Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e33312e3135312e302f32342d3234203d3e20313336373837.roa
File: 3139342e33312e3135312e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: IWHDyQbQFiH2cQyj+odwkJ3GrQEahxFm5bwiMRS98os=
Subject key identifier: 43:84:71:74:52:58:72:28:9F:2B:72:44:1C:AE:5F:B0:F3:6D:78:E6
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 55D0F8EAFD86483A508F5932B8D368CCAFA38CBC
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e33312e3135312e302f32342d3234203d3e20313336373837.roa
Signing time: Sat 01 Feb 2025 22:45:35 +0000
ROA not before: Sat 01 Feb 2025 22:40:35 +0000
ROA not after: Sat 31 Jan 2026 22:45:35 +0000
asID: 136787
IP address blocks: 194.31.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:d0:f8:ea:fd:86:48:3a:50:8f:59:32:b8:d3:68:cc:af:a3:8c:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Feb 1 22:40:35 2025 GMT
Not After : Jan 31 22:45:35 2026 GMT
Subject: CN=43847174525872289F2B72441CAE5FB0F36D78E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:92:21:57:15:97:0d:c7:ac:65:f9:bb:c9:c3:
b9:63:67:02:38:ba:57:0e:ab:0b:2b:e9:25:31:33:
ef:7c:7b:56:df:22:e1:24:39:59:7b:e5:1e:12:77:
a3:5b:de:2b:d5:3d:09:d8:c9:ae:c1:11:5e:04:c7:
19:ce:f6:ee:96:2e:2a:12:14:44:9c:68:69:af:e9:
72:ef:10:50:7a:b3:44:e4:7f:0e:03:e9:91:ca:95:
af:15:e6:64:ed:97:05:d3:28:66:0c:34:3b:9a:d7:
a1:4a:a4:36:b8:c3:f3:b7:38:ac:bb:cd:58:3e:89:
9e:e2:10:c2:b6:5b:9e:01:9b:ff:a4:28:90:85:39:
58:c9:0f:54:eb:3e:b0:ff:8c:e1:f4:ad:3d:a2:86:
07:77:37:0d:ae:e5:de:bb:2c:74:48:26:74:53:3e:
1a:6e:61:b6:3c:51:e5:d6:ee:ac:e4:bd:58:17:76:
7b:03:e6:8a:db:40:fc:b6:6a:92:b9:4c:29:76:57:
a2:66:9c:96:1e:fd:cc:4e:d1:76:a9:e1:5c:43:69:
15:35:c7:46:96:f5:3d:0f:6b:f1:bd:e3:f9:fe:fe:
57:92:08:45:c8:ae:08:d7:99:a2:93:22:a6:e3:17:
f0:61:a7:60:fd:a2:7d:a5:31:44:69:ed:52:40:ea:
1a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:84:71:74:52:58:72:28:9F:2B:72:44:1C:AE:5F:B0:F3:6D:78:E6
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e33312e3135312e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.151.0/24
Signature Algorithm: sha256WithRSAEncryption
66:cb:60:1c:d6:6b:fb:13:76:f6:1f:7a:7b:63:45:9c:07:e8:
23:3a:22:24:89:41:a3:df:0e:a8:ac:9c:0f:94:7e:bd:ab:72:
10:65:be:79:f1:1f:60:22:61:5d:20:b5:fd:ce:8c:63:c6:86:
e3:2d:be:97:ec:2f:34:4d:b0:53:d8:6e:26:19:4a:50:3e:46:
c4:06:0d:9e:92:9d:5e:7e:a4:ed:3e:96:23:18:62:32:d6:c6:
3d:55:94:35:a8:70:e9:13:76:93:f7:f6:e3:8a:2c:4e:09:4a:
06:93:82:f1:fb:b7:d2:81:d3:96:0e:d5:43:fa:3a:f0:12:6f:
e8:7c:81:13:fe:49:86:09:6d:b8:6b:5f:af:11:e2:7f:f5:a8:
f2:66:8b:7a:c9:12:e7:c9:5b:f2:16:c7:23:35:13:40:f4:f4:
c8:bf:5f:cf:30:b5:f1:e8:db:28:0a:72:2c:4e:d5:21:8c:44:
0e:3f:84:d9:c2:4b:9f:64:93:89:af:96:af:d4:28:33:80:a0:
f3:f0:bb:f0:69:f9:96:09:fc:a7:5a:8f:f6:42:33:11:ce:07:
37:79:40:38:c8:7c:3c:21:63:02:31:3c:f2:7d:36:13:ea:aa:
23:fa:ce:a9:8b:5e:29:a0:a9:39:75:7f:83:a7:40:ec:cd:4d:
54:11:d1:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:42:21 2025 by rpki-client