Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a431e42e-0d7f-44d0-813f-b5e3a2abbe25/0/3231332e3135372e3131362e302f32332d3233203d3e203230353130.roa
File: 3231332e3135372e3131362e302f32332d3233203d3e203230353130.roa (raw, json)
Hash identifier: u6D0nQIamyf1rwT6EphlkmgpGmdsHhrROhbEzSFSSxQ=
Subject key identifier: F6:4B:53:15:63:1A:1E:09:1E:57:A7:55:11:70:45:3D:12:B5:AD:5D
Certificate issuer: /CN=8184669b0189b7fabe05e700325a0d74957beb27
Certificate serial: 74C9EB2BA9A21DCB6861D0C3B28E0DE085DE4EAC
Authority key identifier: 81:84:66:9B:01:89:B7:FA:BE:05:E7:00:32:5A:0D:74:95:7B:EB:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gYRmmwGJt_q-BecAMloNdJV76yc.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a431e42e-0d7f-44d0-813f-b5e3a2abbe25/0/3231332e3135372e3131362e302f32332d3233203d3e203230353130.roa
Signing time: Sun 06 Apr 2025 10:07:55 +0000
ROA not before: Sun 06 Apr 2025 10:02:55 +0000
ROA not after: Sun 05 Apr 2026 10:07:55 +0000
asID: 20510
IP address blocks: 213.157.116.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:c9:eb:2b:a9:a2:1d:cb:68:61:d0:c3:b2:8e:0d:e0:85:de:4e:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8184669b0189b7fabe05e700325a0d74957beb27
Validity
Not Before: Apr 6 10:02:55 2025 GMT
Not After : Apr 5 10:07:55 2026 GMT
Subject: CN=F64B5315631A1E091E57A7551170453D12B5AD5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2c:70:24:91:5a:76:4b:66:2a:87:94:89:94:
e3:dc:4a:4a:3a:5a:7a:ad:4a:2c:33:17:e0:8e:e9:
2b:ce:13:c9:9b:7d:3b:57:3f:ac:1c:55:66:8b:c5:
d1:7b:e7:1b:a3:83:ee:d1:81:9a:5a:7d:17:2d:ab:
78:86:a7:a9:1a:8a:b3:42:63:c8:0f:a0:12:c9:2f:
c4:e4:84:aa:1a:86:68:5b:ec:aa:ff:e5:2d:de:98:
ea:e1:90:02:e8:1f:60:2f:01:08:c5:ca:4c:72:71:
2c:0c:57:b3:cd:94:78:ae:0f:fc:c0:3b:ed:6c:93:
1c:b0:31:7a:fb:52:88:1f:a9:c4:8f:e0:60:52:fd:
7d:79:13:52:e5:c4:07:c2:26:3d:38:f2:ec:4a:f1:
a7:01:50:e9:40:6b:30:f0:47:e9:71:18:c1:42:d1:
2c:9f:2a:38:90:af:f4:68:64:77:e2:73:94:da:82:
5d:f0:87:ca:a1:73:ea:70:b9:39:10:b4:64:83:70:
a4:1f:6f:7c:98:ba:0a:32:98:e2:0c:d4:b9:33:03:
b0:de:8f:3d:fc:8c:3e:d4:ef:60:e9:e6:1b:bb:3d:
92:df:9d:5c:77:9d:41:e2:c8:49:f4:47:f0:f0:c8:
5f:ae:db:a8:3d:09:b7:63:73:4b:10:67:13:b0:c5:
bd:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:4B:53:15:63:1A:1E:09:1E:57:A7:55:11:70:45:3D:12:B5:AD:5D
X509v3 Authority Key Identifier:
keyid:81:84:66:9B:01:89:B7:FA:BE:05:E7:00:32:5A:0D:74:95:7B:EB:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a431e42e-0d7f-44d0-813f-b5e3a2abbe25/0/8184669B0189B7FABE05E700325A0D74957BEB27.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gYRmmwGJt_q-BecAMloNdJV76yc.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a431e42e-0d7f-44d0-813f-b5e3a2abbe25/0/3231332e3135372e3131362e302f32332d3233203d3e203230353130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.157.116.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:ba:38:f3:e7:39:cb:55:18:cc:b8:c6:88:07:38:de:10:4d:
2a:1d:ad:48:bd:ac:ed:cc:b6:81:53:3f:f8:71:c6:f0:23:29:
b1:b0:39:18:7a:10:8f:1b:67:d6:f0:e2:15:39:65:28:50:04:
93:5e:6f:28:c4:28:34:6d:b8:56:18:83:b0:34:e7:66:a8:11:
fc:68:a8:32:a7:1d:80:cb:3e:bc:85:23:87:aa:b6:e2:6e:09:
c0:45:e6:1d:ed:4f:db:47:e2:9c:fd:9b:32:fe:8c:3b:51:28:
71:0b:65:19:5d:76:69:da:5f:7e:1a:88:bb:e0:6f:21:6e:89:
7a:c4:30:f2:5d:b1:ac:cd:65:27:cb:19:7e:20:b0:33:ba:6d:
29:35:5e:4b:48:4f:85:41:0a:fc:98:e7:f9:51:b5:18:e4:04:
cb:52:59:bb:79:cf:12:4d:e4:f9:ef:a4:53:a2:1a:f4:6f:30:
72:f0:96:c3:7a:78:6a:04:1a:b1:05:f2:8d:49:c2:d9:7f:54:
34:99:31:b4:06:6b:48:57:76:9d:8d:e1:c0:50:a5:56:fe:7d:
30:52:9b:36:23:76:7b:c3:49:2d:fd:94:14:98:b5:e3:2a:cb:
5a:00:37:e3:3f:1e:69:0e:41:12:6c:63:23:8e:8f:54:54:54:
2e:43:f4:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:28 2025 by rpki-client on console.sobornost.net