Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/36322e3230342e34352e302f32342d3234203d3e20313336373837.roa
File: 36322e3230342e34352e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: W7BFY9PaLYBdB7kko5DEhZKP18lvqyw8QjQhJ3B8xzE=
Subject key identifier: FE:67:F1:2C:72:D1:65:04:17:26:25:A8:7C:A8:83:94:FE:32:D8:19
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 61070A9BD34C1AB9AF7BDAEE41855D3F1ED82752
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/36322e3230342e34352e302f32342d3234203d3e20313336373837.roa
Signing time: Wed 27 Nov 2024 15:44:24 +0000
ROA not before: Wed 27 Nov 2024 15:39:24 +0000
ROA not after: Wed 26 Nov 2025 15:44:24 +0000
asID: 136787
IP address blocks: 62.204.45.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:07:0a:9b:d3:4c:1a:b9:af:7b:da:ee:41:85:5d:3f:1e:d8:27:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Nov 27 15:39:24 2024 GMT
Not After : Nov 26 15:44:24 2025 GMT
Subject: CN=FE67F12C72D16504172625A87CA88394FE32D819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7f:dd:a5:aa:b9:80:63:42:dd:64:ac:37:61:
98:e8:0b:6f:7a:bb:59:f0:1a:4e:92:15:4d:68:75:
55:47:92:84:3e:a0:41:39:55:9c:8e:46:c4:7f:cd:
d2:2b:5e:fd:bd:b7:39:8c:fa:d9:69:7b:4a:4b:e3:
6a:a9:fa:0f:c3:a3:84:45:e5:0b:61:ff:f9:17:e4:
8f:96:54:c9:0b:b1:80:45:f8:d1:fa:c2:27:fb:48:
90:5d:80:24:d9:a8:27:2e:b5:58:06:96:14:d3:61:
61:cd:9f:3c:98:fc:db:81:91:9a:f7:59:6f:fc:2e:
a6:de:df:99:d9:a7:1e:7a:fc:30:f7:69:1d:5c:aa:
a3:9b:f7:45:00:91:88:dd:93:fd:b8:5f:00:db:21:
5c:0f:6b:5e:26:03:09:26:9b:27:a7:cb:55:d3:5d:
cd:19:61:57:52:27:b7:74:60:95:32:85:e7:c5:83:
73:f6:76:8b:fb:29:c7:ae:f0:67:a5:10:06:98:11:
ef:14:f5:e7:4e:e1:71:3f:f9:22:e0:4b:77:05:3a:
c8:64:f1:c5:09:d2:c3:68:58:77:75:11:b0:a4:d4:
c9:5a:81:4d:ca:c3:fb:c0:95:5b:3e:e9:64:6a:45:
2b:8c:f1:dc:7b:67:fb:c2:b4:f3:1c:d5:43:be:7e:
95:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:67:F1:2C:72:D1:65:04:17:26:25:A8:7C:A8:83:94:FE:32:D8:19
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/36322e3230342e34352e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.204.45.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:9e:36:70:ba:59:a2:82:69:af:52:42:37:aa:fb:db:e8:d3:
31:b6:38:49:0b:bd:a2:46:3b:5d:2c:e6:e1:d6:c3:e6:a6:01:
1b:9f:0d:7d:70:5e:8a:20:bd:cf:1f:91:8d:e2:b7:80:72:b4:
16:9b:ab:c9:f7:83:0b:81:7f:2e:5e:26:ae:0a:d0:b4:79:5f:
f0:24:a8:02:5d:db:50:20:6a:08:4f:e1:30:f7:1c:7d:0f:79:
17:f7:00:30:72:6a:c9:96:4f:70:80:d9:12:b1:5a:ab:40:ae:
5f:27:91:c9:eb:e3:1d:fd:94:0a:66:cf:49:d8:e9:c6:94:0c:
92:a0:f5:53:b9:f6:07:8e:7c:e9:e9:96:88:34:06:83:90:2b:
cc:a7:fd:57:dc:8f:3a:71:dc:04:9c:d1:0a:aa:86:ab:7a:8d:
8e:89:fc:4c:84:ef:d8:24:7d:de:01:71:e1:e9:b6:e3:2c:89:
45:11:84:8b:7b:4f:62:09:82:7a:30:af:ac:73:40:54:3b:82:
af:f3:ec:75:81:03:5d:0f:d6:a4:b4:e7:b2:4a:4a:b3:1a:d5:
d1:11:4b:05:e7:eb:c9:db:da:fc:f9:b3:23:35:da:9f:21:0b:
92:f5:ab:9b:57:7a:48:17:d0:e6:19:e5:48:d7:bc:4b:74:1c:
db:61:1c:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:39:44 2025 by rpki-client