Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e352e3135382e302f32342d3234203d3e203437353833.roa
File: 3139342e352e3135382e302f32342d3234203d3e203437353833.roa (raw, json)
Hash identifier: isMaGju9pha2nvdTDI5AlRuFPa01qqLLnk4YDbl88sI=
Subject key identifier: 84:C7:9E:33:CD:48:F2:64:A3:D1:AF:B4:B4:81:6A:C2:1B:F7:E8:AA
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 0B7303B401EC241370A4B27F5F42575CF4BD2A94
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e352e3135382e302f32342d3234203d3e203437353833.roa
Signing time: Mon 27 Jan 2025 09:44:49 +0000
ROA not before: Mon 27 Jan 2025 09:39:49 +0000
ROA not after: Mon 26 Jan 2026 09:44:49 +0000
asID: 47583
IP address blocks: 194.5.158.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:73:03:b4:01:ec:24:13:70:a4:b2:7f:5f:42:57:5c:f4:bd:2a:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Jan 27 09:39:49 2025 GMT
Not After : Jan 26 09:44:49 2026 GMT
Subject: CN=84C79E33CD48F264A3D1AFB4B4816AC21BF7E8AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:28:bd:71:45:c0:af:88:4d:86:38:76:eb:a1:
3a:8f:fa:f8:93:31:98:23:5d:02:4d:cf:a1:de:4b:
d1:a6:b0:7e:11:10:c3:72:66:ff:86:aa:99:fd:3e:
ab:b6:ba:8d:90:d0:2d:29:20:33:63:e4:3b:07:05:
66:7d:24:e6:25:9b:4a:ed:d9:cd:db:43:80:e4:17:
c5:ff:3e:bf:91:0a:9c:e7:3c:9a:07:c4:ce:76:9b:
1d:e4:23:b4:a7:ca:e6:ab:a7:b5:90:71:50:0c:38:
5d:5a:b0:0e:63:5a:23:a6:3f:f4:5d:8b:e4:2d:ce:
e6:37:db:61:6c:35:33:d1:b7:0f:36:34:a1:6c:3e:
35:53:39:e1:36:ec:23:35:52:79:af:5e:8b:b3:65:
09:d8:d3:65:aa:95:1e:db:fe:62:45:5b:2f:3d:9f:
ed:6b:12:4a:b4:5b:93:f7:99:69:d9:8a:9f:86:86:
07:94:77:b0:7f:61:42:83:4e:05:9b:b9:76:25:ef:
55:1c:b0:3c:06:74:7e:52:7f:6b:7c:8f:f2:b3:7d:
43:8d:ee:27:7b:79:2d:69:2f:96:5b:bc:5a:12:63:
8e:96:f0:0a:59:31:dd:e2:96:e0:78:4f:ad:dd:f2:
d1:21:d1:9c:da:c0:d3:cf:ac:a6:a7:7c:7b:7a:6c:
2a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:C7:9E:33:CD:48:F2:64:A3:D1:AF:B4:B4:81:6A:C2:1B:F7:E8:AA
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e352e3135382e302f32342d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.158.0/24
Signature Algorithm: sha256WithRSAEncryption
00:d9:e2:b7:7b:33:a4:2e:f8:a1:74:31:b6:60:46:72:62:f7:
ec:50:41:0b:7c:09:82:ff:a9:45:4d:89:a7:69:a8:0d:fd:8e:
e9:c5:f6:91:c1:ef:16:d5:95:b4:ec:77:91:a3:79:ba:5c:ab:
15:73:23:21:83:72:4c:6c:fa:48:a3:02:1c:76:25:c8:2a:2c:
e7:c6:31:2c:8c:30:cf:d8:86:0d:30:11:17:af:cd:c1:0d:2a:
b9:74:7b:cb:3f:b3:bc:eb:c2:0f:fa:35:b5:2a:2d:ea:eb:57:
a9:d0:45:c1:5f:17:98:f9:1d:31:cc:40:c1:b4:96:a7:6e:62:
32:b1:25:90:91:e3:39:96:19:84:8e:73:42:7f:4e:68:ea:1b:
1b:9a:b3:71:8d:99:54:b2:71:ab:c8:2d:b5:55:6d:f7:15:94:
47:9f:c5:0f:71:5d:0d:56:71:7a:ef:e5:1a:8c:db:ef:fd:b6:
de:fb:41:80:3c:dc:e3:a8:90:b2:6f:e7:43:ec:c1:bf:59:58:
78:76:6a:52:5d:29:ba:ca:2c:83:62:72:ff:d3:2f:42:0b:ac:
7d:c5:d8:99:35:c5:7d:a5:60:d1:0f:ac:a8:0f:c7:e9:9c:69:
f3:72:33:11:3b:b8:1f:d3:c0:41:24:af:08:13:d2:d0:10:cb:
54:03:06:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:35:49 2025 by rpki-client