Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a431e42e-0d7f-44d0-813f-b5e3a2abbe25/0/3231332e3135372e39362e302f32302d3230203d3e203230353130.roa
File: 3231332e3135372e39362e302f32302d3230203d3e203230353130.roa (raw, json)
Hash identifier: cK22q6rO6KtktflqsQYlSr1z73xEpoVM/WNGnd6YIEI=
Subject key identifier: DD:BC:92:55:6C:FC:AC:8D:90:03:3A:0A:14:5F:95:9E:CE:27:E7:7C
Certificate issuer: /CN=8184669b0189b7fabe05e700325a0d74957beb27
Certificate serial: 2C8CD99A321063371A5CF6592E6DDBF077BB8371
Authority key identifier: 81:84:66:9B:01:89:B7:FA:BE:05:E7:00:32:5A:0D:74:95:7B:EB:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gYRmmwGJt_q-BecAMloNdJV76yc.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a431e42e-0d7f-44d0-813f-b5e3a2abbe25/0/3231332e3135372e39362e302f32302d3230203d3e203230353130.roa
Signing time: Sun 06 Apr 2025 10:07:50 +0000
ROA not before: Sun 06 Apr 2025 10:02:50 +0000
ROA not after: Sun 05 Apr 2026 10:07:50 +0000
asID: 20510
IP address blocks: 213.157.96.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:8c:d9:9a:32:10:63:37:1a:5c:f6:59:2e:6d:db:f0:77:bb:83:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8184669b0189b7fabe05e700325a0d74957beb27
Validity
Not Before: Apr 6 10:02:50 2025 GMT
Not After : Apr 5 10:07:50 2026 GMT
Subject: CN=DDBC92556CFCAC8D90033A0A145F959ECE27E77C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:60:f9:32:29:b6:02:99:8c:1f:59:40:c6:b5:
82:b1:a2:98:73:90:93:be:f0:0f:9e:46:e7:c9:26:
a4:bb:f2:a4:69:8c:7d:c4:59:79:af:3a:57:10:f8:
c4:32:e8:0b:26:01:2c:2b:97:d3:90:1f:f3:9d:87:
48:fd:43:00:b4:b7:ce:57:d8:42:1c:d2:76:f6:60:
b1:29:a5:04:32:aa:75:37:28:36:14:8e:9f:4f:35:
7e:0f:07:62:52:1c:44:48:c3:66:2e:c6:b9:87:c4:
a7:4d:31:a3:3b:6a:ee:7b:c2:51:c5:d7:68:45:d6:
7c:b8:fa:02:52:bf:65:13:da:b1:37:65:81:a5:18:
8e:47:44:ee:34:61:21:f6:fa:a8:52:64:39:96:ec:
c5:a1:b4:d1:4c:43:a5:5e:07:91:00:d6:e9:aa:cd:
6e:4b:ec:a2:2f:35:3b:38:4f:55:1e:73:f3:90:4d:
6c:95:3c:51:b7:98:f6:c6:a1:51:17:f6:97:37:08:
5d:9f:8f:1e:e0:b3:91:d7:2e:89:ad:7e:93:47:fd:
e9:55:dd:b1:0e:91:56:ed:5a:98:21:e8:a8:c6:b6:
9b:2e:d9:a4:34:e9:29:db:16:a7:de:8f:c5:b1:e0:
0a:c3:b9:27:35:94:48:1a:18:01:f8:52:1f:9a:24:
de:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:BC:92:55:6C:FC:AC:8D:90:03:3A:0A:14:5F:95:9E:CE:27:E7:7C
X509v3 Authority Key Identifier:
keyid:81:84:66:9B:01:89:B7:FA:BE:05:E7:00:32:5A:0D:74:95:7B:EB:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a431e42e-0d7f-44d0-813f-b5e3a2abbe25/0/8184669B0189B7FABE05E700325A0D74957BEB27.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gYRmmwGJt_q-BecAMloNdJV76yc.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a431e42e-0d7f-44d0-813f-b5e3a2abbe25/0/3231332e3135372e39362e302f32302d3230203d3e203230353130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.157.96.0/20
