Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3137382e3231322e33322e302f32342d3234203d3e203632323430.roa
File: 3137382e3231322e33322e302f32342d3234203d3e203632323430.roa (raw, json)
Hash identifier: V53GlV4nLCQD8+Dp4gZtLVD5XiAwEhKOEu0xuRyzMu8=
Subject key identifier: 73:D1:6C:3B:B4:46:4B:E4:24:32:99:03:C3:B8:2A:D9:33:3A:DC:F5
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 62AC7391F5A148C6A8771A9CCE2CC1F74C4396B6
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3137382e3231322e33322e302f32342d3234203d3e203632323430.roa
Signing time: Mon 01 Apr 2024 14:03:20 +0000
ROA not before: Mon 01 Apr 2024 13:58:20 +0000
ROA not after: Mon 31 Mar 2025 14:03:20 +0000
asID: 62240
IP address blocks: 178.212.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:ac:73:91:f5:a1:48:c6:a8:77:1a:9c:ce:2c:c1:f7:4c:43:96:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Apr 1 13:58:20 2024 GMT
Not After : Mar 31 14:03:20 2025 GMT
Subject: CN=73D16C3BB4464BE424329903C3B82AD9333ADCF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f2:eb:96:08:0d:fc:d6:2f:1c:42:c3:d2:65:
a2:4c:eb:3e:7c:e4:21:06:b3:1b:f7:69:d6:64:09:
c7:76:e1:db:9a:f5:51:fc:9a:3f:9b:74:e5:25:24:
02:16:fa:e2:5e:30:ed:bf:67:cb:b1:46:1d:88:99:
5a:e1:bb:87:43:df:9d:42:38:cc:9c:a1:11:67:00:
4f:2c:6e:e4:7c:b8:7a:3d:b2:4e:d0:a9:1b:3d:a7:
a8:0b:8e:4b:43:e0:2b:9a:df:69:d1:b9:d6:84:86:
50:ce:92:21:fa:43:6d:34:ec:43:1e:cf:9a:21:15:
4f:a6:9e:92:bb:48:5a:aa:8e:12:58:fe:26:3d:fb:
f1:8c:07:f3:8a:c1:40:b4:f5:86:71:7b:b1:5e:3b:
53:de:3d:c0:69:39:b0:4f:bb:ed:16:5e:0e:d7:a3:
1b:90:6f:80:27:a0:f3:4a:35:c8:a7:8a:3d:88:f9:
af:69:c3:54:30:0c:33:1a:9f:f3:70:6b:5d:3e:c3:
8d:16:34:2f:e7:42:44:18:34:31:36:95:04:80:ee:
f2:cc:c6:6b:a0:b7:87:b2:0d:74:49:1b:af:af:bc:
1f:9f:0a:cf:f4:fa:93:c9:b6:7e:91:02:71:4b:95:
a4:eb:3c:a4:ea:dd:d4:16:b7:b1:e5:37:d4:dc:c5:
43:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:D1:6C:3B:B4:46:4B:E4:24:32:99:03:C3:B8:2A:D9:33:3A:DC:F5
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3137382e3231322e33322e302f32342d3234203d3e203632323430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.212.32.0/24
Signature Algorithm: sha256WithRSAEncryption
34:22:c5:ac:d0:59:3a:ab:6b:65:75:0f:81:55:da:a3:1b:70:
9e:f2:1a:c1:df:5e:d0:78:41:59:93:fa:25:0d:be:c5:08:10:
f0:17:f1:17:70:70:49:5b:c3:96:ab:05:e8:5d:9b:a0:74:59:
