Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/0/3130332e3134392e3136382e302f32332d3233203d3e20333936303634.roa
File: 3130332e3134392e3136382e302f32332d3233203d3e20333936303634.roa (raw, json)
Hash identifier: t2rRJaiO5JXUe9ojQiZxBCHHkPzOsQY90eTPJjSOm/g=
Subject key identifier: 66:5C:94:B7:BE:95:B0:E6:49:BD:35:25:A4:0F:05:B9:64:DF:34:DF
Certificate issuer: /CN=5cdc04bb23eaa4cecc791dfe04bb028b7e797b68
Certificate serial: 2F283DB5D5C93FEEB2772992160BE19622CDA994
Authority key identifier: 5C:DC:04:BB:23:EA:A4:CE:CC:79:1D:FE:04:BB:02:8B:7E:79:7B:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XNwEuyPqpM7MeR3-BLsCi355e2g.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/0/3130332e3134392e3136382e302f32332d3233203d3e20333936303634.roa
Signing time: Mon 31 Mar 2025 21:43:29 +0000
ROA not before: Mon 31 Mar 2025 21:38:29 +0000
ROA not after: Mon 30 Mar 2026 21:43:29 +0000
asID: 396064
IP address blocks: 103.149.168.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:28:3d:b5:d5:c9:3f:ee:b2:77:29:92:16:0b:e1:96:22:cd:a9:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cdc04bb23eaa4cecc791dfe04bb028b7e797b68
Validity
Not Before: Mar 31 21:38:29 2025 GMT
Not After : Mar 30 21:43:29 2026 GMT
Subject: CN=665C94B7BE95B0E649BD3525A40F05B964DF34DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0c:08:8a:30:8a:0e:28:31:ad:ab:dc:b0:21:
46:47:98:10:e4:48:dc:3d:6b:cf:ae:92:d3:a7:8e:
69:bf:88:a5:f3:a9:4f:d9:27:36:16:3d:c9:30:5f:
c7:e9:3b:91:6d:69:9d:f6:12:8b:d3:21:d1:a5:5d:
9a:8a:25:66:a4:d6:43:33:3a:35:17:72:fe:5c:68:
59:9e:f4:45:7a:60:38:2b:fd:d9:09:5b:85:22:ba:
e0:22:8c:cb:6a:78:26:56:8e:53:a3:4c:a6:3b:09:
03:f7:d8:66:52:6e:31:1b:88:1f:23:3e:f7:93:b0:
ff:1f:d4:88:fb:33:34:16:73:7d:13:94:c0:cc:22:
c2:ae:4a:d2:48:ff:13:02:5c:36:7c:54:c5:03:6e:
79:2c:34:10:b5:ee:f2:3b:eb:6f:a0:9e:08:9c:b5:
78:fe:51:1e:08:a9:28:5c:3c:c2:f7:c6:08:1c:8d:
28:80:df:e2:79:67:c1:49:30:31:16:cc:2d:16:41:
c6:da:3a:7a:fb:a5:1e:3c:e3:3e:4e:42:71:73:03:
15:72:d0:c6:4c:55:26:73:b6:d4:5a:11:46:a7:07:
ca:1f:a7:b6:58:24:cb:aa:f3:ef:d0:52:c2:b6:09:
d6:27:18:fe:ba:c3:5e:02:5e:86:81:48:b5:52:3a:
66:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:5C:94:B7:BE:95:B0:E6:49:BD:35:25:A4:0F:05:B9:64:DF:34:DF
X509v3 Authority Key Identifier:
keyid:5C:DC:04:BB:23:EA:A4:CE:CC:79:1D:FE:04:BB:02:8B:7E:79:7B:68
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/0/5CDC04BB23EAA4CECC791DFE04BB028B7E797B68.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XNwEuyPqpM7MeR3-BLsCi355e2g.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/0/3130332e3134392e3136382e302f32332d3233203d3e20333936303634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.149.168.0/23
