Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e3136382e3139322e302f32332d3234203d3e203437353833.roa
File: 3139332e3136382e3139322e302f32332d3234203d3e203437353833.roa (raw, json)
Hash identifier: 1lQSCvkQKrhynBWsEUqfhZnVjtBusUeUyizONmovAbM=
Subject key identifier: 53:B8:38:80:39:8E:65:39:8D:CA:8B:E8:76:7F:07:76:BB:34:63:4E
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 4DCAEE714F89E71593FB340A3856FD2DCB64C8A1
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e3136382e3139322e302f32332d3234203d3e203437353833.roa
Signing time: Mon 27 Jan 2025 09:44:46 +0000
ROA not before: Mon 27 Jan 2025 09:39:46 +0000
ROA not after: Mon 26 Jan 2026 09:44:46 +0000
asID: 47583
IP address blocks: 193.168.192.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:ca:ee:71:4f:89:e7:15:93:fb:34:0a:38:56:fd:2d:cb:64:c8:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Jan 27 09:39:46 2025 GMT
Not After : Jan 26 09:44:46 2026 GMT
Subject: CN=53B83880398E65398DCA8BE8767F0776BB34634E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:11:bc:2e:8f:fa:92:61:2a:32:24:7f:cd:86:
c0:65:fe:0a:92:62:a4:83:c8:33:ad:99:a9:0f:95:
7f:87:4f:ed:98:20:4c:58:f8:1d:fb:29:a4:92:77:
70:9b:74:c9:94:b1:68:e2:34:4c:94:35:34:6a:7a:
b3:67:6a:29:16:29:e0:9c:ff:fc:67:96:73:3c:a5:
b3:73:74:d7:6d:c4:4c:cd:83:88:ab:22:e8:7b:97:
03:e0:66:ab:52:e9:e3:bc:b1:cc:5c:8b:3e:4b:61:
8b:14:75:04:bb:45:93:a9:9d:4b:86:e8:6b:e0:b2:
f1:30:2d:c7:13:eb:60:a9:f5:0f:c1:9d:58:1d:3a:
f1:04:46:cf:ac:91:e5:4c:e4:1b:9e:3c:a5:c7:43:
8c:15:6e:0b:e8:ac:f3:85:f4:3e:8a:25:1a:b0:b5:
3c:ad:4f:03:e6:78:27:5d:59:25:e6:d0:3c:c2:77:
53:55:18:25:9c:ab:40:ad:bb:1b:33:0a:eb:33:94:
e6:a4:da:a9:e4:98:6f:6c:b6:75:ee:a5:4c:82:5b:
ae:ba:57:65:7e:2b:56:8c:0e:3b:49:71:1a:2e:0a:
f5:2a:65:63:25:46:55:cf:9e:c9:7d:b3:1a:6f:03:
51:c8:b6:4b:38:df:4a:b8:1d:ae:6c:45:40:32:a7:
a3:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:B8:38:80:39:8E:65:39:8D:CA:8B:E8:76:7F:07:76:BB:34:63:4E
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e3136382e3139322e302f32332d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.168.192.0/23
Signature Algorithm: sha256WithRSAEncryption
75:b8:3b:bf:16:f8:43:44:76:3b:9b:4f:f7:05:ca:96:e1:13:
14:66:4b:05:f1:fb:81:e5:fb:7f:39:1e:55:c2:ab:bf:c4:31:
e1:ca:50:44:75:83:b5:df:a7:ce:e7:64:f9:5f:bc:4e:4e:57:
ef:5e:53:b6:a2:8a:f8:89:e0:2f:05:b0:1b:d4:26:a1:ac:01:
7e:cb:7f:d9:9f:00:f9:84:10:76:0d:d3:40:8f:2b:9e:57:78:
6f:16:ca:ae:cd:d0:c6:62:33:7b:24:7e:91:8f:61:a0:e9:32:
b9:1c:49:a6:23:ce:98:d7:6b:22:8b:b6:95:af:a3:2e:08:20:
6c:f6:b1:35:87:a7:b0:48:aa:6a:6c:fd:eb:f5:2e:12:18:4b:
95:d7:f6:9a:ee:3b:f2:ba:95:3e:03:f1:83:70:34:70:8a:0d:
41:ab:b3:78:c5:92:32:49:40:19:16:09:b8:7d:77:9b:f2:2a:
4d:3e:a6:21:a8:4a:e5:17:32:64:b9:fe:dc:86:ab:8b:e8:ce:
0c:d7:06:60:d8:e4:eb:65:ce:2f:91:95:ba:10:97:27:1d:13:
93:f3:28:f9:8b:ed:6e:f7:42:95:cb:db:e7:c8:4d:ad:9e:6b:
23:fc:c8:75:f9:68:60:f5:dc:39:dc:9d:91:b1:59:f0:98:50:
6d:f3:e6:c3
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUTcrucU+J5xWT+zQKOFb9LctkyKEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj
MjMxM2EzYTAeFw0yNTAxMjcwOTM5NDZaFw0yNjAxMjYwOTQ0NDZaMDMxMTAvBgNV
BAMTKDUzQjgzODgwMzk4RTY1Mzk4RENBOEJFODc2N0YwNzc2QkIzNDYzNEUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaEbwuj/qSYSoyJH/NhsBl/gqS
YqSDyDOtmakPlX+HT+2YIExY+B37KaSSd3CbdMmUsWjiNEyUNTRqerNnaikWKeCc
//xnlnM8pbNzdNdtxEzNg4irIuh7lwPgZqtS6eO8scxciz5LYYsUdQS7RZOpnUuG
6GvgsvEwLccT62Cp9Q/BnVgdOvEERs+skeVM5BuePKXHQ4wVbgvorPOF9D6KJRqw
tTytTwPmeCddWSXm0DzCd1NVGCWcq0CtuxszCuszlOak2qnkmG9stnXupUyCW666
V2V+K1aMDjtJcRouCvUqZWMlRlXPnsl9sxpvA1HItks430q4Ha5sRUAyp6PdAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUU7g4gDmOZTmNyovodn8Hdrs0Y04wHwYDVR0j
BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J
eE9qby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzOTMzMmUzMTM2MzgyZTMx
MzkzMjJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDM0MzczNTM4MzMucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAHBqMAwDQYJKoZIhvcNAQELBQADggEBAHW4O78W+ENEdjubT/cFypbhExRmSwXx
+4Hl+385HlXCq7/EMeHKUER1g7Xfp87nZPlfvE5OV+9eU7aiiviJ4C8FsBvUJqGs
AX7Lf9mfAPmEEHYN00CPK55XeG8Wyq7N0MZiM3skfpGPYaDpMrkcSaYjzpjXayKL
tpWvoy4IIGz2sTWHp7BIqmps/ev1LhIYS5XX9pruO/K6lT4D8YNwNHCKDUGrs3jF
kjJJQBkWCbh9d5vyKk0+piGoSuUXMmS5/tyGq4vozgzXBmDY5Otlzi+RlboQlycd
E5PzKPmL7W73QpXL2+fITa2eayP8yHX5aGD13DncnZGxWfCYUG3z5sM=
-----END CERTIFICATE-----
Generated at Sat Apr 5 04:32:56 2025 by rpki-client