Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/34352e3135362e3131372e302f32342d3234203d3e203231383539.roa
File: 34352e3135362e3131372e302f32342d3234203d3e203231383539.roa (raw, json)
Hash identifier: kYNMi96OETrtDAVrCGd3vHXfWMZmV2QsVshOnDLHJxw=
Subject key identifier: 43:83:FD:6E:54:BE:9B:DB:9C:6B:C1:99:55:D2:D1:68:12:9A:AC:9E
Certificate issuer: /CN=06da19f4285eb04d0310733f4ac00107b73337ad
Certificate serial: 187BCE7638F67E618B018188C8FD2D08323B9D2B
Authority key identifier: 06:DA:19:F4:28:5E:B0:4D:03:10:73:3F:4A:C0:01:07:B7:33:37:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BtoZ9ChesE0DEHM_SsABB7czN60.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/34352e3135362e3131372e302f32342d3234203d3e203231383539.roa
Signing time: Tue 03 Sep 2024 16:11:40 +0000
ROA not before: Tue 03 Sep 2024 16:06:40 +0000
ROA not after: Tue 02 Sep 2025 16:11:40 +0000
asID: 21859
IP address blocks: 45.156.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:7b:ce:76:38:f6:7e:61:8b:01:81:88:c8:fd:2d:08:32:3b:9d:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06da19f4285eb04d0310733f4ac00107b73337ad
Validity
Not Before: Sep 3 16:06:40 2024 GMT
Not After : Sep 2 16:11:40 2025 GMT
Subject: CN=4383FD6E54BE9BDB9C6BC19955D2D168129AAC9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:97:90:da:67:96:a0:30:bc:7a:15:bf:24:fe:
7e:63:e9:a6:42:03:c6:a7:a2:be:3c:5a:1e:82:59:
15:d8:f7:d4:41:98:e6:4a:d2:b5:9e:49:1f:b4:45:
e3:c4:a2:da:bd:e1:7a:0d:98:02:99:dd:5b:a3:da:
85:4e:3d:7c:60:0f:c7:d5:a3:07:4a:2b:2c:85:77:
27:8c:41:8d:40:a7:98:9a:e1:44:a7:65:ec:85:a3:
5f:c0:7e:b2:8c:0e:7f:ae:8a:f4:0e:93:ac:33:a9:
52:0a:fc:f1:8d:f3:07:70:84:61:21:5d:51:fb:7e:
02:64:7a:4a:35:4d:7c:41:03:ff:d6:03:59:4e:86:
40:d2:09:8f:e4:7c:2b:3a:97:18:4b:38:59:0f:07:
27:06:00:51:38:d5:a4:2f:ad:15:3c:a1:6f:e8:2f:
08:07:59:1f:d1:18:07:08:6d:00:7a:cd:8e:af:21:
a7:72:8d:65:64:be:6e:52:33:ea:ae:d6:af:07:1d:
03:55:dd:08:96:b3:4d:f6:f8:19:a8:d2:55:74:da:
4f:cb:84:68:02:ec:0b:d3:13:58:ad:d0:a3:5e:95:
18:c7:b3:75:86:e5:08:b1:71:ee:5c:e8:de:9f:db:
b9:82:ed:71:e1:78:5b:dd:6b:3a:91:4e:a0:b5:5c:
16:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:83:FD:6E:54:BE:9B:DB:9C:6B:C1:99:55:D2:D1:68:12:9A:AC:9E
X509v3 Authority Key Identifier:
keyid:06:DA:19:F4:28:5E:B0:4D:03:10:73:3F:4A:C0:01:07:B7:33:37:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/06DA19F4285EB04D0310733F4AC00107B73337AD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BtoZ9ChesE0DEHM_SsABB7czN60.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/34352e3135362e3131372e302f32342d3234203d3e203231383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.117.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:4a:28:3a:cf:a9:00:fc:f4:ea:d8:31:04:5c:44:0a:18:5d:
0f:89:e9:7b:ab:2d:03:3e:3f:12:4c:8c:a3:8a:51:f0:0b:75:
e9:86:d8:34:0e:3d:5d:75:f0:9c:fc:cf:1e:fb:f9:b6:5c:16:
8b:61:f9:46:45:fd:1a:3a:5c:25:63:42:76:50:50:05:2b:5f:
62:86:93:ce:c8:23:20:d5:2e:41:fe:0c:99:29:87:32:4e:62:
59:8e:57:f0:18:0b:54:3f:8f:19:99:f5:ce:16:7f:65:2f:a7:
a9:d7:d8:ed:0a:e6:c2:56:d8:fa:ef:3a:a7:09:51:51:aa:72:
21:e9:03:64:93:06:9f:f3:6d:82:25:44:6a:fb:3f:10:1b:74:
dd:bb:8e:6e:03:0e:b0:56:85:cb:e4:00:3f:b7:26:c3:2c:ca:
cc:c2:98:1f:2f:00:73:d0:9c:51:d8:43:02:2a:69:cc:51:23:
1d:cb:8b:d8:b0:08:36:91:11:fa:a3:44:8b:15:5a:87:3f:92:
ef:d1:14:e1:af:57:db:b4:3c:10:dd:3e:18:e7:17:49:2e:71:
c7:35:ff:81:31:9f:84:0f:5f:5e:9e:73:f2:b8:02:51:f1:e2:
f6:11:7f:d8:d8:43:08:16:b0:d0:15:65:92:86:47:94:ad:0b:
e7:ed:15:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:35:40 2025 by rpki-client