Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/39312e3234322e3234382e302f32342d3234203d3e20313336373837.roa
File: 39312e3234322e3234382e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: KEpjVUplrip0Khg6XYOBfMN2600SY5nOngiI6uFF55g=
Subject key identifier: 1E:14:18:74:AE:22:92:E6:AF:0B:0C:A6:2D:25:6C:73:C5:B2:E3:F6
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 68C96D6EE3D6CBB486C3CF62A0DF758FA0DF4626
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/39312e3234322e3234382e302f32342d3234203d3e20313336373837.roa
Signing time: Wed 27 Nov 2024 15:44:24 +0000
ROA not before: Wed 27 Nov 2024 15:39:24 +0000
ROA not after: Wed 26 Nov 2025 15:44:24 +0000
asID: 136787
IP address blocks: 91.242.248.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:c9:6d:6e:e3:d6:cb:b4:86:c3:cf:62:a0:df:75:8f:a0:df:46:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Nov 27 15:39:24 2024 GMT
Not After : Nov 26 15:44:24 2025 GMT
Subject: CN=1E141874AE2292E6AF0B0CA62D256C73C5B2E3F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ab:d6:fc:f1:a7:e4:0d:44:a6:90:ad:a4:23:
2d:84:a9:02:5c:f0:09:71:2f:3b:98:22:06:9a:b8:
bb:3d:90:d1:ac:76:55:cd:9f:7b:f4:42:6b:cb:77:
48:ef:06:c2:c3:c3:53:d5:12:2a:7f:49:f5:00:8e:
fe:a7:ff:1e:31:0d:a2:02:ff:00:1a:02:3c:d1:0d:
09:c4:20:c2:ff:c0:80:26:78:6e:94:9c:cc:e3:d5:
c0:cb:43:bf:04:62:b4:e3:05:c2:7c:e4:8e:65:bd:
d3:97:32:bc:46:40:ae:91:90:eb:36:4c:0d:2d:a8:
ad:de:12:e6:be:11:a1:a2:80:72:be:70:12:f8:6b:
46:2a:a4:12:33:a7:54:ac:7f:43:f5:f0:cb:8a:07:
d7:89:2d:b3:2c:57:5d:c3:b7:28:b9:3b:cf:3d:fa:
89:2f:85:43:6d:b7:5f:61:04:fd:86:d0:55:d7:af:
42:83:59:4f:ed:0f:3d:2c:ac:f7:c0:99:64:64:41:
8d:84:e0:c8:b6:61:12:fd:37:91:92:69:ba:d6:1d:
00:49:3a:1a:c7:8a:43:b2:df:bb:9d:b4:0d:38:13:
91:1a:86:f9:a3:4a:16:ae:0c:2c:26:7a:67:a1:d5:
20:e3:e9:87:4b:16:94:7a:42:9e:25:de:60:00:9f:
72:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:14:18:74:AE:22:92:E6:AF:0B:0C:A6:2D:25:6C:73:C5:B2:E3:F6
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/39312e3234322e3234382e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.248.0/24
Signature Algorithm: sha256WithRSAEncryption
89:56:aa:28:f7:b0:7b:b6:16:be:15:e3:31:e3:9d:e8:d5:ea:
6e:2c:67:2d:df:fb:1c:ab:4d:91:38:ea:77:b9:bb:fc:f6:6f:
57:69:af:cc:1b:49:cf:49:f1:84:b0:d7:b7:5a:4f:39:f6:c1:
6c:2a:b0:c1:7d:8f:67:89:2e:41:22:80:dc:b3:c9:70:70:7f:
40:e5:a9:e5:0b:8e:a9:c5:ad:cb:aa:47:ec:a8:13:2c:e8:b7:
c3:2c:f9:b3:ff:2b:29:e6:db:4a:d9:1c:e6:77:f7:05:18:90:
ef:5e:4f:90:63:c2:b4:2d:42:da:2f:16:4a:0a:a8:66:bf:4a:
89:2b:f4:54:36:ad:f7:d2:64:4a:e7:80:2b:4c:7d:e1:37:55:
70:59:ef:51:1e:64:74:ea:9b:c4:8e:30:be:0b:b7:71:b0:df:
79:c7:f2:d5:a3:93:36:48:23:39:4a:f0:53:b0:08:2b:9e:9b:
e7:39:b8:37:5a:3d:81:c9:d0:3c:e9:9e:4f:37:69:82:8e:e0:
00:26:8b:80:76:ae:e9:04:74:db:ba:90:ec:81:4d:01:2e:7f:
e0:65:80:93:ae:ce:69:44:fb:e1:5f:32:b2:b5:19:20:92:ac:
28:8f:93:a2:d7:58:92:80:f6:1a:ed:ac:f1:b9:97:26:e8:6a:
a7:ee:41:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:48:33 2025 by rpki-client