Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/4556f416-aad6-41bf-aebf-80a2cc67a466/0/3137382e3235342e3136362e302f32342d3234203d3e203238393634.roa
File: 3137382e3235342e3136362e302f32342d3234203d3e203238393634.roa (raw, json)
Hash identifier: nKknC1U2JtfoqS+RfNIzqqTnapVEu/+TGchWj9gRd88=
Subject key identifier: 13:78:37:FD:8E:C8:D1:A8:E9:9B:DB:4E:A1:5C:0E:A4:8B:39:90:CB
Certificate issuer: /CN=4f9948d82c74f5b80667b4a37394c8a56b7fe484
Certificate serial: 3A0B8D7DB01D067E3ACB10A91D345B343AC629B1
Authority key identifier: 4F:99:48:D8:2C:74:F5:B8:06:67:B4:A3:73:94:C8:A5:6B:7F:E4:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5lI2Cx09bgGZ7Sjc5TIpWt_5IQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/4556f416-aad6-41bf-aebf-80a2cc67a466/0/3137382e3235342e3136362e302f32342d3234203d3e203238393634.roa
Signing time: Tue 06 Jun 2023 09:16:20 +0000
ROA not before: Tue 06 Jun 2023 09:11:20 +0000
ROA not after: Tue 04 Jun 2024 09:16:20 +0000
asID: 28964
IP address blocks: 178.254.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:0b:8d:7d:b0:1d:06:7e:3a:cb:10:a9:1d:34:5b:34:3a:c6:29:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9948d82c74f5b80667b4a37394c8a56b7fe484
Validity
Not Before: Jun 6 09:11:20 2023 GMT
Not After : Jun 4 09:16:20 2024 GMT
Subject: CN=137837FD8EC8D1A8E99BDB4EA15C0EA48B3990CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:03:d9:8d:d5:30:ac:66:99:7d:28:ed:f6:4c:
2a:09:37:c6:1a:11:3b:63:90:b8:3d:91:dd:3a:87:
87:8a:f7:0d:52:c0:73:ae:1e:23:29:cb:01:0f:5f:
2e:3d:a4:54:f1:33:12:69:9e:6a:11:27:40:52:bd:
60:82:ed:38:e5:e4:9b:75:3c:dc:e5:de:cb:0f:5e:
b9:2f:c9:4c:a4:e9:df:65:64:2d:c9:b1:7f:5a:57:
b8:de:66:aa:fe:94:36:3d:01:31:ec:2e:29:79:82:
36:4d:10:b0:48:57:f2:03:4c:4e:9e:16:10:61:94:
6d:7a:4f:a9:7c:e7:0a:9b:8d:ca:9c:bb:4c:fc:84:
4f:7b:4b:7f:f6:4c:d5:5d:54:56:fd:82:c9:3f:65:
e2:8d:9a:6f:b2:1c:3f:9f:82:fa:3b:50:d7:d5:16:
6a:d0:46:dd:00:79:4c:b5:3f:c7:1e:a3:13:ff:f5:
2a:32:28:f4:6d:75:db:58:45:2d:0b:99:a1:08:ce:
15:a8:c4:f8:90:b2:db:ef:86:c4:e0:52:39:46:89:
af:47:92:d1:80:03:53:bf:44:50:cc:b6:02:ef:fd:
bb:43:10:9a:7c:ad:f3:15:49:f6:93:dd:14:2c:54:
82:8b:45:eb:cf:2f:df:0c:4a:73:62:f1:d0:ef:53:
a4:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:78:37:FD:8E:C8:D1:A8:E9:9B:DB:4E:A1:5C:0E:A4:8B:39:90:CB
X509v3 Authority Key Identifier:
keyid:4F:99:48:D8:2C:74:F5:B8:06:67:B4:A3:73:94:C8:A5:6B:7F:E4:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/4556f416-aad6-41bf-aebf-80a2cc67a466/0/4F9948D82C74F5B80667B4A37394C8A56B7FE484.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5lI2Cx09bgGZ7Sjc5TIpWt_5IQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/4556f416-aad6-41bf-aebf-80a2cc67a466/0/3137382e3235342e3136362e302f32342d3234203d3e203238393634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.254.166.0/24
Signature Algorithm: sha256WithRSAEncryption
28:db:ae:19:a1:e3:ff:96:18:f0:e6:77:bf:aa:8e:56:f1:dc:
aa:6a:21:23:e4:37:76:d0:a8:8e:1c:d6:d0:e2:65:5c:fb:2d:
71:45:4f:7f:d5:72:db:70:fc:a7:21:eb:3f:a6:d6:62:61:f4:
3a:4f:1b:f1:6a:c8:5b:e4:3a:93:c3:ea:94:6f:2b:32:1b:7a:
cb:d2:a0:02:aa:63:8d:e3:6c:6c:5b:d4:a3:00:6b:56:da:44:
2f:ff:73:59:32:43:89:a7:8d:3c:a5:47:83:5d:6b:e5:4e:5e:
b9:e7:04:b8:08:37:c8:be:f2:4d:58:08:db:c3:8a:49:a4:8a:
0d:ec:a3:5a:dc:61:5d:94:e7:f3:ae:57:e0:ec:ac:50:24:c6:
0c:8d:10:1e:aa:5c:01:ec:88:af:21:28:04:d1:ce:31:e0:3e:
28:7b:99:dc:b2:0d:87:02:f7:fd:db:0d:76:cc:13:1f:6b:6f:
c8:23:a6:fb:19:10:82:72:22:d7:9a:01:fe:de:f6:45:f9:69:
03:88:8a:6b:39:3a:e1:7a:d9:ad:3f:2d:6c:d6:48:83:ed:15:
77:22:c7:dd:8f:ab:08:7a:81:5f:74:aa:6e:dd:57:95:25:21:
cc:90:38:9d:fa:6a:e6:52:50:52:10:5b:b8:4e:c2:08:57:af:
ba:11:ee:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 06:28:30 2025 by rpki-client