Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS197537.roa
File: AS197537.roa (raw, json)
Hash identifier: jx7bWzMpHtUoYaA8+btwiUsNwCBco+Pu1dH2J3s7rH4=
Subject key identifier: A7:76:6C:1D:0F:DA:89:E3:33:E2:59:6C:39:76:2C:6E:A7:C6:7C:2B
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 5FBBBF66E57A98EEFA9BBBA4A48D6620EBD879
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS197537.roa
Signing time: Wed 19 Mar 2025 19:51:38 +0000
ROA not before: Wed 19 Mar 2025 19:46:38 +0000
ROA not after: Wed 18 Mar 2026 19:51:38 +0000
asID: 197537
IP address blocks: 181.215.204.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:bb:bf:66:e5:7a:98:ee:fa:9b:bb:a4:a4:8d:66:20:eb:d8:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 19 19:46:38 2025 GMT
Not After : Mar 18 19:51:38 2026 GMT
Subject: CN=A7766C1D0FDA89E333E2596C39762C6EA7C67C2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:1a:1d:73:9c:fe:d4:ca:98:33:03:3d:42:8a:
32:79:dc:90:26:71:6b:38:d3:ad:c0:8e:b1:5a:1e:
9e:af:69:43:a8:d7:bf:42:0b:32:fe:03:9e:8b:32:
24:38:fc:3e:30:13:54:82:3d:35:87:85:2c:13:04:
08:55:c3:43:74:1f:e2:99:97:92:ae:67:62:47:3f:
68:3f:66:42:d0:71:9f:f7:50:39:22:38:58:fb:bc:
33:2a:47:50:ad:6e:b5:f9:a3:b4:34:74:60:f3:ad:
71:cf:79:19:fc:91:f3:ac:82:a4:d6:b8:b5:55:68:
ea:c2:cf:e2:3a:08:4e:6c:13:70:cb:04:32:82:29:
b2:af:7d:bc:e4:c5:a1:39:ee:8c:4c:5d:8a:4e:6d:
9c:96:ef:6f:0d:63:08:81:86:db:18:53:c5:9d:62:
ad:84:4b:5c:51:90:d4:b5:65:a3:bd:b3:9a:0d:e5:
96:9c:4d:99:97:86:08:02:eb:aa:bb:82:31:03:03:
fd:01:45:d3:db:d4:fa:f2:f2:76:a3:61:7d:f5:40:
ca:79:36:e0:b1:40:4f:d8:46:7e:99:ae:dd:b7:82:
af:e8:66:0f:f5:ba:54:e6:40:1e:fa:7a:44:61:db:
60:d7:05:ac:44:9f:bd:93:ea:bb:d5:82:e1:db:ab:
69:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:76:6C:1D:0F:DA:89:E3:33:E2:59:6C:39:76:2C:6E:A7:C6:7C:2B
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS197537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.215.204.0/24
Signature Algorithm: sha256WithRSAEncryption
46:d0:1e:52:e4:f8:a4:7e:10:8a:9b:6d:51:93:b7:33:0d:7a:
fa:64:17:82:58:08:3d:70:50:8e:c2:ef:42:21:55:e1:e9:7e:
d5:f8:c7:80:9b:9d:b6:e9:00:26:cb:b3:02:0e:49:df:5b:b3:
e6:fb:35:d2:59:e9:8e:10:cb:17:e5:2c:f9:49:a6:2c:ff:8c:
83:d9:e1:49:16:0a:90:2e:8b:d1:bb:d0:c8:80:30:80:90:f5:
5c:40:93:0d:f2:69:9b:fb:98:ea:a7:fc:e2:05:36:34:d8:1a:
21:a0:ab:74:02:b5:d5:b2:31:e4:bd:a2:20:fc:a5:83:dc:fc:
53:9f:bc:21:f2:a7:2c:36:ab:5e:0c:ab:cf:bd:8a:53:9c:0a:
54:a4:82:8a:79:44:10:97:87:b7:51:32:a7:21:d8:23:4d:af:
97:33:c4:ea:34:0d:49:2f:8b:22:7a:a3:fd:b6:66:45:87:df:
4a:46:42:55:91:bf:e7:a4:74:d6:81:cc:09:70:37:2e:be:dd:
e2:d8:eb:fb:48:e8:4d:c6:2e:11:f1:f1:bb:cc:b7:27:7a:f7:
47:e4:ca:60:95:78:28:39:b8:eb:28:9c:3d:a2:bd:01:42:39:
67:ab:35:26:b5:2b:79:30:f9:9e:ed:4e:84:dd:b8:e6:5c:a6:
97:ef:11:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:26 2025 by rpki-client on console.sobornost.net