Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS400810.roa
File: AS400810.roa (raw, json)
Hash identifier: 0yv+KJ6j9RXzbHAm3b1qtJX5MwMe4hebdWYFKUhl3Rg=
Subject key identifier: 58:28:A7:38:C4:60:92:C3:C8:63:34:92:2E:9B:53:12:CB:20:85:F9
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 5C6F8BA47FE72DE0BE69CE915FFA7E1A6C98C29D
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS400810.roa
Signing time: Sat 12 Apr 2025 11:56:45 +0000
ROA not before: Sat 12 Apr 2025 11:51:45 +0000
ROA not after: Sat 11 Apr 2026 11:56:45 +0000
asID: 400810
IP address blocks: 96.62.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:6f:8b:a4:7f:e7:2d:e0:be:69:ce:91:5f:fa:7e:1a:6c:98:c2:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Apr 12 11:51:45 2025 GMT
Not After : Apr 11 11:56:45 2026 GMT
Subject: CN=5828A738C46092C3C86334922E9B5312CB2085F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:6f:51:f0:e1:65:51:bc:4b:60:48:a8:1c:28:
71:ff:e5:87:2d:a7:88:c3:cc:e5:25:4a:75:87:84:
7e:cb:c1:8b:e5:3e:58:24:ed:ce:34:f8:1a:bd:84:
00:64:22:13:36:6a:8d:73:3d:cf:a3:a5:d6:32:63:
58:06:8f:a7:9c:e7:b6:64:77:b4:47:f2:1b:9d:96:
f7:4e:7e:14:58:f9:ca:ad:48:67:83:6f:53:5d:52:
5c:45:c7:84:9f:cd:cd:85:6a:17:0d:ce:2b:d2:48:
a3:c0:c4:cf:cd:3d:8b:41:7d:2f:b2:05:d3:3a:a9:
5b:16:ce:66:64:36:0c:fb:a5:45:9b:54:f2:4b:bc:
84:38:25:9d:8a:06:e0:75:94:ea:ad:8e:5c:f4:15:
6a:d2:bf:09:34:af:f8:6b:d4:42:e9:12:4b:ff:25:
c5:8f:77:89:03:f8:42:e1:49:01:ca:6e:55:12:0d:
42:ee:41:99:d8:fd:3a:39:08:17:75:3b:20:ae:93:
e4:68:3d:78:ac:c3:b7:17:34:42:2b:bb:b0:52:70:
6b:b0:52:d3:d5:67:46:ec:ae:f5:aa:a9:f9:f5:83:
c0:a9:2a:c0:f1:73:70:02:f6:ba:4a:83:a4:9c:c4:
c5:76:09:03:69:42:b8:87:be:5e:db:70:2f:64:c7:
4a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:28:A7:38:C4:60:92:C3:C8:63:34:92:2E:9B:53:12:CB:20:85:F9
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS400810.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.71.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:3d:8f:62:5c:7e:70:83:96:4b:ef:3e:c6:5d:ef:57:c1:7d:
56:97:31:20:ea:d8:45:d8:29:a6:24:5c:86:9a:9f:72:30:a0:
83:df:b5:ea:d8:6a:f1:a3:fd:1e:13:da:c5:70:e4:89:2e:d2:
71:28:de:47:eb:a0:42:09:b6:76:8a:f3:77:c4:76:5b:0b:fe:
67:8e:13:e4:73:f6:99:f8:55:6a:ad:26:58:f0:04:e8:45:b5:
ea:22:f6:c4:d8:9c:5e:2b:8c:0f:77:ce:77:f0:d2:78:09:86:
54:21:c1:ba:b1:99:d3:a6:4c:aa:2f:10:92:b0:43:93:c3:e9:
0d:b6:31:32:06:22:20:09:b6:70:05:eb:07:d5:60:79:b8:21:
1c:93:9f:78:c1:9c:7f:ae:4f:a7:9b:95:39:9c:79:c5:f4:3a:
ea:de:43:74:0d:fc:98:a6:5b:85:ce:c7:56:a0:d3:dc:9d:3c:
ed:60:e8:3b:c8:29:46:ef:32:b3:0e:75:ab:db:bb:e4:79:f4:
bd:a4:bb:fe:16:11:e4:e7:b9:56:ef:85:a7:1e:f1:79:5d:2f:
58:a6:ca:d2:14:61:1b:cf:82:60:16:32:91:67:4a:cb:cb:b8:
8a:97:1a:b2:af:22:71:aa:8d:4e:b1:d2:eb:75:6e:76:9b:5b:
15:75:4a:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:23 2025 by rpki-client on console.sobornost.net