Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a431e42e-0d7f-44d0-813f-b5e3a2abbe25/0/3231332e3135372e3131322e302f32322d3232203d3e203230353130.roa
File: 3231332e3135372e3131322e302f32322d3232203d3e203230353130.roa (raw, json)
Hash identifier: oXC9Asr9SJ7DSslxSZaWUX9xWnSBbY5iUxbxwvvcFUI=
Subject key identifier: 12:B3:52:CB:51:D1:C7:C9:E9:B3:CE:1F:A2:A6:4F:BF:0A:D6:76:24
Certificate issuer: /CN=8184669b0189b7fabe05e700325a0d74957beb27
Certificate serial: 2CA77A7FAB0BA65683E8C85A558FC82ACF16D930
Authority key identifier: 81:84:66:9B:01:89:B7:FA:BE:05:E7:00:32:5A:0D:74:95:7B:EB:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gYRmmwGJt_q-BecAMloNdJV76yc.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a431e42e-0d7f-44d0-813f-b5e3a2abbe25/0/3231332e3135372e3131322e302f32322d3232203d3e203230353130.roa
Signing time: Sun 06 Apr 2025 10:07:52 +0000
ROA not before: Sun 06 Apr 2025 10:02:52 +0000
ROA not after: Sun 05 Apr 2026 10:07:52 +0000
asID: 20510
IP address blocks: 213.157.112.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:a7:7a:7f:ab:0b:a6:56:83:e8:c8:5a:55:8f:c8:2a:cf:16:d9:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8184669b0189b7fabe05e700325a0d74957beb27
Validity
Not Before: Apr 6 10:02:52 2025 GMT
Not After : Apr 5 10:07:52 2026 GMT
Subject: CN=12B352CB51D1C7C9E9B3CE1FA2A64FBF0AD67624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:19:21:39:0d:76:b9:21:46:1a:08:7d:79:1d:
dd:eb:db:97:65:6f:96:3a:4d:de:0c:fd:c9:e5:d6:
c7:ae:89:b1:85:40:23:56:bf:66:74:78:46:21:7c:
67:89:ab:fb:f7:85:86:9e:68:a7:43:6b:66:fe:1d:
4c:ba:28:c5:8d:b7:60:c8:59:bc:78:38:be:bc:cc:
c7:e5:0b:bd:dd:71:43:7d:c1:06:98:ff:a7:3f:1c:
36:10:b8:30:59:12:71:fe:04:d8:00:fa:ea:59:00:
47:12:aa:c9:a0:eb:78:2c:22:98:2d:46:99:1b:4e:
ef:a3:70:73:78:1c:84:90:a4:19:bd:d3:da:d1:e7:
42:e9:c6:c0:06:15:f9:41:0f:37:5c:fe:7d:18:f6:
c5:38:05:85:aa:ba:0c:3d:3d:7c:2a:17:eb:63:40:
19:af:09:8e:07:52:be:98:6c:64:c9:22:e8:73:f5:
1c:f2:ab:bd:6e:22:ba:03:f8:87:7d:72:ff:ef:5c:
68:c0:c6:04:03:0e:85:58:6d:d3:7c:fa:e1:d5:d6:
44:be:de:7e:6c:fd:18:a2:5f:f0:5a:65:f5:82:94:
ed:fc:47:37:05:a8:f3:2c:a9:1e:06:10:b3:e4:44:
3e:bf:93:cf:23:06:dc:0f:6c:66:c4:41:a9:23:ef:
33:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:B3:52:CB:51:D1:C7:C9:E9:B3:CE:1F:A2:A6:4F:BF:0A:D6:76:24
X509v3 Authority Key Identifier:
keyid:81:84:66:9B:01:89:B7:FA:BE:05:E7:00:32:5A:0D:74:95:7B:EB:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a431e42e-0d7f-44d0-813f-b5e3a2abbe25/0/8184669B0189B7FABE05E700325A0D74957BEB27.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gYRmmwGJt_q-BecAMloNdJV76yc.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a431e42e-0d7f-44d0-813f-b5e3a2abbe25/0/3231332e3135372e3131322e302f32322d3232203d3e203230353130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.157.112.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:e2:7f:d5:38:c4:92:13:14:d7:ea:77:0a:01:62:ef:a7:73:
95:86:4c:cd:48:37:f4:60:1a:36:7b:2b:d9:f8:eb:cc:06:5e:
ea:4f:f0:5f:ff:d2:a5:f2:00:9d:db:8a:28:f8:78:66:8f:c8:
f6:07:44:06:94:b6:09:77:4f:40:42:8c:8b:4f:b5:89:9d:1f:
67:b0:15:ef:b4:c8:32:fa:f9:62:86:a0:7b:11:15:24:c3:15:
b1:53:52:6b:24:7f:3e:ec:6e:3a:e9:56:67:0c:1e:36:21:83:
cd:d2:ed:d6:4a:ca:9b:c8:7c:b4:ed:29:21:1a:60:81:dd:4a:
a3:2e:44:61:82:cb:95:26:c5:ad:94:d3:b1:ca:bc:b9:8d:95:
ef:ee:87:7e:d4:62:63:b5:27:b8:18:a8:96:1d:a7:a1:3d:ca:
76:9d:35:7f:e5:4e:aa:a4:c0:c6:13:81:64:7a:2e:07:49:7c:
5d:5a:9e:6d:11:34:cc:13:a7:e8:9a:d3:28:65:b5:20:41:cb:
ac:71:2f:4f:4d:8e:92:a6:65:84:ad:4d:86:9f:9d:2e:b0:ad:
c8:e0:e5:a5:59:d6:6b:e4:bc:18:f1:18:a2:57:10:e0:21:24:
24:8a:30:c3:a2:4b:85:77:ff:a3:d3:3b:c5:de:3e:86:a4:2c:
df:81:d0:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:28 2025 by rpki-client on console.sobornost.net