Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a431e42e-0d7f-44d0-813f-b5e3a2abbe25/0/3231332e3135372e3131382e302f32332d3233203d3e203230353130.roa
File: 3231332e3135372e3131382e302f32332d3233203d3e203230353130.roa (raw, json)
Hash identifier: U2rsj2GmpPBYV9RPLITNHzbaDI2Gxelnlov5msxX9eI=
Subject key identifier: 6F:8B:FA:23:27:AA:15:15:49:F7:41:85:A1:57:59:A2:B2:8C:06:2A
Certificate issuer: /CN=8184669b0189b7fabe05e700325a0d74957beb27
Certificate serial: 3CB8630AC42B4AAC026ED9B9C6D733CFA673F013
Authority key identifier: 81:84:66:9B:01:89:B7:FA:BE:05:E7:00:32:5A:0D:74:95:7B:EB:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gYRmmwGJt_q-BecAMloNdJV76yc.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a431e42e-0d7f-44d0-813f-b5e3a2abbe25/0/3231332e3135372e3131382e302f32332d3233203d3e203230353130.roa
Signing time: Sun 06 Apr 2025 10:07:57 +0000
ROA not before: Sun 06 Apr 2025 10:02:57 +0000
ROA not after: Sun 05 Apr 2026 10:07:57 +0000
asID: 20510
IP address blocks: 213.157.118.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:b8:63:0a:c4:2b:4a:ac:02:6e:d9:b9:c6:d7:33:cf:a6:73:f0:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8184669b0189b7fabe05e700325a0d74957beb27
Validity
Not Before: Apr 6 10:02:57 2025 GMT
Not After : Apr 5 10:07:57 2026 GMT
Subject: CN=6F8BFA2327AA151549F74185A15759A2B28C062A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:18:0c:04:50:75:96:af:fc:63:5f:aa:6e:ef:
e1:1e:58:cc:32:e1:81:e5:41:9c:40:52:90:ba:03:
e1:bd:49:c7:c3:c4:65:4b:3b:19:32:3b:10:7a:5a:
99:b0:02:4b:98:f3:72:41:86:ca:6e:cd:34:98:96:
cf:5c:1e:56:ca:bb:51:b5:16:6a:ac:c0:3c:70:0c:
73:3d:b0:b7:cd:ce:6c:cb:be:5f:6a:00:50:4b:ad:
49:8f:18:e8:7f:33:6c:d3:5c:78:79:30:db:ac:df:
fa:e7:da:cf:bd:4f:05:d1:83:83:87:2b:97:29:b0:
98:b6:5e:3d:78:56:2c:9c:ca:c8:5a:95:99:e2:85:
c5:84:bd:91:73:fd:41:14:4d:3d:de:2c:51:f3:ab:
b4:9d:42:d8:d6:7f:d9:8e:ad:73:7c:bf:36:f8:38:
4e:7f:18:ca:bb:72:6b:9d:cb:1c:d4:33:fa:c2:1f:
80:67:31:1e:0a:eb:5c:16:d9:44:fa:7e:d4:de:c2:
b7:8f:cd:74:0a:e4:c0:65:cd:33:bd:33:36:95:a2:
b5:1a:73:f1:40:7d:21:4d:c8:c9:f2:b1:6b:95:6c:
6e:33:1b:45:89:04:77:a0:9d:d5:d3:06:ca:21:a2:
04:ce:4d:fd:1e:6c:75:ad:8b:7c:98:7f:eb:8b:bd:
04:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:8B:FA:23:27:AA:15:15:49:F7:41:85:A1:57:59:A2:B2:8C:06:2A
X509v3 Authority Key Identifier:
keyid:81:84:66:9B:01:89:B7:FA:BE:05:E7:00:32:5A:0D:74:95:7B:EB:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a431e42e-0d7f-44d0-813f-b5e3a2abbe25/0/8184669B0189B7FABE05E700325A0D74957BEB27.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gYRmmwGJt_q-BecAMloNdJV76yc.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a431e42e-0d7f-44d0-813f-b5e3a2abbe25/0/3231332e3135372e3131382e302f32332d3233203d3e203230353130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.157.118.0/23
Signature Algorithm: sha256WithRSAEncryption
70:33:37:c5:ad:5b:b3:7b:1a:bb:20:d8:42:36:cb:58:ec:66:
d5:51:12:24:10:68:89:65:0f:e1:4b:91:16:b6:07:e6:31:84:
1f:a5:fc:65:bb:88:c0:1e:ce:b3:12:ce:9e:58:1b:50:c7:f5:
44:97:43:ad:7b:f1:b8:a5:07:e6:ae:b1:96:24:40:d7:7c:ae:
67:1d:91:4d:98:01:46:95:0c:55:c1:8f:36:85:b3:59:65:51:
22:17:6b:76:94:35:be:40:46:35:5b:2b:9e:49:b2:67:c9:d4:
9b:e1:18:fb:d9:7f:1a:0b:d8:20:f2:f0:f8:0b:4c:67:7a:1d:
60:e2:c2:f4:f5:1e:02:1f:e3:47:30:07:97:69:7c:4b:7f:b9:
64:96:c2:d3:f5:3c:cf:02:0b:ce:91:bb:0e:3a:00:e1:8f:70:
75:53:50:b2:66:d4:f3:9a:75:51:d5:de:4e:97:b3:be:01:b9:
55:3e:02:0f:ad:af:a3:95:fd:69:13:b7:c4:5a:d0:04:45:d2:
3c:32:14:02:54:03:92:6c:54:f5:18:7d:56:76:a4:37:82:dd:
e7:2c:eb:43:2b:3b:07:a7:c1:95:47:c7:1f:0c:03:69:59:ad:
9a:f8:b3:ca:cc:81:86:ed:48:08:09:14:e9:05:81:71:b4:6b:
13:0b:d3:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:28 2025 by rpki-client on console.sobornost.net