Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/352e3138322e33332e302f32342d3332203d3e203531313637.roa
File: 352e3138322e33332e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: K7y9RUeSJ6R0xZqWUytLVTnzVnFlIxxhUOw4uh+bIAs=
Subject key identifier: 6E:41:E3:71:48:D5:0B:E7:68:C2:A8:96:F9:8F:48:BC:45:BF:8C:42
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 225CF0362837B65F02FA3099A564369081519963
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/352e3138322e33332e302f32342d3332203d3e203531313637.roa
Signing time: Mon 27 Jan 2025 09:44:50 +0000
ROA not before: Mon 27 Jan 2025 09:39:50 +0000
ROA not after: Mon 26 Jan 2026 09:44:50 +0000
asID: 51167
IP address blocks: 5.182.33.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:5c:f0:36:28:37:b6:5f:02:fa:30:99:a5:64:36:90:81:51:99:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Jan 27 09:39:50 2025 GMT
Not After : Jan 26 09:44:50 2026 GMT
Subject: CN=6E41E37148D50BE768C2A896F98F48BC45BF8C42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:6b:5a:70:25:b1:1e:ab:c9:40:7d:7f:fe:e1:
b6:e5:88:02:e9:65:8f:db:3f:23:b3:85:0f:08:23:
2d:b8:9e:bd:15:7e:ce:3c:9d:b6:89:b7:47:25:ad:
23:69:25:a8:3d:32:a1:34:38:35:fe:8d:1d:ab:a9:
e8:b9:bb:29:cf:9b:82:d3:f6:3d:cf:19:bf:f1:3d:
97:ee:6b:1a:5e:50:0e:fe:02:a3:b5:e2:ee:7a:f7:
c1:54:86:a6:2e:36:6f:3e:30:30:44:42:ce:30:cb:
57:03:06:8f:31:64:b9:87:ab:9c:36:b5:e1:a6:3e:
01:d5:ef:b0:72:bf:32:b9:00:1c:2a:8f:8f:67:22:
ae:42:ec:89:12:24:ad:97:2b:ab:58:ff:34:5d:77:
2c:a9:d2:8a:01:64:6b:37:9a:93:46:12:8b:ac:d0:
9f:be:57:ef:b2:e4:fd:4c:40:6c:40:3b:d7:0e:1b:
4d:38:e9:be:65:0b:6a:b0:86:3f:98:cc:28:27:80:
b8:9c:0f:a0:b9:c2:5d:62:90:6a:82:04:a3:9e:1e:
b5:a9:9c:fe:ab:d1:92:03:e2:65:04:90:63:25:2b:
57:de:14:9f:7a:43:39:db:39:b7:59:dd:96:eb:e0:
ba:61:7f:6b:16:6a:15:01:17:75:b0:10:15:4f:df:
2a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:41:E3:71:48:D5:0B:E7:68:C2:A8:96:F9:8F:48:BC:45:BF:8C:42
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/352e3138322e33332e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.33.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:86:25:a7:00:50:6d:7e:b7:20:c1:5c:cf:f6:70:bb:fa:dc:
f1:95:28:15:e2:41:6d:97:94:ae:70:9a:46:54:35:61:fa:91:
5f:37:51:5d:7b:64:ae:89:4c:4e:e4:25:55:a7:af:51:0e:80:
ff:91:6e:33:3f:9e:93:2e:75:f3:60:a7:67:52:f7:d2:36:98:
38:ab:f5:9d:6f:7f:b0:7a:e4:c7:00:1d:44:8c:ed:6c:e6:32:
4b:be:d9:97:be:ea:d4:c8:62:44:c9:0a:40:91:b5:11:33:6a:
98:59:ce:80:98:7b:46:ab:e1:78:22:97:18:8d:9d:b4:bf:24:
74:5f:87:a3:a5:e4:7c:44:f9:19:04:94:a9:ea:28:1f:f8:39:
1c:d6:fe:79:24:5d:66:83:5c:b8:e9:e9:9f:fd:ba:40:4d:ca:
a5:b7:c3:60:02:c4:0f:c2:c8:a0:c3:b4:d5:03:98:73:f2:c8:
d8:ae:dd:46:85:bc:bb:42:ea:83:d4:e1:e4:47:fe:4d:72:1c:
ae:43:75:7d:54:43:3c:29:c2:a3:aa:88:62:9d:5e:39:34:60:
ff:52:0e:02:39:36:b6:d1:d2:dd:23:a5:78:39:7b:15:a8:c2:
1b:71:3f:73:6f:e5:14:fd:2e:b3:75:27:67:ff:bf:da:dc:7b:
cf:5d:85:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 05:01:50 2025 by rpki-client