Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/39312e3230352e3130362e302f32342d3234203d3e20313336373837.roa
File: 39312e3230352e3130362e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: PqSVxXmN6zLHJ+ZPHSc3nPYctM7bj41H/croOZ9fG7Q=
Subject key identifier: DE:58:08:D7:BE:8F:89:F7:77:7A:87:F9:A9:34:98:E9:13:B4:32:FE
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 5B53EE75BE1C55E7A071B61432BC08FAF01A1B52
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/39312e3230352e3130362e302f32342d3234203d3e20313336373837.roa
Signing time: Wed 05 Mar 2025 19:45:49 +0000
ROA not before: Wed 05 Mar 2025 19:40:49 +0000
ROA not after: Wed 04 Mar 2026 19:45:49 +0000
asID: 136787
IP address blocks: 91.205.106.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:53:ee:75:be:1c:55:e7:a0:71:b6:14:32:bc:08:fa:f0:1a:1b:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Mar 5 19:40:49 2025 GMT
Not After : Mar 4 19:45:49 2026 GMT
Subject: CN=DE5808D7BE8F89F7777A87F9A93498E913B432FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e7:7d:9e:b2:13:f7:35:c6:d7:4d:e5:31:9b:
64:30:dd:44:86:6c:60:46:db:b9:dc:84:14:32:52:
9b:d8:13:a2:48:f9:4a:0d:50:58:d2:d2:0b:e1:d7:
9e:41:23:27:4a:1e:de:b7:bc:f8:7b:54:3d:02:24:
4c:a0:fb:0b:4b:bd:36:1d:9d:60:ac:bb:6b:81:20:
b4:1e:dc:8c:50:f5:cc:29:10:97:5b:64:3d:62:bc:
bc:4b:42:34:fa:bf:5d:c7:eb:bf:0b:cc:d6:40:e6:
7c:6f:a4:44:b2:43:26:96:8e:47:1f:0c:4b:71:49:
66:ba:d6:9c:e8:16:b3:dc:da:c4:66:02:3a:a5:04:
94:8c:77:7c:de:95:ee:f1:40:8b:28:ed:54:cd:92:
34:ec:1a:4c:96:49:4f:1c:9b:41:ae:78:d5:44:68:
5f:07:50:d2:19:2b:36:88:a0:d6:9c:c7:65:eb:9c:
c0:da:95:ec:8f:fb:2a:09:c8:93:1f:f0:90:c2:68:
e0:48:b9:a3:5a:f6:a7:46:6d:d6:ef:08:83:d8:ad:
08:d0:70:36:b5:c4:9d:c8:99:31:28:6e:31:25:29:
5f:84:c0:9c:de:11:99:36:03:18:50:c0:61:4f:11:
77:c8:77:cd:5a:a9:60:6c:1c:3d:62:16:a8:02:66:
a7:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:58:08:D7:BE:8F:89:F7:77:7A:87:F9:A9:34:98:E9:13:B4:32:FE
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/39312e3230352e3130362e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.106.0/24
Signature Algorithm: sha256WithRSAEncryption
48:47:cb:c9:c3:e4:93:f5:b2:8e:d6:7a:00:ed:ba:dd:d5:ed:
bb:80:7a:5c:4d:3f:e7:6a:14:d7:45:d9:9b:1d:c0:a6:54:c9:
35:49:ea:63:49:fa:c7:15:15:22:aa:98:ae:a6:b5:2d:5c:f7:
00:2a:48:5c:e4:d6:a0:77:09:f2:83:84:a8:26:00:b1:74:55:
6a:d3:c4:82:d3:2c:e4:39:fc:41:e1:b2:e0:4a:6b:65:f6:76:
9d:d4:61:4b:8d:14:34:1e:50:b5:7d:d6:5a:26:ca:1d:f5:36:
3f:63:3e:9a:32:f8:c1:91:25:32:87:05:61:b1:6a:78:28:7f:
d7:ba:71:25:2b:ce:d5:9a:8d:ea:70:39:f7:35:58:e9:53:00:
dc:37:35:21:3d:40:70:05:68:f9:8c:21:6b:9f:29:d9:04:dd:
46:b4:3b:a1:bb:9e:82:a6:11:22:db:a0:3e:fb:02:1c:82:17:
8b:3d:1f:60:4d:05:7c:94:c7:8b:30:26:6d:2c:24:44:c3:5c:
fe:0e:cb:eb:4a:89:43:89:71:25:03:a9:bc:eb:03:85:58:b2:
60:ff:7e:f0:22:8e:c9:69:26:ab:75:16:8e:56:4c:40:97:e4:
f4:64:bd:ec:38:d6:94:25:17:56:50:03:dc:56:d6:8e:45:64:
1c:71:e1:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:01:42 2025 by rpki-client