Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137372e3131392e302f32342d3234203d3e20313336373837.roa
File: 3138352e3137372e3131392e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: cklB0sUusBVRIXrixIiGMOSUGOWxp+nDSd4T4YTYZG4=
Subject key identifier: 53:88:2A:A3:54:E0:3F:80:ED:8B:52:35:EC:67:83:D8:B9:3B:BF:D6
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 1F2DD7D299DF00B40D9097B0175D2DD943BD4F8A
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137372e3131392e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 13 Apr 2025 11:46:04 +0000
ROA not before: Sun 13 Apr 2025 11:41:04 +0000
ROA not after: Sun 12 Apr 2026 11:46:04 +0000
asID: 136787
IP address blocks: 185.177.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:2d:d7:d2:99:df:00:b4:0d:90:97:b0:17:5d:2d:d9:43:bd:4f:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Apr 13 11:41:04 2025 GMT
Not After : Apr 12 11:46:04 2026 GMT
Subject: CN=53882AA354E03F80ED8B5235EC6783D8B93BBFD6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f3:85:88:77:43:2b:00:47:3d:72:3b:e1:3e:
61:6a:e6:8e:ce:6f:fd:5d:95:8a:82:10:d4:e6:e8:
e7:4d:c5:2b:89:5d:e4:6b:be:5a:e1:08:b0:28:7d:
64:47:2f:d0:5e:00:e7:64:db:25:d3:14:95:7a:80:
14:13:89:86:e8:89:75:68:00:db:b5:06:ac:4d:e7:
fa:d5:3c:53:c2:db:8b:d0:02:a4:82:ea:18:7d:0f:
f8:c5:81:b9:8a:fc:34:f8:1b:53:ce:df:15:23:d0:
11:f3:69:45:1c:eb:7e:49:f0:b2:cf:db:bb:1f:cf:
55:62:37:d2:ae:6b:b9:a8:50:ef:dd:90:48:d7:8a:
db:92:f5:ae:2f:87:c8:40:02:11:3f:3d:d4:51:51:
ad:d5:69:8e:65:d9:06:fd:05:f9:cf:fd:65:61:77:
f9:cd:12:29:a2:14:12:47:5c:e5:e5:fb:80:08:35:
91:b2:43:ea:4a:ab:b3:3f:f5:13:78:80:29:3d:6d:
6a:b9:19:be:98:f4:f1:a2:d6:fd:39:c9:32:02:ce:
17:fc:f5:a4:0d:3e:ad:74:8b:cd:bc:b1:bf:2b:fc:
a2:aa:6a:f1:a2:a1:e0:a7:10:da:3f:c8:67:b2:b0:
c6:c8:62:96:2e:86:a3:ce:38:a2:8a:f9:1a:7b:8c:
bb:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:88:2A:A3:54:E0:3F:80:ED:8B:52:35:EC:67:83:D8:B9:3B:BF:D6
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137372e3131392e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.119.0/24
Signature Algorithm: sha256WithRSAEncryption
08:33:2a:d8:53:a8:ff:58:14:6c:cb:c9:dd:94:03:18:0a:54:
5a:cc:f8:68:22:8f:ea:05:40:8b:e0:85:14:dd:a9:14:56:d5:
5f:4d:2c:02:34:ef:17:f0:e2:53:cb:4f:86:bb:07:3f:ce:55:
e7:3a:e3:76:3d:22:3e:d5:70:01:4c:b9:29:cd:12:ba:3c:ef:
26:14:bc:5f:4f:d1:f3:38:03:d0:60:e7:8a:65:f7:c1:8b:be:
2e:02:3d:35:1e:67:07:73:02:1b:56:88:8f:1f:65:01:1c:5b:
92:d7:48:d6:63:b3:49:2b:8b:6f:09:28:94:ff:96:c0:67:01:
bd:f7:a4:4a:bf:a2:65:51:03:fb:7d:9a:9a:73:49:5b:4c:22:
fb:1c:b1:66:3b:7c:b1:14:15:20:d2:43:b2:52:4e:0a:1d:01:
a6:37:35:28:e4:4d:13:72:42:2a:67:a4:2b:a0:d0:29:fd:8e:
a7:bd:8a:43:7e:37:8d:38:30:6e:2d:6e:48:e8:89:bb:51:73:
1a:b9:0d:c8:a4:23:b0:b6:6d:29:13:ea:25:c7:52:e6:e3:f3:
c6:66:11:c1:69:8b:0b:70:ea:ae:72:3d:9a:08:40:ec:8a:35:
07:5a:f0:fd:29:9a:4f:85:ef:fe:86:96:09:b4:f0:cf:3e:d0:
71:c1:20:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:32 2025 by rpki-client on console.sobornost.net