Route Origin Authorization

$ rpki-client -vvf rpki.athene-center.net/repo/rpki-athene-center/0/34352e3135352e3132382e302f32342d3234203d3e20323132373935.roa
File:                     34352e3135352e3132382e302f32342d3234203d3e20323132373935.roa (raw, json)
Hash identifier:          z9gu3Hv91Kt9JqyIzHHlApvzjlcLaQVo2Jc7LLgWKDs=
Subject key identifier:   7F:A1:86:B4:C0:6C:50:A3:42:BE:EA:46:9C:23:EB:E9:9D:EA:ED:D2
Certificate issuer:       /CN=ee092d6ecb52bc99a39fa6677afbee9e41bae0d9
Certificate serial:       63DE379D4E7940C765675F83372C90E4AF925114
Authority key identifier: EE:09:2D:6E:CB:52:BC:99:A3:9F:A6:67:7A:FB:EE:9E:41:BA:E0:D9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7gktbstSvJmjn6ZnevvunkG64Nk.cer
Subject info access:      rsync://rpki.athene-center.net/repo/rpki-athene-center/0/34352e3135352e3132382e302f32342d3234203d3e20323132373935.roa
Signing time:             Tue 19 Mar 2024 14:02:58 +0000
ROA not before:           Tue 19 Mar 2024 13:57:58 +0000
ROA not after:            Tue 18 Mar 2025 14:02:58 +0000
asID:                     212795
IP address blocks:        45.155.128.0/24 maxlen: 24

Validation:               Failed, unable to get certificate CRL

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            63:de:37:9d:4e:79:40:c7:65:67:5f:83:37:2c:90:e4:af:92:51:14
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ee092d6ecb52bc99a39fa6677afbee9e41bae0d9
        Validity
            Not Before: Mar 19 13:57:58 2024 GMT
            Not After : Mar 18 14:02:58 2025 GMT
        Subject: CN=7FA186B4C06C50A342BEEA469C23EBE99DEAEDD2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:d3:d5:e4:ea:fd:4b:7e:45:9b:cf:c9:62:b1:
                    54:33:2f:ab:8a:40:f6:55:ec:31:b0:c8:5c:dd:70:
                    a8:09:e9:76:b5:0f:b9:10:c4:75:77:cd:99:80:e6:
                    5e:65:03:42:3b:98:57:5e:e2:e9:22:8b:05:9a:34:
                    96:a1:b8:83:d8:11:0d:77:8e:aa:df:df:24:e1:c5:
                    11:e1:66:70:ce:04:42:1c:83:e4:7c:00:40:d8:05:
                    a7:76:7d:d0:ff:da:20:4d:f5:73:65:ea:34:3b:3f:
                    2e:02:d0:9a:a4:70:cf:44:9a:c2:c8:b1:76:36:57:
                    1b:3a:8f:f8:97:be:d0:b6:22:f1:cf:0c:ba:1f:5e:
                    45:a7:9e:b6:0f:14:73:34:65:6d:d5:93:1f:30:b1:
                    a3:20:db:44:01:ff:8c:aa:a1:b2:66:5c:96:27:9c:
                    ef:f1:08:fc:bc:14:0f:e9:c9:b2:bc:f2:51:5f:4a:
                    83:c2:5f:3b:3c:c7:89:f0:a3:bb:6e:6b:4a:c0:45:
                    84:6a:3c:d8:11:72:0b:50:c6:ac:3e:bd:10:05:14:
                    4c:87:bb:ac:59:a0:69:5b:41:39:7d:cd:8a:bb:63:
                    3e:12:2c:4a:d9:8e:2a:87:c7:12:34:75:0c:a8:5e:
                    e1:52:4e:41:66:a5:64:1e:d0:69:c4:c1:f3:08:4a:
                    66:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7F:A1:86:B4:C0:6C:50:A3:42:BE:EA:46:9C:23:EB:E9:9D:EA:ED:D2
            X509v3 Authority Key Identifier:
                keyid:EE:09:2D:6E:CB:52:BC:99:A3:9F:A6:67:7A:FB:EE:9E:41:BA:E0:D9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.athene-center.net/repo/rpki-athene-center/0/EE092D6ECB52BC99A39FA6677AFBEE9E41BAE0D9.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7gktbstSvJmjn6ZnevvunkG64Nk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.athene-center.net/repo/rpki-athene-center/0/34352e3135352e3132382e302f32342d3234203d3e20323132373935.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.155.128.0/24

    Signature Algorithm: sha256WithRSAEncryption
         6f:35:ea:f5:35:b1:cf:62:c2:ef:5b:95:66:2d:66:f6:a7:0c:
         aa:59:e3:f6:f4:c2:d3:7b:14:29:ce:a7:67:8b:9a:f7:ea:2a:
         ce:c3:ba:b6:d5:18:eb:af:59:e3:d3:58:42:f6:eb:cf:e8:eb:
         25:a8:90:12:00:e8:f4:ff:be:02:d4:ae:db:87:be:b3:18:45:
         76:6b:a5:d0:9f:d7:0b:65:73:2f:50:3a:27:6b:fa:33:f1:b4:
         01:fb:3e:e9:0f:83:02:67:6c:c8:03:f5:2e:75:63:70:22:2c:
         f8:d6:2f:00:c2:bb:ec:b8:3e:04:4e:1a:1b:3a:99:0a:bf:2d:
         e9:27:26:38:25:73:b9:b4:9e:8a:aa:5a:aa:bf:a6:b9:89:18:
         12:d0:f9:be:51:90:6e:98:53:fa:ea:1c:5e:7c:ae:5c:a2:c6:
         ca:a0:55:00:59:ca:cc:b2:6b:b3:4e:e2:93:d3:fc:ad:0b:dc:
         2b:c9:cd:54:8e:41:93:36:13:72:71:b8:03:98:88:ba:70:44:
         db:9b:f1:7d:15:42:97:b7:d7:09:bd:8a:d5:51:a8:12:08:cd:
         58:16:74:53:2f:16:76:45:6b:0b:da:0c:23:12:a7:07:99:e4:
         ad:94:d4:f2:71:0d:b4:6f:ff:15:ae:a5:eb:73:af:8d:cb:92:
         28:38:0b:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 30 07:43:53 2024 by rpki-client on console-fra.rpki-client.org