Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3137362e39372e3230362e302f32342d3234203d3e20313336373837.roa
File: 3137362e39372e3230362e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: Z7BoS7xRJtGjslvgPh3TGcPq9NLlL4V4/Yh4RQ24sZs=
Subject key identifier: A1:9B:3F:1E:24:FF:BE:58:7C:D5:F3:D0:33:F5:85:71:CF:6E:1E:3F
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 5B135EA09A09E121661CDB1C7EEF7A205BFBC78E
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3137362e39372e3230362e302f32342d3234203d3e20313336373837.roa
Signing time: Wed 27 Nov 2024 15:44:24 +0000
ROA not before: Wed 27 Nov 2024 15:39:24 +0000
ROA not after: Wed 26 Nov 2025 15:44:24 +0000
asID: 136787
IP address blocks: 176.97.206.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:13:5e:a0:9a:09:e1:21:66:1c:db:1c:7e:ef:7a:20:5b:fb:c7:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Nov 27 15:39:24 2024 GMT
Not After : Nov 26 15:44:24 2025 GMT
Subject: CN=A19B3F1E24FFBE587CD5F3D033F58571CF6E1E3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:46:2c:1a:42:97:90:5c:58:26:5e:c0:15:dc:
ff:31:77:1d:88:17:a4:b3:c2:f3:3f:54:ed:f1:a5:
77:59:26:3d:65:cb:29:80:aa:3b:cb:e4:ca:a5:21:
59:97:a2:1e:62:41:0d:b1:d4:ed:86:56:74:46:80:
76:8f:51:02:df:29:71:64:e0:fe:af:e8:49:e7:71:
2b:61:bf:f5:32:77:03:7b:b9:5f:73:39:fe:4a:1f:
fc:50:a0:63:c9:c9:6a:9f:7c:88:c5:cd:6b:ff:c1:
cf:9c:22:6e:2d:c2:87:0e:8b:3f:96:96:68:b5:95:
ef:a8:98:4a:24:fc:08:b0:2d:0c:5e:7c:2d:d3:9e:
9c:12:15:82:f1:76:66:cc:7f:ee:3d:7a:a2:6d:ae:
f6:bc:fe:73:2f:ba:83:ad:96:9a:bb:53:2e:05:98:
3e:32:4d:f6:fd:da:06:f7:5f:dd:54:a7:a9:11:61:
9e:e6:dd:94:b6:16:1b:16:b3:ef:8a:ce:15:e3:ec:
d3:e7:71:89:d5:5c:f2:6a:02:82:a0:d1:7c:e6:75:
e8:f6:5c:d9:af:80:a5:49:8b:94:de:8d:3d:02:18:
e1:06:e6:ca:8c:28:5f:e5:0f:c1:f0:17:e4:4b:fc:
72:54:7b:bc:25:96:c8:8a:ca:8f:01:ba:c8:1d:d9:
a0:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:9B:3F:1E:24:FF:BE:58:7C:D5:F3:D0:33:F5:85:71:CF:6E:1E:3F
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3137362e39372e3230362e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.206.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:12:1a:ce:74:1a:9c:82:86:c7:37:ab:e1:96:f0:ce:6e:03:
58:b8:39:f5:9f:47:09:e2:dc:e3:83:46:93:2b:56:d6:fb:ac:
fb:d0:4f:bd:8e:7a:18:9e:b7:81:ff:5f:13:62:78:55:ca:24:
63:da:cd:16:5f:75:14:9e:23:eb:87:9c:76:99:38:85:98:2b:
3b:fa:84:61:34:c2:cb:58:f5:56:7a:b4:ea:76:f8:4f:46:1d:
bd:5f:08:a1:e1:1c:0b:43:63:14:bb:d3:0a:ce:8f:eb:3f:25:
5c:98:77:a3:f2:4c:ec:40:3d:09:ab:a1:0e:c0:be:fd:30:55:
05:49:c6:ae:2f:8a:40:c6:41:d3:ef:6e:0d:d0:42:82:53:52:
68:ac:e7:de:6b:c4:dd:48:a9:ab:b0:38:f4:c6:1a:64:af:fc:
23:fd:00:da:b8:f9:7c:7f:3a:ce:bb:20:fc:67:33:5b:c1:dc:
1c:b3:0f:2a:b7:3d:d6:3d:e4:55:13:ac:42:6c:06:31:af:20:
9f:e3:b3:c4:b8:7c:19:6b:5b:7d:85:7d:e0:07:9c:1a:ea:d2:
bb:36:0e:44:0e:8e:2b:cd:89:b9:1b:ac:d8:cd:f3:bb:51:cb:
01:d1:8d:c7:ba:5d:c2:e8:3e:ca:88:b7:a4:32:a0:dc:46:bd:
f9:89:ae:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:45:14 2025 by rpki-client