Signature Algorithm: sha256WithRSAEncryption
93:dd:33:66:da:3b:04:11:72:8c:55:c0:3d:ff:54:40:2e:a6:
dd:fa:5d:0c:51:43:0f:88:55:af:91:2c:b3:b8:af:a7:6b:33:
4b:61:fc:8d:2c:13:d4:4d:12:65:54:65:8b:0b:1c:3e:56:fa:
9f:67:dd:16:90:ba:3c:66:33:7c:69:2d:9b:62:79:a6:04:13:
45:13:b3:84:8a:6b:cf:81:2a:e2:cd:6a:2d:61:9e:71:95:a9:
b0:b5:af:c2:1a:97:2c:71:93:12:5a:c2:1b:26:89:1c:9e:f0:
db:e6:37:dd:f2:a8:f0:9b:be:e6:80:9e:21:f3:5b:ce:07:cd:
0b:70:4a:d3:83:16:a7:81:b1:ee:23:1c:24:43:e1:76:99:b9:
52:52:9d:a4:1b:08:5c:03:ff:26:22:18:8c:ea:1e:99:0b:2a:
a2:12:28:de:3e:8d:42:82:88:dd:ae:83:2f:ef:bf:86:7e:a1:
7f:3f:34:05:50:b9:92:a8:3f:bb:6b:dd:d4:52:45:f9:70:1f:
e7:69:36:aa:e5:ab:a6:89:f2:a6:68:e1:2a:54:90:45:06:8b:
de:21:23:05:b4:79:09:4e:1e:3a:6b:ba:36:b8:62:bf:bc:66:
30:d3:10:f6:b0:40:4e:c6:b9:db:f8:22:35:dd:fa:60:6b:27:
9e:d5:05:ea
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgIULyg9tdXJP+6ydymSFgvhliLNqZQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWNkYzA0YmIyM2VhYTRjZWNjNzkxZGZlMDRiYjAyOGI3
ZTc5N2I2ODAeFw0yNTAzMzEyMTM4MjlaFw0yNjAzMzAyMTQzMjlaMDMxMTAvBgNV
BAMTKDY2NUM5NEI3QkU5NUIwRTY0OUJEMzUyNUE0MEYwNUI5NjRERjM0REYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2DAiKMIoOKDGtq9ywIUZHmBDk
SNw9a8+uktOnjmm/iKXzqU/ZJzYWPckwX8fpO5FtaZ32EovTIdGlXZqKJWak1kMz
OjUXcv5caFme9EV6YDgr/dkJW4UiuuAijMtqeCZWjlOjTKY7CQP32GZSbjEbiB8j
PveTsP8f1Ij7MzQWc30TlMDMIsKuStJI/xMCXDZ8VMUDbnksNBC17vI762+gngic
tXj+UR4IqShcPML3xggcjSiA3+J5Z8FJMDEWzC0WQcbaOnr7pR484z5OQnFzAxVy
0MZMVSZzttRaEUanB8ofp7ZYJMuq8+/QUsK2CdYnGP66w14CXoaBSLVSOmZxAgMB
AAGjggJBMIICPTAdBgNVHQ4EFgQUZlyUt76VsOZJvTUlpA8FuWTfNN8wHwYDVR0j
BBgwFoAUXNwEuyPqpM7MeR3+BLsCi355e2gwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvY2QxOWRiMjAtNDY1My00OGQ0LThmYzQtNTgwZDEzNjli
N2M0LzAvNUNEQzA0QkIyM0VBQTRDRUNDNzkxREZFMDRCQjAyOEI3RTc5N0I2OC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hOd0V1eVBxcE03TWVSMy1CTHNDaTM1
NWUyZy5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvY2QxOWRiMjAt
NDY1My00OGQ0LThmYzQtNTgwZDEzNjliN2M0LzAvMzEzMDMzMmUzMTM0MzkyZTMx
MzYzODJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMzMzkzNjMwMzYzNC5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAWeVqDANBgkqhkiG9w0BAQsFAAOCAQEAk90zZto7BBFyjFXAPf9UQC6m3fpd
DFFDD4hVr5Ess7ivp2szS2H8jSwT1E0SZVRliwscPlb6n2fdFpC6PGYzfGktm2J5
pgQTRROzhIprz4Eq4s1qLWGecZWpsLWvwhqXLHGTElrCGyaJHJ7w2+Y33fKo8Ju+
5oCeIfNbzgfNC3BK04MWp4Gx7iMcJEPhdpm5UlKdpBsIXAP/JiIYjOoemQsqohIo
3j6NQoKI3a6DL++/hn6hfz80BVC5kqg/u2vd1FJF+XAf52k2quWrponypmjhKlSQ
RQaL3iEjBbR5CU4eOmu6Nrhiv7xmMNMQ9rBATsa52/giNd36YGsnntUF6g==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:30 2025 by rpki-client on console.sobornost.net