Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3231322e32332e3231392e302f32342d3234203d3e203232343237.roa
File: 3231322e32332e3231392e302f32342d3234203d3e203232343237.roa (raw, json)
Hash identifier: bl1YrhASgoPPqYGHP6WX4snwCjKWYmynAd4TMMUAz0g=
Subject key identifier: F3:E9:C3:94:DD:60:B9:89:44:43:3D:2D:0D:01:CA:39:B1:41:2F:67
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 6CFB3BA5431797F1A9F7274C4AA1371EEED0959F
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3231322e32332e3231392e302f32342d3234203d3e203232343237.roa
Signing time: Thu 10 Apr 2025 13:01:47 +0000
ROA not before: Thu 10 Apr 2025 12:56:47 +0000
ROA not after: Thu 09 Apr 2026 13:01:47 +0000
asID: 22427
IP address blocks: 212.23.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:fb:3b:a5:43:17:97:f1:a9:f7:27:4c:4a:a1:37:1e:ee:d0:95:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Apr 10 12:56:47 2025 GMT
Not After : Apr 9 13:01:47 2026 GMT
Subject: CN=F3E9C394DD60B98944433D2D0D01CA39B1412F67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d4:b7:49:91:35:08:bc:fc:47:b0:86:ce:bd:
58:93:92:72:a2:da:a5:86:28:34:81:7a:51:bc:b2:
3f:80:5e:c0:4e:06:24:70:64:39:ee:ec:b8:0c:68:
17:c2:97:7c:8b:9e:90:3d:70:2a:a5:54:af:d3:98:
79:dd:14:be:95:36:9e:bd:c5:c4:f9:ab:ab:72:8d:
e3:eb:35:3b:13:f9:58:04:16:2b:1c:e3:40:94:48:
b9:43:6d:5c:2e:cc:34:19:80:c2:56:d8:cb:6c:9e:
0b:f3:7d:89:3c:57:b7:c7:51:77:d2:4c:f0:b5:bf:
09:1f:da:0b:9a:ab:37:35:26:9a:64:cf:8a:c5:28:
24:fa:d4:40:28:8a:50:4f:8b:b3:1c:6b:86:7d:38:
c9:9e:78:ca:77:44:a8:ac:15:4d:29:c2:96:fa:5a:
26:56:3f:bb:71:7e:c7:a7:17:b3:7f:20:94:bd:13:
1b:4d:55:3c:38:68:65:c2:4f:33:02:7f:51:06:d8:
ba:c8:42:e4:4b:9b:1e:94:3a:53:61:42:8b:f4:3a:
ef:f8:ca:c4:88:73:7a:dc:bf:7d:37:af:2c:9c:56:
08:c6:59:08:33:a8:de:35:88:a8:79:a7:c5:2e:51:
e2:25:b1:72:d7:f9:31:3e:bc:dd:49:c8:97:4d:9d:
33:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:E9:C3:94:DD:60:B9:89:44:43:3D:2D:0D:01:CA:39:B1:41:2F:67
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3231322e32332e3231392e302f32342d3234203d3e203232343237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.219.0/24
Signature Algorithm: sha256WithRSAEncryption
51:03:86:c5:01:29:e3:e8:b9:30:0e:5e:bc:cf:d4:c9:3d:7e:
6b:a1:1f:02:aa:25:70:50:b1:45:78:13:25:10:24:fd:d7:01:
bf:f9:d5:c3:67:09:f8:2a:e8:70:5c:da:da:c3:35:93:80:30:
33:49:8c:67:a8:f8:24:d7:ae:a0:46:ee:41:bd:f6:2f:f1:cc:
f3:9e:9e:7a:6e:79:a6:42:ae:24:f1:13:d6:b1:6f:c9:1a:be:
cd:43:4f:64:82:30:93:59:e6:92:84:2f:be:b6:b0:ff:bb:46:
5f:57:cd:03:3d:a1:cf:64:b4:39:92:b7:c9:2d:db:e9:ba:b3:
0f:dd:61:b3:3d:f1:ab:0b:5d:81:79:ae:29:fd:67:67:03:96:
44:24:7f:cb:8d:a0:2c:05:31:bc:18:22:76:51:36:90:8f:1c:
2e:f1:b2:ed:e7:c6:9a:3f:c3:d5:5f:05:fc:dd:30:32:73:93:
6a:47:16:f5:a6:67:4b:d9:7e:e3:10:14:5d:26:37:5b:70:5d:
63:a6:83:10:09:0e:02:2c:f3:e2:f3:c3:33:72:0b:16:2c:f2:
ca:95:5e:e7:c1:a6:fe:35:2f:2f:27:d5:9e:1b:dc:0c:93:67:
4c:8c:1d:7b:5a:09:c5:e6:fd:a3:de:fb:eb:7b:d3:4e:bc:50:
4e:7b:8f:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:29 2025 by rpki-client on console.sobornost.net