af:af:36:96:95:7f:14:ec:aa:00:e8:b6:c1:42:ae:fb:42:63:
39:c3:e7:b6:6e:2e:c4:00:6d:2d:e0:8f:24:88:cc:d4:27:d7:
11:ad:1a:b6:d6:f7:35:d1:fc:58:07:f1:25:91:7b:71:8c:13:
4c:f2:bb:50:ef:80:4d:cb:29:8c:c5:1b:55:55:f1:0e:c7:d4:
c8:96:78:ed:bf:97:d3:02:af:a3:d4:0b:bc:80:50:23:44:8b:
02:2a:40:e9:e6:60:a1:0d:3b:e6:d0:29:b1:2d:20:35:17:3d:
2c:c4:79:0a:aa:d3:37:fd:5a:7f:c8:30:f5:24:ff:dc:db:af:
01:d9:fa:0c:5a:a6:3d:e1:15:9e:0f:e8:57:48:f9:2e:4a:43:
30:a0:7b:79:a7:6d:fc:8e:48:ff:d5:57:59:b9:ed:f6:41:7e:
a1:2b:4c:ac:e4:8c:16:ef:a6:62:c1:10:ec:82:a6:c7:40:90:
f1:ca:6c:19:a4:91:b2:27:9c:e3:a4:e8:72:16:e4:14:ad:90:
05:f8:a9:ac
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUYqxzkfWhSMaodxqczizB90xDlrYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWQ3MDg0NTgyMmE2MTQwOGVjMmE1ZmQ1ODBjMTMyZGE3
NzdmMDlkMTAeFw0yNDA0MDExMzU4MjBaFw0yNTAzMzExNDAzMjBaMDMxMTAvBgNV
BAMTKDczRDE2QzNCQjQ0NjRCRTQyNDMyOTkwM0MzQjgyQUQ5MzMzQURDRjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC18uuWCA381i8cQsPSZaJM6z58
5CEGsxv3adZkCcd24dua9VH8mj+bdOUlJAIW+uJeMO2/Z8uxRh2ImVrhu4dD351C
OMycoRFnAE8sbuR8uHo9sk7QqRs9p6gLjktD4Cua32nRudaEhlDOkiH6Q2007EMe
z5ohFU+mnpK7SFqqjhJY/iY9+/GMB/OKwUC09YZxe7FeO1PePcBpObBPu+0WXg7X
oxuQb4AnoPNKNcinij2I+a9pw1QwDDMan/Nwa10+w40WNC/nQkQYNDE2lQSA7vLM
xmugt4eyDXRJG6+vvB+fCs/0+pPJtn6RAnFLlaTrPKTq3dQWt7HlN9TcxUM7AgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUc9FsO7RGS+QkMpkDw7gq2TM63PUwHwYDVR0j
BBgwFoAUXXCEWCKmFAjsKl/VgMEy2nd/CdEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzgvNUQ3MDg0NTgyMkE2MTQwOEVDMkE1RkQ1ODBDMTMyREE3NzdGMDlEMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hYQ0VXQ0ttRkFqc0tsX1ZnTUV5Mm5k
X0NkRS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzgvMzEzNzM4MmUzMjMxMzIyZTMz
MzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNjMyMzIzNDMwLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
stQgMA0GCSqGSIb3DQEBCwUAA4IBAQA0IsWs0Fk6q2tldQ+BVdqjG3Ce8hrB317Q
eEFZk/olDb7FCBDwF/EXcHBJW8OWqwXoXZugdFmvrzaWlX8U7KoA6LbBQq77QmM5
w+e2bi7EAG0t4I8kiMzUJ9cRrRq21vc10fxYB/ElkXtxjBNM8rtQ74BNyymMxRtV
VfEOx9TIlnjtv5fTAq+j1Au8gFAjRIsCKkDp5mChDTvm0CmxLSA1Fz0sxHkKqtM3
/Vp/yDD1JP/c268B2foMWqY94RWeD+hXSPkuSkMwoHt5p238jkj/1VdZue32QX6h
K0ys5IwW76ZiwRDsgqbHQJDxymwZpJGyJ5zjpOhyFuQUrZAF+Kms
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:18:31 2025 by rpki-client