Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/4556f416-aad6-41bf-aebf-80a2cc67a466/0/352e3137322e33322e302f32342d3234203d3e203238393634.roa
File: 352e3137322e33322e302f32342d3234203d3e203238393634.roa (raw, json)
Hash identifier: CrozvNupjzaoVcyQaR/iB0OSBM0Q4XEDl6VwU2Ws1aI=
Subject key identifier: 5F:41:C6:C5:5F:9A:74:C2:70:F3:07:2D:B8:13:96:61:47:7C:5D:51
Certificate issuer: /CN=4f9948d82c74f5b80667b4a37394c8a56b7fe484
Certificate serial: 7BB4B7BC516C0B3496186C458564345BE8149D43
Authority key identifier: 4F:99:48:D8:2C:74:F5:B8:06:67:B4:A3:73:94:C8:A5:6B:7F:E4:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5lI2Cx09bgGZ7Sjc5TIpWt_5IQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/4556f416-aad6-41bf-aebf-80a2cc67a466/0/352e3137322e33322e302f32342d3234203d3e203238393634.roa
Signing time: Tue 06 Jun 2023 09:21:27 +0000
ROA not before: Tue 06 Jun 2023 09:16:27 +0000
ROA not after: Tue 04 Jun 2024 09:21:27 +0000
asID: 28964
IP address blocks: 5.172.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:b4:b7:bc:51:6c:0b:34:96:18:6c:45:85:64:34:5b:e8:14:9d:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9948d82c74f5b80667b4a37394c8a56b7fe484
Validity
Not Before: Jun 6 09:16:27 2023 GMT
Not After : Jun 4 09:21:27 2024 GMT
Subject: CN=5F41C6C55F9A74C270F3072DB8139661477C5D51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:49:ea:d7:c3:a2:36:fa:2b:d9:73:93:17:de:
25:8c:cc:82:10:18:7a:b3:1e:99:79:f8:89:ea:09:
7b:97:c3:6e:8c:d8:9b:d0:99:d9:a3:83:af:ac:a9:
a0:70:3a:10:3f:4a:90:2e:c9:81:ce:b0:e7:87:e3:
bb:b5:31:33:2f:b9:6c:f4:c8:28:74:9f:0f:cc:7b:
84:88:95:4b:ce:ce:a6:73:4d:fa:89:b9:81:5c:b2:
1a:1d:6d:bb:a4:ce:f4:b3:66:eb:77:5d:fe:33:1b:
dd:ac:22:d2:ce:75:3f:06:44:c5:f7:b8:fd:a7:06:
4a:4d:9e:b9:95:cc:bc:ae:fe:b6:bd:c0:ac:59:c0:
2b:d7:90:10:7c:8c:0e:a9:f1:87:12:6a:51:19:d6:
54:8f:a2:76:26:b9:3d:c4:57:37:4d:88:3a:2c:e0:
5f:7a:27:c7:6a:97:5b:11:04:b9:8b:07:62:10:4c:
ab:1e:4b:f2:7e:22:c6:89:0e:3c:6b:66:1f:07:0d:
40:93:90:dd:c8:c9:96:a8:73:c9:1e:e5:0d:41:eb:
d7:c1:8e:49:81:a6:a0:6e:f9:c8:5a:91:ff:0b:fc:
99:98:0b:3d:ea:67:c6:5f:ed:d1:49:b1:29:e0:73:
fe:df:fa:c7:d0:72:f6:91:3a:65:a9:24:f0:a3:40:
cf:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:41:C6:C5:5F:9A:74:C2:70:F3:07:2D:B8:13:96:61:47:7C:5D:51
X509v3 Authority Key Identifier:
keyid:4F:99:48:D8:2C:74:F5:B8:06:67:B4:A3:73:94:C8:A5:6B:7F:E4:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/4556f416-aad6-41bf-aebf-80a2cc67a466/0/4F9948D82C74F5B80667B4A37394C8A56B7FE484.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5lI2Cx09bgGZ7Sjc5TIpWt_5IQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/4556f416-aad6-41bf-aebf-80a2cc67a466/0/352e3137322e33322e302f32342d3234203d3e203238393634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.32.0/24
Signature Algorithm: sha256WithRSAEncryption
02:2f:68:77:a0:d7:08:0f:c0:af:e4:fb:5c:0c:b4:e1:b2:e9:
48:94:38:d0:b2:46:e9:ab:98:4e:b8:0f:74:62:e7:44:86:6c:
19:98:8f:c7:96:04:f5:b9:11:d4:7f:15:35:79:f6:71:d3:08:
de:1f:ec:45:b6:c2:04:e3:14:c7:30:08:c7:ec:b1:d6:80:b3:
f7:4a:c2:78:d9:e5:21:0b:84:86:df:a0:98:3f:4b:7d:d6:7f:
7d:03:ac:71:7d:9e:72:fd:0e:1f:97:a5:96:3b:d9:9e:72:85:
a7:98:b3:38:f5:94:f5:57:64:27:91:9e:57:d0:a0:aa:32:71:
58:46:11:3f:e5:0c:7d:1c:f0:f8:4e:06:38:e5:5b:b3:5f:3c:
7e:c3:19:b1:75:88:d5:74:48:dd:8c:95:7b:63:e4:b3:ed:cc:
5c:b5:e2:c3:b2:07:35:b8:bd:b5:f9:22:a8:e6:4a:2d:e5:b4:
ce:14:fd:66:1b:fc:82:28:c5:56:d7:5d:e4:49:c6:c6:20:da:
15:95:f6:5a:12:56:ec:47:1c:90:69:1f:8a:78:83:1c:0e:13:
64:b3:c4:7a:0d:2c:08:0e:94:be:a1:10:95:f5:1e:60:43:87:
cb:8c:ef:b3:d7:9e:e1:67:75:62:ef:d4:72:d5:af:54:c3:bc:
df:45:99:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 16:07:55 2025 by rpki-client