Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139342e3131332e36362e302f32342d3234203d3e20383334.roa
File: 3139342e3131332e36362e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: eA1Hio+6wsd8gP85tFSipXhjbcoNYFcRkEK8//Et74E=
Subject key identifier: 1E:04:7E:53:50:A3:68:84:F9:7B:8A:2A:74:EB:A5:CC:62:C6:18:94
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 62919DDB2628A81EEA7419A2D20C3849A7C75D87
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139342e3131332e36362e302f32342d3234203d3e20383334.roa
Signing time: Wed 09 Oct 2024 09:05:11 +0000
ROA not before: Wed 09 Oct 2024 09:00:11 +0000
ROA not after: Wed 08 Oct 2025 09:05:11 +0000
asID: 834
IP address blocks: 194.113.66.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:91:9d:db:26:28:a8:1e:ea:74:19:a2:d2:0c:38:49:a7:c7:5d:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Oct 9 09:00:11 2024 GMT
Not After : Oct 8 09:05:11 2025 GMT
Subject: CN=1E047E5350A36884F97B8A2A74EBA5CC62C61894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c9:6d:67:f5:71:eb:3b:ed:66:50:73:bf:89:
f4:1e:1b:1c:41:6a:b5:ee:da:fb:30:17:d0:62:b7:
d4:aa:4c:4f:b9:62:f1:c5:a9:18:a3:32:0c:61:5b:
82:a6:f1:ce:3e:69:6c:86:46:96:e8:93:2c:8e:9a:
1e:88:7a:48:b7:92:f6:ac:c5:fa:4f:cd:5a:35:98:
9b:36:12:63:82:f6:9e:fc:5f:50:fc:31:bb:75:1f:
52:33:75:83:a7:71:66:fd:62:e8:3e:1f:e8:d5:12:
6b:6f:3c:0d:88:98:be:62:28:b3:b1:36:2f:8b:b5:
ab:d6:d9:99:56:4d:de:26:04:b7:94:8e:8d:5d:80:
58:6b:fe:04:95:2b:c9:4d:9b:e7:02:19:81:be:bb:
38:b4:8e:6d:93:03:bd:ae:85:d6:22:cf:dd:df:57:
c8:cb:36:9d:cc:cd:a5:41:2d:48:d2:04:89:36:ba:
98:28:cd:1b:96:85:77:0e:38:df:13:10:a2:1a:f0:
36:72:1a:c6:54:b0:6a:68:53:08:1d:0e:14:ff:d2:
4d:45:74:da:60:d7:ed:08:40:fe:7e:08:71:1e:73:
bb:0c:6c:dc:49:76:12:fa:da:1b:49:9a:2c:3e:27:
b7:5d:43:87:86:f6:0f:24:8b:12:ab:4c:02:89:5d:
fd:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:04:7E:53:50:A3:68:84:F9:7B:8A:2A:74:EB:A5:CC:62:C6:18:94
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139342e3131332e36362e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.66.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:21:07:f1:88:d2:dc:6e:93:7c:70:f8:4e:23:95:27:6b:22:
bf:d7:3a:e5:62:fa:a1:e8:79:c7:53:b3:f7:6a:59:a5:7a:bb:
d8:c5:e5:81:b1:b9:ed:30:f2:7f:55:5e:1b:cb:ee:c5:c1:07:
90:18:9e:aa:e8:a3:ba:e2:c0:54:2d:02:dd:52:38:bc:83:13:
e4:dd:b4:86:d6:2d:94:9f:33:56:51:47:31:bc:bd:60:c4:cf:
ab:fe:df:dd:63:63:92:45:7b:0b:19:9a:4f:a7:3a:e6:16:9f:
c3:95:54:09:97:b6:49:0d:e0:2d:99:41:48:cb:e3:48:66:44:
64:3d:4f:b3:45:7c:06:41:a0:db:d4:71:a7:60:b7:47:6a:0a:
72:7d:70:b9:1f:39:5d:e8:82:37:a3:c5:ed:81:c2:11:f3:19:
92:1f:67:b5:45:79:9b:3b:26:db:3a:ba:82:44:27:a6:3c:37:
4d:90:52:05:00:d5:9e:f5:90:69:9f:b1:6a:fa:4d:54:0c:3f:
75:d7:93:45:33:8b:40:63:5e:20:7e:4d:0d:59:62:e8:99:90:
34:17:7a:7f:62:1c:37:85:1d:3e:fe:16:86:10:d1:0f:68:37:
8c:48:90:2e:49:15:8c:fb:a1:cc:90:90:54:dc:b2:06:f9:59:
34:46:02:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 02:03:07 2025 by rpki-client