Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136352e38362e302f32342d3234203d3e20313336373837.roa
File: 3138352e3136352e38362e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: TMsHMSla1Ntz+5UWmKuVPZwrnmwD1AXYoYzTK9KmjwY=
Subject key identifier: AD:19:A8:B1:5F:2C:E0:D7:C2:91:33:BA:EA:63:9E:96:9F:9B:F3:1C
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 0C80C308F3557478956E460810DF1C5F8CC39386
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136352e38362e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 13 Apr 2025 11:46:03 +0000
ROA not before: Sun 13 Apr 2025 11:41:03 +0000
ROA not after: Sun 12 Apr 2026 11:46:03 +0000
asID: 136787
IP address blocks: 185.165.86.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:80:c3:08:f3:55:74:78:95:6e:46:08:10:df:1c:5f:8c:c3:93:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Apr 13 11:41:03 2025 GMT
Not After : Apr 12 11:46:03 2026 GMT
Subject: CN=AD19A8B15F2CE0D7C29133BAEA639E969F9BF31C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a7:1c:3e:2a:c9:3f:f1:97:52:67:19:d3:66:
fc:56:f7:ba:64:22:b1:67:a4:6f:5f:22:03:d2:9e:
c0:c7:81:04:fa:58:b0:f0:96:54:40:bc:7b:1d:b6:
4d:4d:6b:1d:11:5e:16:9f:59:4e:a7:7b:b5:62:1f:
38:68:83:92:3d:15:bf:1b:e3:4a:44:8c:aa:6e:cb:
b1:fa:02:b2:17:4e:6e:95:fb:2b:b0:ea:9e:dd:52:
0b:74:59:55:85:5f:96:41:1a:44:b4:06:69:1f:3e:
79:38:d5:05:a8:1d:07:57:5f:ac:51:e3:38:9e:de:
90:47:26:be:a9:ab:79:bb:c9:48:fb:39:f3:a4:d3:
7a:a3:ec:16:42:50:98:57:53:76:24:a6:b1:13:4f:
2e:17:e5:cc:e1:1a:73:d1:ef:7e:68:86:85:50:d4:
44:23:27:7a:09:96:86:8f:af:0c:9b:0b:7e:12:c5:
59:14:5b:93:65:20:07:84:d6:1b:95:a6:88:3e:f7:
de:e7:ec:15:53:b4:c4:8a:bd:33:16:d9:b9:bd:73:
aa:4d:4e:bf:50:1d:4e:b4:5a:a4:fb:39:2d:fc:52:
6c:e6:b4:8f:d2:c2:1d:c1:77:ae:ab:89:9a:89:20:
cb:c1:3d:37:aa:ea:60:cf:09:fa:46:88:e9:08:e4:
d4:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:19:A8:B1:5F:2C:E0:D7:C2:91:33:BA:EA:63:9E:96:9F:9B:F3:1C
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136352e38362e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.86.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:fe:04:0c:5e:da:3a:f1:41:44:36:51:9f:88:05:2d:06:a7:
0b:09:36:06:ac:10:6e:fa:1b:ee:63:75:b6:74:93:75:6e:13:
de:a2:54:5d:e4:de:6c:fa:b4:f8:ea:c4:a2:14:ee:0f:21:fd:
a6:05:a5:b9:19:45:35:03:43:3b:52:ae:28:6e:b2:8d:ae:f8:
01:30:94:29:4a:49:d9:d8:8a:99:c9:6d:86:d8:11:c7:45:38:
9e:5d:82:46:06:b4:51:0a:ba:e8:61:95:bf:ce:d2:81:c6:e3:
4c:01:71:58:21:0e:bd:bc:61:d1:f7:aa:ae:ab:e4:0a:45:79:
c8:af:ea:41:46:7f:fc:01:9a:19:c8:2a:1f:a7:14:3d:7c:90:
05:fd:3d:22:27:0b:1f:0c:9f:c7:e7:4f:32:5c:77:01:5b:db:
cc:2b:7a:88:ca:fc:bd:41:02:2a:34:c5:7b:b2:ce:e5:39:12:
54:a2:7e:b8:b3:4a:86:97:0e:a4:52:7d:d3:58:a8:6b:42:55:
8f:c1:b2:d8:c0:e1:7b:c3:ea:24:1f:ef:62:7d:98:34:83:9a:
73:01:65:0f:53:66:fa:75:3c:d6:44:56:e2:85:7d:78:f6:a2:
68:a0:56:66:36:75:dc:89:ad:62:74:3a:20:b1:15:e0:09:a9:
68:9c:83:29
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:31 2025 by rpki-client on console.sobornost.net