Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/3139342e3132342e3233362e302f32342d3234203d3e203630373335.roa
File: 3139342e3132342e3233362e302f32342d3234203d3e203630373335.roa (raw, json)
Hash identifier: lmVh0tkdqz2ZaktlfIJzzJLuyL6wItEcUEPI+PVNqdo=
Subject key identifier: 81:B7:ED:62:F6:27:CF:B6:AB:B9:A3:0D:87:07:54:D3:9F:2B:51:0D
Certificate issuer: /CN=cb29a77669df5a7a5cb506d839ee8aa4337ccaac
Certificate serial: 0BD9757360DB57B79F1520276B04512441FB4959
Authority key identifier: CB:29:A7:76:69:DF:5A:7A:5C:B5:06:D8:39:EE:8A:A4:33:7C:CA:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yymndmnfWnpctQbYOe6KpDN8yqw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/3139342e3132342e3233362e302f32342d3234203d3e203630373335.roa
Signing time: Sun 30 Mar 2025 05:13:27 +0000
ROA not before: Sun 30 Mar 2025 05:08:27 +0000
ROA not after: Sun 29 Mar 2026 05:13:27 +0000
asID: 60735
IP address blocks: 194.124.236.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:d9:75:73:60:db:57:b7:9f:15:20:27:6b:04:51:24:41:fb:49:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb29a77669df5a7a5cb506d839ee8aa4337ccaac
Validity
Not Before: Mar 30 05:08:27 2025 GMT
Not After : Mar 29 05:13:27 2026 GMT
Subject: CN=81B7ED62F627CFB6ABB9A30D870754D39F2B510D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:6c:19:54:c9:5e:07:cd:2a:f1:e7:42:e0:81:
59:39:aa:2e:f2:ca:71:e0:30:65:48:3f:64:51:92:
a5:52:da:47:95:d5:35:a5:52:32:79:3b:ea:63:e8:
9e:3e:a0:2c:cc:87:32:73:44:c5:c2:04:bb:3f:aa:
13:e5:63:c3:b8:85:36:ab:3e:73:d9:85:de:e3:a1:
ee:2a:28:62:0a:68:bf:a5:61:b7:6b:df:f6:17:4e:
52:9a:a2:b3:4a:e4:f8:9b:b0:e8:64:b7:79:c5:0a:
49:9f:d4:78:5d:36:cd:47:93:18:2e:29:31:d7:9f:
13:ed:25:a9:b5:4f:46:e3:7d:cd:d6:ee:33:a1:f9:
cf:dd:7a:6f:a3:d6:39:3c:b3:a7:43:8f:91:ec:04:
ce:ce:23:ef:74:96:f6:0d:90:73:09:ca:9b:2c:be:
9b:ba:23:ff:87:0b:55:50:63:c6:86:55:7d:3f:8a:
74:e8:56:c1:b0:af:1f:99:c2:57:fd:14:c0:af:d0:
a0:ff:06:86:66:11:ef:44:2b:66:c0:51:18:aa:3e:
4a:ea:62:cf:95:99:5e:9f:3e:b8:37:86:57:2e:d4:
b8:44:58:52:5f:75:d7:6e:80:27:e1:6f:4a:48:3a:
ca:40:d1:5f:3b:8c:8e:61:bb:1e:4f:a2:34:fe:12:
96:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:B7:ED:62:F6:27:CF:B6:AB:B9:A3:0D:87:07:54:D3:9F:2B:51:0D
X509v3 Authority Key Identifier:
keyid:CB:29:A7:76:69:DF:5A:7A:5C:B5:06:D8:39:EE:8A:A4:33:7C:CA:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/CB29A77669DF5A7A5CB506D839EE8AA4337CCAAC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yymndmnfWnpctQbYOe6KpDN8yqw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/3139342e3132342e3233362e302f32342d3234203d3e203630373335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.124.236.0/24
Signature Algorithm: sha256WithRSAEncryption
56:24:2b:66:e3:39:36:a7:7f:18:17:dc:57:69:86:7d:5b:78:
9f:c2:6f:c3:25:b5:80:d8:49:8c:d8:42:5a:f8:33:8f:ad:a1:
5b:d7:98:73:16:25:53:a2:32:5f:d9:22:8a:c9:78:3a:fb:87:
8e:ff:dc:43:36:13:22:35:2e:ba:bd:09:84:fd:db:b6:7b:22:
78:73:66:63:f4:d5:52:36:9d:56:52:ff:e2:d3:6d:5c:01:96:
a9:20:63:66:c7:8d:68:b2:6c:ca:52:8c:ca:90:8f:46:dc:c5:
67:23:1f:f5:f7:2f:26:d1:36:eb:a9:4e:7b:3b:82:a3:44:50:
be:b5:ea:fd:cc:ab:ab:32:36:9d:72:c2:2c:cd:da:54:0d:91:
93:a8:2e:ee:3e:a2:0d:88:b3:dd:28:f2:42:ad:3a:66:bf:57:
a6:9d:9f:89:c4:a1:bc:32:07:75:7c:e4:b8:d3:86:db:16:f8:
4c:8b:02:22:61:8d:3f:68:f3:e0:ad:d7:e3:b6:8e:52:47:d8:
c5:cd:66:91:78:df:32:80:80:2b:a8:54:9e:48:3d:b2:a4:fb:
14:91:0b:77:3a:00:d0:bc:c2:44:6c:51:2a:d0:6b:d4:f1:e1:
e6:fe:58:0f:66:94:bb:48:65:f4:5e:ac:53:ef:70:7a:1f:4e:
78:90:1e:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:29 2025 by rpki-client on console.sobornost.net