Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS29119.roa
File: AS29119.roa (raw, json)
Hash identifier: BPkE1Hk5HGfaF8imhUHNFXIXF/c23Qd5vvgzCSi7uFw=
Subject key identifier: 3F:EA:E5:5F:95:70:FF:37:27:33:02:F4:AF:14:BD:8E:BD:0E:BA:B4
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 6ECF7E5F39B54540541DA6D3272F7D6CBCC14DFA
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS29119.roa
Signing time: Mon 31 Mar 2025 00:02:04 +0000
ROA not before: Sun 30 Mar 2025 23:57:04 +0000
ROA not after: Mon 30 Mar 2026 00:02:04 +0000
asID: 29119
IP address blocks: 82.29.30.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:cf:7e:5f:39:b5:45:40:54:1d:a6:d3:27:2f:7d:6c:bc:c1:4d:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Mar 30 23:57:04 2025 GMT
Not After : Mar 30 00:02:04 2026 GMT
Subject: CN=3FEAE55F9570FF37273302F4AF14BD8EBD0EBAB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3d:47:7a:25:1e:00:19:84:97:21:e6:21:49:
3c:88:fe:80:c7:71:37:b7:07:be:42:e0:d9:63:90:
f4:2d:28:10:42:23:bf:56:92:37:20:3a:ff:e5:d7:
08:34:f4:65:e7:e8:fb:9d:c9:c5:88:3e:a1:3f:7c:
29:40:2c:a9:71:f9:1d:52:89:ab:fa:43:aa:76:ba:
7f:18:85:aa:cf:68:51:65:8b:a7:fb:60:a3:29:a3:
0b:86:13:3c:89:57:27:f9:1e:1d:08:b0:d8:e6:71:
f4:14:cc:cc:27:1f:69:3f:23:b4:50:c1:74:d4:5b:
df:af:c7:85:f2:66:e3:2c:dc:ed:ee:f7:bb:61:f3:
f3:bb:0d:82:7c:66:33:28:31:14:e4:f9:08:f0:12:
66:03:06:48:2e:6e:1f:b9:16:be:ab:1d:1a:b2:34:
3f:a6:76:8e:e4:00:a0:5f:ab:5f:a4:42:b9:6f:ff:
57:83:9c:83:66:0a:f0:ce:7e:b7:9d:be:cd:2c:c3:
64:3f:3e:2f:fd:24:5e:64:8a:94:d9:2a:37:04:4d:
12:ac:dc:81:3d:5d:64:36:80:31:93:83:77:26:cc:
f6:e4:3c:d1:4f:43:03:0a:18:dc:1b:41:52:8a:29:
f4:07:82:fc:44:d4:76:f1:35:21:23:6d:ab:6e:82:
62:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:EA:E5:5F:95:70:FF:37:27:33:02:F4:AF:14:BD:8E:BD:0E:BA:B4
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS29119.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.29.30.0/23
Signature Algorithm: sha256WithRSAEncryption
04:93:a8:5c:27:8d:77:72:88:ee:b3:df:f1:35:fe:cf:e5:7c:
20:0e:54:6b:d3:72:4d:5e:fc:7e:ec:6b:c7:7b:b6:6e:40:cc:
d8:5f:1a:bf:c8:3d:89:e5:76:04:68:1e:c1:26:7d:14:02:ef:
65:a6:a3:42:33:d2:75:73:cf:c9:8c:c8:b0:20:a5:10:ad:2a:
92:3a:13:24:d8:6c:d0:20:0b:00:57:11:97:eb:9b:96:15:06:
ae:95:30:7e:59:82:05:67:28:ef:16:ab:1c:6d:7e:0b:8c:7f:
cf:d2:04:d4:cd:5b:7d:b9:f1:ee:93:c9:56:5a:52:bc:d8:c0:
de:e1:27:76:c5:71:77:dd:81:05:46:fa:c4:46:52:66:04:79:
ff:64:f9:6c:be:f3:5e:86:d8:5a:44:30:72:f3:01:36:56:41:
f7:bc:5a:00:4d:05:d7:b2:fc:85:70:e0:44:ad:58:6d:a0:47:
ca:7e:5d:a4:62:1b:19:60:10:e8:98:cf:35:ca:3a:b3:72:92:
55:a3:0e:fc:fd:8e:f0:78:e1:a0:6c:31:0a:b0:fc:19:b9:3c:
0c:8e:2d:38:49:43:39:dd:e9:2d:43:87:f6:93:f1:f9:5b:71:
b3:5f:7f:39:53:35:fc:53:7f:88:0a:d1:58:c5:c9:db:13:3a:
5f:04:f8:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:27 2025 by rpki-client on console.sobornost.net