Signature Algorithm: sha256WithRSAEncryption
60:d9:2c:56:12:71:6b:77:25:54:57:bc:f1:e0:20:1d:a8:2b:
1e:2b:c9:05:e2:e7:a9:38:0b:d3:98:97:45:f4:08:9c:1a:7b:
28:52:8e:1e:75:c7:fb:ac:eb:e6:58:29:74:13:c9:68:3f:b2:
91:9c:95:b2:b4:4e:3e:53:3d:84:26:29:14:3e:ae:a6:80:24:
55:c9:fd:0f:0b:c0:0b:b9:a9:e0:76:c6:15:fa:89:10:37:5c:
00:e7:96:07:12:c4:dd:b9:3a:8d:d8:ce:35:a7:d6:9b:2a:ab:
a1:bc:67:3f:e4:a4:81:23:22:5f:71:0f:77:34:61:fc:5f:ce:
80:3f:5b:00:82:f1:fa:98:13:11:20:c3:b6:8a:52:c2:56:58:
67:18:7a:a2:8a:83:81:4d:55:bf:fc:f3:80:c0:76:d4:52:ef:
76:cc:33:74:f3:9a:26:8f:00:36:6c:46:85:a7:e3:3d:65:61:
b7:d1:27:6f:fb:b5:82:e9:eb:5f:9a:cf:86:63:d6:33:93:74:
82:03:b4:96:4f:b6:67:3b:e7:6f:28:f6:b2:2d:0b:15:4f:84:
f0:bf:4e:43:b6:79:31:cd:12:43:ff:3a:9b:f5:76:ff:f3:d1:
4d:13:84:76:92:31:d3:46:d2:e7:80:de:30:b9:cd:2d:8a:99:
55:2e:96:7d
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIULIzZmjIQYzcaXPZZLm3b8He7g3EwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODE4NDY2OWIwMTg5YjdmYWJlMDVlNzAwMzI1YTBkNzQ5
NTdiZWIyNzAeFw0yNTA0MDYxMDAyNTBaFw0yNjA0MDUxMDA3NTBaMDMxMTAvBgNV
BAMTKEREQkM5MjU1NkNGQ0FDOEQ5MDAzM0EwQTE0NUY5NTlFQ0UyN0U3N0MwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmYPkyKbYCmYwfWUDGtYKxophz
kJO+8A+eRufJJqS78qRpjH3EWXmvOlcQ+MQy6AsmASwrl9OQH/Odh0j9QwC0t85X
2EIc0nb2YLEppQQyqnU3KDYUjp9PNX4PB2JSHERIw2YuxrmHxKdNMaM7au57wlHF
12hF1ny4+gJSv2UT2rE3ZYGlGI5HRO40YSH2+qhSZDmW7MWhtNFMQ6VeB5EA1umq
zW5L7KIvNTs4T1Uec/OQTWyVPFG3mPbGoVEX9pc3CF2fjx7gs5HXLomtfpNH/elV
3bEOkVbtWpgh6KjGtpsu2aQ06SnbFqfej8Wx4ArDuSc1lEgaGAH4Uh+aJN5NAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQU3bySVWz8rI2QAzoKFF+Vns4n53wwHwYDVR0j
BBgwFoAUgYRmmwGJt/q+BecAMloNdJV76ycwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTQzMWU0MmUtMGQ3Zi00NGQwLTgxM2YtYjVlM2EyYWJi
ZTI1LzAvODE4NDY2OUIwMTg5QjdGQUJFMDVFNzAwMzI1QTBENzQ5NTdCRUIyNy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2dZUm1td0dKdF9xLUJlY0FNbG9OZEpW
NzZ5Yy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYTQzMWU0MmUt
MGQ3Zi00NGQwLTgxM2YtYjVlM2EyYWJiZTI1LzAvMzIzMTMzMmUzMTM1MzcyZTM5
MzYyZTMwMmYzMjMwMmQzMjMwMjAzZDNlMjAzMjMwMzUzMTMwLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE
1Z1gMA0GCSqGSIb3DQEBCwUAA4IBAQBg2SxWEnFrdyVUV7zx4CAdqCseK8kF4uep
OAvTmJdF9AicGnsoUo4edcf7rOvmWCl0E8loP7KRnJWytE4+Uz2EJikUPq6mgCRV
yf0PC8ALuangdsYV+okQN1wA55YHEsTduTqN2M41p9abKquhvGc/5KSBIyJfcQ93
NGH8X86AP1sAgvH6mBMRIMO2ilLCVlhnGHqiioOBTVW//POAwHbUUu92zDN085om
jwA2bEaFp+M9ZWG30Sdv+7WC6etfms+GY9Yzk3SCA7SWT7ZnO+dvKPayLQsVT4Tw
v05DtnkxzRJD/zqb9Xb/89FNE4R2kjHTRtLngN4wuc0tiplVLpZ9
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:28 2025 by rpki-client on console.sobornost.net