Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/38352e3131372e3233312e302f32342d3234203d3e203536353934.roa
File: 38352e3131372e3233312e302f32342d3234203d3e203536353934.roa (raw, json)
Hash identifier: UV54BiPkSqZcI5HHAY2kqiR/Mb+BJaMnW0h9cdeDsZM=
Subject key identifier: 17:22:24:B2:31:88:51:75:E3:5D:08:BD:CF:9F:89:38:FE:92:40:E3
Certificate issuer: /CN=0d7ffae300def0876bf84890fb6ea17be841a4d3
Certificate serial: 62F62D2DC8F63B81225DFC9704E3522BAC1077E9
Authority key identifier: 0D:7F:FA:E3:00:DE:F0:87:6B:F8:48:90:FB:6E:A1:7B:E8:41:A4:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DX_64wDe8Idr-EiQ-26he-hBpNM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/38352e3131372e3233312e302f32342d3234203d3e203536353934.roa
Signing time: Sat 12 Apr 2025 10:00:26 +0000
ROA not before: Sat 12 Apr 2025 09:55:26 +0000
ROA not after: Sat 11 Apr 2026 10:00:26 +0000
asID: 56594
IP address blocks: 85.117.231.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:f6:2d:2d:c8:f6:3b:81:22:5d:fc:97:04:e3:52:2b:ac:10:77:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d7ffae300def0876bf84890fb6ea17be841a4d3
Validity
Not Before: Apr 12 09:55:26 2025 GMT
Not After : Apr 11 10:00:26 2026 GMT
Subject: CN=172224B231885175E35D08BDCF9F8938FE9240E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f4:e0:bb:6c:ba:d0:a1:b8:7e:68:f0:32:08:
bd:8c:0b:f9:d2:0d:05:00:c5:15:45:74:c1:ee:51:
03:70:66:71:79:54:cc:0b:ad:cb:84:57:94:d9:65:
94:3a:5e:e3:09:27:b4:d0:39:c4:fa:e2:e2:33:ff:
f2:14:8e:6e:89:73:ed:b7:f1:c5:fc:c2:e7:20:42:
1b:43:93:ca:cb:fd:72:13:63:78:bc:9d:53:09:79:
44:34:08:8c:34:32:0f:f1:fd:ea:1c:75:d6:6c:0f:
c5:3a:75:7b:36:a0:0e:2d:a1:4b:8f:7d:77:81:10:
d3:9a:e5:d7:01:eb:f4:60:24:90:7e:31:25:b8:41:
ac:ae:01:15:df:b5:b8:ab:e0:bb:e6:c7:45:8a:62:
35:dc:30:7c:8b:e5:1a:a6:61:6b:3b:ee:63:7c:36:
b7:97:cb:4e:5f:b8:d6:91:b0:cc:15:7e:a2:39:aa:
e4:34:af:e2:0e:a1:bb:dd:fe:af:b5:6c:f4:5a:a0:
04:43:30:6c:c1:31:6f:2b:97:00:c9:e2:f8:dd:10:
f3:79:fc:25:e5:32:66:07:86:d5:1c:4a:22:a9:4c:
e4:5e:7d:83:b8:e1:14:e2:6a:c4:bf:82:c6:ab:9b:
cd:43:62:ac:69:b0:3b:27:02:cd:1c:fa:33:a8:da:
9d:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:22:24:B2:31:88:51:75:E3:5D:08:BD:CF:9F:89:38:FE:92:40:E3
X509v3 Authority Key Identifier:
keyid:0D:7F:FA:E3:00:DE:F0:87:6B:F8:48:90:FB:6E:A1:7B:E8:41:A4:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DX_64wDe8Idr-EiQ-26he-hBpNM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/38352e3131372e3233312e302f32342d3234203d3e203536353934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.231.0/24
Signature Algorithm: sha256WithRSAEncryption
24:50:41:bc:d1:ff:aa:da:60:ba:f1:94:c2:7c:a2:68:5e:2a:
5a:f6:f7:5b:b2:b6:2c:a6:62:72:c5:67:fb:64:f4:b1:e8:f1:
d6:d3:c5:f7:b4:4b:7a:0f:c5:3a:26:aa:f9:03:3c:79:b8:a6:
28:16:e9:1a:cf:7b:04:6b:99:a1:57:6e:b4:58:9e:b1:5e:d9:
cb:ca:d5:59:2c:4c:74:d6:28:41:d9:75:e1:92:2e:fe:03:46:
ce:54:1d:6b:e5:f5:df:4b:f1:fd:c5:5d:9a:a6:9c:d4:1a:00:
ae:be:11:64:24:a1:3e:74:04:cc:26:b1:0d:06:b8:a1:69:24:
99:59:b5:63:32:f3:c8:23:3e:d3:67:a2:2f:94:51:94:98:4c:
f2:a7:b0:60:6f:9c:4e:8b:b1:f6:ad:7d:db:7b:b1:2a:87:9b:
1e:23:23:07:72:f2:81:fd:84:09:da:94:ae:b8:54:f5:b0:21:
cc:06:07:0d:3a:3d:07:70:19:a2:05:63:0d:33:e0:97:01:81:
11:07:5a:81:f5:b4:76:f0:fd:1d:af:a0:3d:27:18:9a:3e:a3:
ba:6e:27:ce:05:f4:84:7b:8f:23:94:82:af:fa:da:a6:40:ba:
84:5c:b4:7c:8c:14:86:99:f0:e3:c7:8b:1f:fd:76:58:cd:ac:
a9:8f:f7:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:28 2025 by rpki-client on console.sobornost.net