Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/4556f416-aad6-41bf-aebf-80a2cc67a466/0/3130392e3131312e3235312e302f32342d3234203d3e203238393634.roa
File: 3130392e3131312e3235312e302f32342d3234203d3e203238393634.roa (raw, json)
Hash identifier: C4M7oKcxNU2/6Vq++/5egSWO5+QqPh8f9F+iyeecrg4=
Subject key identifier: 89:BD:77:A0:AE:1C:27:5D:75:CB:EC:D6:26:F1:7C:8B:8C:18:21:96
Certificate issuer: /CN=4f9948d82c74f5b80667b4a37394c8a56b7fe484
Certificate serial: 3D2FFC6E8CD0945AEBAD8F957B3BF40D9F89F01B
Authority key identifier: 4F:99:48:D8:2C:74:F5:B8:06:67:B4:A3:73:94:C8:A5:6B:7F:E4:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5lI2Cx09bgGZ7Sjc5TIpWt_5IQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/4556f416-aad6-41bf-aebf-80a2cc67a466/0/3130392e3131312e3235312e302f32342d3234203d3e203238393634.roa
Signing time: Tue 06 Jun 2023 09:13:03 +0000
ROA not before: Tue 06 Jun 2023 09:08:03 +0000
ROA not after: Tue 04 Jun 2024 09:13:03 +0000
asID: 28964
IP address blocks: 109.111.251.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:2f:fc:6e:8c:d0:94:5a:eb:ad:8f:95:7b:3b:f4:0d:9f:89:f0:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9948d82c74f5b80667b4a37394c8a56b7fe484
Validity
Not Before: Jun 6 09:08:03 2023 GMT
Not After : Jun 4 09:13:03 2024 GMT
Subject: CN=89BD77A0AE1C275D75CBECD626F17C8B8C182196
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:d6:f3:b5:b4:72:4c:d2:92:ee:a4:76:c0:cf:
a9:53:6c:e6:6f:d7:88:44:47:d7:a3:d9:18:f7:6d:
7a:9b:5b:01:3d:8c:c7:5f:ad:92:bd:9a:27:01:ad:
36:73:d1:31:12:dd:a7:db:4e:0e:01:09:cb:8f:9d:
06:5f:1a:80:42:89:7f:81:96:75:82:8a:ab:ef:1f:
b9:cd:73:b4:94:ed:71:ea:1f:44:a2:1c:57:a8:25:
23:6d:4f:4e:e8:f8:da:a6:89:46:69:d6:88:e4:f0:
a7:d7:c3:ce:b3:1b:0c:f6:52:46:f5:89:b3:f1:e2:
ce:06:5d:30:5c:25:1d:48:a3:07:a5:5d:6b:73:f5:
62:77:01:68:eb:44:b1:b6:ab:a9:ff:02:66:e5:86:
e0:af:27:ac:f4:8c:c5:8b:c9:1c:a0:b2:50:f4:fb:
07:38:77:08:d3:59:fa:dd:23:bd:68:e2:4e:50:01:
33:f1:44:48:d0:4b:df:9d:2a:0f:34:18:ef:a5:1c:
6c:89:c1:ef:48:b8:ba:61:dd:cf:bc:e1:f0:0f:0f:
b8:bf:6a:b6:cf:d2:06:56:d9:e1:77:b2:5d:a3:fd:
80:7b:81:00:9f:79:2e:e4:c4:95:b2:18:f4:f6:97:
8a:8a:d2:cb:87:df:07:6e:c3:cf:40:52:08:ec:1d:
bb:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:BD:77:A0:AE:1C:27:5D:75:CB:EC:D6:26:F1:7C:8B:8C:18:21:96
X509v3 Authority Key Identifier:
keyid:4F:99:48:D8:2C:74:F5:B8:06:67:B4:A3:73:94:C8:A5:6B:7F:E4:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/4556f416-aad6-41bf-aebf-80a2cc67a466/0/4F9948D82C74F5B80667B4A37394C8A56B7FE484.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5lI2Cx09bgGZ7Sjc5TIpWt_5IQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/4556f416-aad6-41bf-aebf-80a2cc67a466/0/3130392e3131312e3235312e302f32342d3234203d3e203238393634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.111.251.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:c9:93:89:ae:b3:8e:86:5c:a0:17:8f:fd:b9:d0:ce:61:07:
03:03:4b:23:bc:f8:10:ef:61:95:82:6a:1d:7a:86:e8:85:48:
04:13:4b:bc:da:6d:79:e9:22:ae:63:41:e3:17:e7:b8:5d:6e:
a6:bb:24:b4:a6:da:9b:07:a0:28:24:5e:c9:7a:aa:50:59:0f:
73:12:f8:9c:94:10:2d:e4:58:d8:58:a3:ed:94:7e:10:25:fd:
f5:4c:86:95:7f:6f:22:87:a3:c9:4a:c1:ea:ee:5e:ff:8b:26:
92:c0:41:4d:5f:86:7f:cb:45:2e:57:25:70:8a:99:9e:f1:2b:
71:60:76:f8:f1:64:a0:b1:8c:68:d7:fe:0e:46:b2:ee:64:ed:
87:10:4a:5b:3c:21:c9:93:05:8d:ba:cd:bb:6c:f9:5b:45:b0:
e4:a6:98:74:85:f5:19:8f:be:60:10:ed:d9:35:9b:ce:cc:b4:
bc:cf:a3:e3:22:69:25:f8:04:e7:c0:15:cb:ac:99:0a:1f:b8:
ca:93:d0:a6:ba:42:07:b1:5d:b5:e9:50:33:02:5e:23:72:63:
0f:b8:e9:1f:52:29:35:57:90:1f:e0:01:04:3c:04:02:65:35:
b9:b6:40:73:f0:38:2d:93:1f:3e:a6:fe:f7:f7:97:8b:e9:9c:
8b:54:7d:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 07:13:19 2025 by rpki-client