Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/33372e34342e3234342e302f32332d3234203d3e203437353833.roa
File: 33372e34342e3234342e302f32332d3234203d3e203437353833.roa (raw, json)
Hash identifier: gwz30k6R1f8fnvIa0hBHawvGmybj3zqTL2fuEthGceU=
Subject key identifier: 1D:1D:59:DB:F3:B9:3F:7A:9E:DB:C9:89:DF:12:08:32:69:20:B3:01
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 1968FDD8BB3C98F60093D81C07A5352C50FB6FAD
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/33372e34342e3234342e302f32332d3234203d3e203437353833.roa
Signing time: Mon 27 Jan 2025 09:44:49 +0000
ROA not before: Mon 27 Jan 2025 09:39:49 +0000
ROA not after: Mon 26 Jan 2026 09:44:49 +0000
asID: 47583
IP address blocks: 37.44.244.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:68:fd:d8:bb:3c:98:f6:00:93:d8:1c:07:a5:35:2c:50:fb:6f:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Jan 27 09:39:49 2025 GMT
Not After : Jan 26 09:44:49 2026 GMT
Subject: CN=1D1D59DBF3B93F7A9EDBC989DF1208326920B301
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9e:96:80:d5:62:36:5f:9a:e6:2e:6f:24:ef:
09:bc:53:d6:29:69:99:82:83:ad:e8:82:17:72:97:
d8:c9:20:1c:eb:2d:ac:6f:5b:35:70:03:c2:68:63:
de:a1:64:05:b5:8b:3b:09:91:29:54:f0:cd:be:b8:
61:7c:28:0f:32:3c:cb:8d:02:c1:b3:81:20:98:7b:
81:8d:b4:39:25:38:a5:dc:bd:91:7a:93:74:af:43:
11:8d:64:1a:5c:ee:69:c1:6f:6e:04:b0:34:ef:e2:
5a:20:77:99:31:c5:6a:2d:cd:0f:f3:91:0b:ef:27:
28:71:56:14:75:43:aa:f0:64:50:4d:c0:41:bd:67:
5d:7b:ff:0c:79:3e:95:ed:5e:7d:1f:10:0a:f4:c9:
8c:61:66:4e:f6:43:8a:af:be:00:6b:35:9a:dc:33:
f0:e9:08:45:67:e6:fb:19:62:ff:af:75:91:05:2b:
ed:6c:65:f9:01:7f:61:db:a8:59:9f:43:af:8c:f7:
c8:c9:ae:22:2b:35:54:99:45:48:28:dd:1f:f9:dc:
e3:49:b0:3d:54:2b:9e:4f:d5:21:38:5e:3b:67:44:
81:9c:38:48:3f:d2:11:5b:4f:92:ec:23:a3:5f:fe:
d6:c9:0f:8d:c5:3f:10:85:3b:1b:c3:0f:1a:1a:06:
53:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:1D:59:DB:F3:B9:3F:7A:9E:DB:C9:89:DF:12:08:32:69:20:B3:01
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/33372e34342e3234342e302f32332d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.44.244.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:fb:e0:82:2d:79:43:d6:62:36:30:33:ce:4c:91:00:6f:79:
35:c4:37:28:11:39:76:b7:be:8e:9a:ab:91:51:a5:2f:a5:af:
99:4b:f0:60:8c:9f:04:20:57:46:78:e0:31:4e:81:57:65:ae:
8a:ca:4d:c5:bc:1c:61:4f:14:3a:9c:94:65:f9:68:a2:23:59:
51:82:b6:24:2a:e9:5d:22:82:fc:7b:7e:00:ab:5b:24:26:dc:
ac:e7:55:09:ff:e5:41:f6:05:9a:96:ed:93:7d:e0:9a:f9:a1:
cf:b8:26:7a:66:e4:55:b5:c7:82:75:df:d5:d1:8f:a9:7e:7b:
4b:dc:c8:78:64:16:6c:06:77:05:f0:1f:b6:b9:29:df:96:78:
7c:08:b6:a2:c6:aa:3b:6f:22:79:99:1e:9e:2d:f5:98:4a:be:
94:69:a9:c0:f7:14:8b:03:cc:27:b5:97:6f:a4:fa:d5:8a:28:
1c:2f:a9:bd:b8:a0:a4:2e:f5:df:42:fb:d7:d8:c7:b6:2f:46:
c0:e2:77:10:d0:94:63:0a:fb:24:7a:49:d9:ce:1d:a8:bf:78:
37:19:50:57:7d:9d:08:13:9d:22:35:13:4a:5d:e0:23:e7:9e:
a5:53:3c:a3:d5:cc:76:aa:cb:35:ac:04:94:40:60:62:e8:d4:
58:95:e5:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:49:40 2025 by rpki-client