5c:06:ca:fe:93:9b:c8:13:3a:ce:a2:2a:63:
d0:c7:4d:96:1d:17:60:5a:0f:c9:fa:1a:ef:c1:34:
65:c6:9f:c2:4d:4a:7f:55:e2:91:41:94:4d:75:9d:
c6:db:4a:c8:a3:80:85:d8:28:0f:f5:6a:99:13:09:
77:53:a4:74:00:0b:7d:b0:7d:d3:31:fb:56:b1:07:
67:12:77:0a:7a:db:ea:96:a1:40:da:be:bb:e2:21:
02:4d:2a:92:3a:08:ff:bf:1b:36:7d:d6:63:db:8c:
7b:dd:62:f5:a3:86:7d:ba:a0:33:34:09:9d:69:11:
ee:7f:53:e8:b7:74:85:82:a9:2e:2d:28:50:94:8b:
12:c1:81:e3:f4:23:ff:47:ee:09:29:70:87:67:2a:
c1:9c:28:17:0b:eb:99:c9:7a:b6:d6:ed:05:0a:df:
4a:c2:82:be:1b:51:8d:41:23:e3:a4:61:7b:60:f4:
ce:65:cc:24:ef:a2:a8:ed:a7:1a:4f:90:24:97:55:
5f:85:20:24:7a:dd:f7:ad:7c:67:fb:d7:37:9f:b6:
72:d1:40:d5:13:f5:c2:8e:a2:12:1e:01:2a:8d:4f:
ec:3c:45:31:1c:5b:1f:c2:7c:22:ad:cc:fd:e7:02:
64:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:25:CE:38:85:1E:A0:75:A6:3D:0E:20:7C:D2:B9:00:F5:43:69:CE
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e3136302e36342e302f32332d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.64.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:6d:7c:c4:ca:d1:30:cc:e8:78:ba:c5:d3:ea:f0:30:9f:70:
a7:e7:89:dd:55:02:ec:e1:b1:0d:93:03:e7:41:8d:c5:02:6d:
e0:03:cc:01:fe:03:35:78:7e:e0:1c:fe:a1:c7:a9:fd:c6:72:
5e:6b:96:a2:36:d9:fe:42:5a:69:b7:ee:0e:90:53:58:96:1b:
b4:4f:c4:ee:4d:45:12:c0:9a:d9:a0:3d:68:d8:f7:0b:f6:fa:
37:fc:88:8f:2f:56:33:43:2b:dc:d4:2a:03:b9:df:70:5f:2b:
27:5d:8e:d2:39:77:01:f0:8e:c2:60:ce:1e:4d:bc:9d:97:6f:
39:46:98:d9:af:b9:7e:01:97:bc:c6:fd:e9:23:ff:5b:5c:fe:
65:ab:29:93:f6:f5:f9:a9:33:06:3f:b6:ae:9c:e0:d1:63:4e:
19:96:45:21:53:34:1f:a4:85:e6:14:0a:c5:98:42:14:91:16:
82:d5:fb:7a:d2:f4:38:76:2f:38:a9:93:5e:33:b8:b5:d3:43:
96:45:bf:de:40:61:ab:6d:2a:8a:31:87:1e:5d:c9:e0:42:1d:
72:f6:46:bb:69:99:ac:44:07:60:c1:9d:05:5a:45:a5:70:f2:
d4:58:87:d7:dc:59:a8:19:aa:37:f6:fc:b9:72:53:06:65:06:
04:80:ef:a0
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUUJVsRkW9hWlwA40usAvtG8i2EVgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj
MjMxM2EzYTAeFw0yNTAxMjcwOTM5NDlaFw0yNjAxMjYwOTQ0NDlaMDMxMTAvBgNV
BAMTKDI5MjVDRTM4ODUxRUEwNzVBNjNEMEUyMDdDRDJCOTAwRjU0MzY5Q0UwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNV7ZmOYNVKc4EUktlcxZIXAbK
/pObyBM6zqIqY9DHTZYdF2BaD8n6Gu/BNGXGn8JNSn9V4pFBlE11ncbbSsijgIXY
KA/1apkTCXdTpHQAC32wfdMx+1axB2cSdwp62+qWoUDavrviIQJNKpI6CP+/GzZ9
1mPbjHvdYvWjhn26oDM0CZ1pEe5/U+i3dIWCqS4tKFCUixLBgeP0I/9H7gkpcIdn
KsGcKBcL65nJerbW7QUK30rCgr4bUY1BI+OkYXtg9M5lzCTvoqjtpxpPkCSXVV+F
ICR63fetfGf71zeftnLRQNUT9cKOohIeASqNT+w8RTEcWx/CfCKtzP3nAmRlAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUKSXOOIUeoHWmPQ4gfNK5APVDac4wHwYDVR0j
BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J
eE9qby5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzOTMzMmUzMTM2MzAyZTM2
MzQyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzNDM3MzUzODMzLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB
waBAMA0GCSqGSIb3DQEBCwUAA4IBAQBabXzEytEwzOh4usXT6vAwn3Cn54ndVQLs
4bENkwPnQY3FAm3gA8wB/gM1eH7gHP6hx6n9xnJea5aiNtn+Qlppt+4OkFNYlhu0
T8TuTUUSwJrZoD1o2PcL9vo3/IiPL1YzQyvc1CoDud9wXysnXY7SOXcB8I7CYM4e
Tbydl285RpjZr7l+AZe8xv3pI/9bXP5lqymT9vX5qTMGP7aunODRY04ZlkUhUzQf
pIXmFArFmEIUkRaC1ft60vQ4di84qZNeM7i100OWRb/eQGGrbSqKMYceXcngQh1y
9ka7aZmsRAdgwZ0FWkWlcPLUWIfX3FmoGao39vy5clMGZQYEgO+g
-----END CERTIFICATE-----
Generated at Sat Apr 5 02:27:31 2025 by rpki-client