Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2e6da5c7-670a-41b1-96eb-3899388b292c/0/34362e31362e3230382e302f32312d3231203d3e203432363839.roa
File: 34362e31362e3230382e302f32312d3231203d3e203432363839.roa (raw, json)
Hash identifier: V3rdCjM9YcAfZ2wTgDcCvpU1t01NlV/D630PygP9Ul8=
Subject key identifier: 66:EE:A2:C1:5F:0C:3E:8F:47:63:E2:F1:93:63:3A:AE:FC:BF:01:98
Certificate issuer: /CN=735d93706cbf4688ce7d60fc0ed693d4cc4a9326
Certificate serial: 7A29945C27494F719B2C1A9C1B56D05D3ED08289
Authority key identifier: 73:5D:93:70:6C:BF:46:88:CE:7D:60:FC:0E:D6:93:D4:CC:4A:93:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c12TcGy_RojOfWD8DtaT1MxKkyY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2e6da5c7-670a-41b1-96eb-3899388b292c/0/34362e31362e3230382e302f32312d3231203d3e203432363839.roa
Signing time: Tue 18 Feb 2025 10:21:31 +0000
ROA not before: Tue 18 Feb 2025 10:16:31 +0000
ROA not after: Tue 17 Feb 2026 10:21:31 +0000
asID: 42689
IP address blocks: 46.16.208.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:29:94:5c:27:49:4f:71:9b:2c:1a:9c:1b:56:d0:5d:3e:d0:82:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=735d93706cbf4688ce7d60fc0ed693d4cc4a9326
Validity
Not Before: Feb 18 10:16:31 2025 GMT
Not After : Feb 17 10:21:31 2026 GMT
Subject: CN=66EEA2C15F0C3E8F4763E2F193633AAEFCBF0198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:5d:43:9e:c6:5a:6c:50:00:f0:0e:e8:8e:94:
4c:14:48:70:59:08:35:a9:28:9b:f2:75:f6:8a:a7:
d8:66:c0:2d:99:86:8a:e6:1e:0d:5e:13:10:df:71:
d1:aa:46:2d:2b:08:0f:2e:d5:7f:51:68:e4:ab:74:
4e:48:5d:57:29:f9:b7:1b:ef:6c:97:4a:28:4c:70:
44:9d:82:8f:91:40:69:3b:56:f5:c2:06:fb:96:b3:
06:e6:ef:da:b1:5c:ff:2e:27:9d:e4:a4:45:d9:d8:
da:67:b4:0b:22:ae:e3:b9:2c:0c:11:82:45:c8:5d:
60:d2:62:05:27:ac:97:60:aa:32:00:f1:e5:6d:64:
b1:76:4a:a1:9e:85:b4:ce:fd:2c:04:3e:97:03:b4:
a3:ee:96:3c:1d:97:5c:06:92:c0:de:36:62:ff:6d:
98:a1:55:46:94:54:e1:eb:c9:1a:39:b6:8b:e0:7b:
d1:87:4a:1c:59:92:8a:7b:5e:e5:6c:78:6a:7e:32:
8c:5e:66:fc:75:be:a1:de:dc:f0:1f:e0:d0:9e:a6:
0f:6d:8e:01:2e:19:9b:b5:4d:1e:94:a5:eb:63:21:
a0:4b:08:cc:d6:a3:67:46:d5:0c:fa:8b:20:fb:d6:
e5:0b:d7:91:2f:c3:95:a9:b3:19:13:41:0a:91:a6:
1e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:EE:A2:C1:5F:0C:3E:8F:47:63:E2:F1:93:63:3A:AE:FC:BF:01:98
X509v3 Authority Key Identifier:
keyid:73:5D:93:70:6C:BF:46:88:CE:7D:60:FC:0E:D6:93:D4:CC:4A:93:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/2e6da5c7-670a-41b1-96eb-3899388b292c/0/735D93706CBF4688CE7D60FC0ED693D4CC4A9326.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c12TcGy_RojOfWD8DtaT1MxKkyY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2e6da5c7-670a-41b1-96eb-3899388b292c/0/34362e31362e3230382e302f32312d3231203d3e203432363839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.16.208.0/21
Signature Algorithm: sha256WithRSAEncryption
59:36:85:fa:cb:92:d7:7b:6d:f0:ed:7d:ad:e5:2f:bf:45:ce:
22:32:b9:ba:05:6e:41:16:d6:e0:84:69:42:00:fb:12:0d:ad:
9e:da:2d:c2:d0:8b:e2:77:d4:79:97:e3:94:75:31:e9:b4:b0:
66:8d:89:74:d5:02:e5:fe:ec:46:03:ee:ae:80:40:7e:f3:6a:
b0:56:d8:93:4d:6b:95:70:c6:17:2a:77:00:e4:51:50:c7:85:
7d:b6:4d:f1:12:50:cd:1d:cd:78:41:9d:29:c0:27:00:e0:98:
00:74:89:95:14:2c:1d:d7:29:16:5f:48:79:e1:30:25:ed:d5:
4c:07:04:f9:b6:17:b9:fe:b2:fd:85:46:17:bb:c5:98:9a:c4:
37:60:2f:d2:f7:57:6a:ae:28:7b:66:02:99:00:60:dc:f0:96:
90:3e:5b:99:1a:31:cb:25:30:03:1d:ff:f0:67:5a:7f:86:3c:
77:98:58:b5:df:e5:71:d0:89:8e:58:b6:5a:5e:16:99:f8:3e:
2c:ac:18:49:0a:57:c1:79:5d:ce:79:d8:6a:39:d9:06:d9:2e:
f5:f5:d6:d4:77:07:93:58:35:ba:af:46:37:0a:f8:41:b2:a5:
41:94:72:71:bc:61:5a:a9:62:ea:0d:c3:8b:cf:f8:21:50:82:
fc:57:26:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:59:45 2025 by rpki-client