Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139332e3134382e37342e302f32342d3234203d3e20313336373837.roa
File: 3139332e3134382e37342e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: ZPRSxf320/dvZrjZAEWVumdFPd9UdmvtZSJdc5mruS4=
Subject key identifier: 69:51:CC:21:DE:C2:2B:13:A2:D7:EB:E9:17:6D:D8:9F:C1:D8:31:CA
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 70E0C8E4D809FB5AB6403F39BC53E71C36C3E378
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139332e3134382e37342e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 27 Oct 2024 20:05:15 +0000
ROA not before: Sun 27 Oct 2024 20:00:15 +0000
ROA not after: Sun 26 Oct 2025 20:05:15 +0000
asID: 136787
IP address blocks: 193.148.74.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:e0:c8:e4:d8:09:fb:5a:b6:40:3f:39:bc:53:e7:1c:36:c3:e3:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Oct 27 20:00:15 2024 GMT
Not After : Oct 26 20:05:15 2025 GMT
Subject: CN=6951CC21DEC22B13A2D7EBE9176DD89FC1D831CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:23:8f:ca:22:c2:b0:e9:5f:15:17:88:46:5a:
65:91:42:38:7b:5e:bc:92:a2:cf:00:d6:22:36:ff:
2c:6a:c8:b6:6f:49:e3:5c:b6:16:d0:ed:ae:e4:d1:
3e:0e:24:66:11:b7:ac:07:27:d9:cf:2d:bf:b6:fc:
62:a1:2d:1a:8e:d9:b6:7b:8f:28:11:dd:57:ce:f2:
1a:a2:e2:06:09:f3:02:b6:0a:3d:02:b3:39:c9:e3:
86:1e:98:75:dd:ec:fc:21:49:fc:1e:33:13:a8:f0:
05:33:87:b5:9b:3f:aa:82:8d:44:4f:7f:72:af:92:
1c:9b:55:31:69:e6:b3:9b:a9:71:b7:65:32:e6:ae:
3e:8a:39:9e:ff:af:10:d3:68:76:78:9d:5b:fe:8e:
eb:06:8f:9b:91:a7:95:21:69:aa:f9:da:2b:be:47:
2b:f0:f2:35:80:3c:b7:f5:99:1a:ec:c9:86:03:f4:
35:61:1b:44:bc:35:53:90:60:1d:19:3e:0d:d9:95:
6f:b5:50:78:d6:84:33:dc:c9:f4:50:1a:a9:7e:a0:
18:92:12:47:a2:83:f5:66:64:6e:49:bf:36:a1:83:
47:fe:26:31:5b:34:01:62:a6:ee:1a:e9:8d:40:32:
cd:5b:45:b3:2c:6c:65:01:c1:a3:aa:c2:e9:c1:70:
0e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:51:CC:21:DE:C2:2B:13:A2:D7:EB:E9:17:6D:D8:9F:C1:D8:31:CA
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139332e3134382e37342e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.148.74.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:ea:d4:f2:62:7f:24:e0:59:bd:3b:a5:4a:f1:91:99:be:9f:
66:f0:6b:53:6d:a8:40:d0:d9:a1:bd:67:d1:87:5e:b2:91:25:
b5:04:85:0d:db:d7:bc:1a:f9:1f:ec:d9:26:3e:e2:a8:83:86:
9c:42:c1:9f:41:5c:3c:94:b1:89:5d:23:02:2d:3f:e9:2b:8b:
65:29:56:a9:95:94:38:ed:ae:6c:63:c4:a3:43:67:51:95:11:
47:15:8a:b0:69:e6:6c:c7:61:3e:7c:10:43:21:a0:14:05:f5:
c8:c9:03:95:9c:e4:52:c2:c4:8c:d9:3b:c9:1c:fc:31:db:57:
0d:7e:e2:6c:91:a2:e8:ea:27:1c:54:5c:21:99:66:3c:e9:40:
43:0e:25:18:22:fe:96:c9:ee:b9:03:28:ca:75:9a:97:66:23:
26:e9:92:03:d4:ac:ed:52:b2:84:f4:08:08:db:3f:81:4a:fb:
23:d6:31:e2:8c:05:2f:cb:48:99:07:b0:70:f8:f0:45:3a:fe:
fb:a7:4c:f8:5a:4c:15:ae:50:6b:25:0e:06:cd:ec:fc:a2:dd:
fb:f1:0f:1e:0b:47:f4:d5:2d:1e:b2:1a:7c:54:3d:7d:09:d6:
29:79:f9:27:09:e0:75:84:6d:8a:de:12:9a:e6:b1:14:2b:d3:
dd:0d:6b:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:39:26 2025 by rpki-client