Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/34352e3135362e3131392e302f32342d3234203d3e20323638353831.roa
File: 34352e3135362e3131392e302f32342d3234203d3e20323638353831.roa (raw, json)
Hash identifier: ZL7gkkSYc+7ZEclMFqLdxv6TR1em27oJ0d76c/h2gbo=
Subject key identifier: 50:D6:DD:49:97:39:44:6D:DB:A0:D6:82:D5:90:88:8A:62:1E:E4:F6
Certificate issuer: /CN=06da19f4285eb04d0310733f4ac00107b73337ad
Certificate serial: 0C8DC779FED0AFFC4C3FDAEBF7F84419D941CE36
Authority key identifier: 06:DA:19:F4:28:5E:B0:4D:03:10:73:3F:4A:C0:01:07:B7:33:37:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BtoZ9ChesE0DEHM_SsABB7czN60.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/34352e3135362e3131392e302f32342d3234203d3e20323638353831.roa
Signing time: Fri 14 Jun 2024 15:05:18 +0000
ROA not before: Fri 14 Jun 2024 15:00:18 +0000
ROA not after: Fri 13 Jun 2025 15:05:18 +0000
asID: 268581
IP address blocks: 45.156.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:8d:c7:79:fe:d0:af:fc:4c:3f:da:eb:f7:f8:44:19:d9:41:ce:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06da19f4285eb04d0310733f4ac00107b73337ad
Validity
Not Before: Jun 14 15:00:18 2024 GMT
Not After : Jun 13 15:05:18 2025 GMT
Subject: CN=50D6DD499739446DDBA0D682D590888A621EE4F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:36:df:db:23:0d:40:e9:3a:19:e2:82:47:5c:
b6:85:eb:e9:7d:61:fc:01:b7:c2:54:42:b5:19:fe:
f7:00:b3:f6:08:0f:5f:ca:d9:d2:81:bd:72:b1:76:
9a:c3:43:15:00:64:56:b5:c0:1e:3e:f5:6d:c5:4c:
80:4c:60:49:cb:6d:2a:73:90:b6:c6:e6:b9:b1:80:
b7:1e:5d:db:b2:b3:d1:9f:c2:44:47:e1:e1:10:d1:
94:0f:47:c3:9a:a2:37:fa:d4:8c:08:ec:cf:03:e2:
f0:c3:b3:83:d0:73:d9:b5:30:df:97:b7:3c:2d:6d:
51:1d:9c:d3:46:32:65:e5:71:45:e3:dd:dc:02:5e:
94:1a:13:c8:0b:84:aa:a9:22:dc:8d:be:bd:9c:21:
dd:cb:d1:7e:c7:36:80:3e:2d:b2:45:1d:29:af:4d:
59:e0:14:ff:3e:3b:7f:4f:69:6a:e3:4a:cf:53:75:
eb:ff:89:f7:cc:1f:d9:6e:2d:b6:cd:89:33:84:c7:
8a:7f:3e:7a:78:6c:bf:63:de:13:ee:f8:ff:81:80:
c8:0e:71:01:0d:1c:ef:7c:09:06:a7:fa:b8:ff:75:
39:d4:8f:b9:a1:c9:b0:3d:7c:7c:6e:9e:56:c5:ec:
1b:7a:4f:cf:b5:c6:79:4b:00:b5:bd:4f:e0:0b:59:
e4:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:D6:DD:49:97:39:44:6D:DB:A0:D6:82:D5:90:88:8A:62:1E:E4:F6
X509v3 Authority Key Identifier:
keyid:06:DA:19:F4:28:5E:B0:4D:03:10:73:3F:4A:C0:01:07:B7:33:37:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/06DA19F4285EB04D0310733F4AC00107B73337AD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BtoZ9ChesE0DEHM_SsABB7czN60.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/34352e3135362e3131392e302f32342d3234203d3e20323638353831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.119.0/24
Signature Algorithm: sha256WithRSAEncryption
53:e1:00:61:fb:61:03:e3:5b:62:a0:b8:04:bf:cd:47:b4:37:
b2:00:a8:7d:c5:09:f6:62:14:e3:1c:e0:41:c2:4a:0e:ae:a3:
c5:ff:23:c6:98:43:d4:e0:99:98:6d:95:66:c4:ef:1e:5d:f5:
19:56:10:a6:97:cf:33:18:50:aa:ea:30:8a:dd:22:c2:ca:75:
e9:36:11:89:48:b8:f0:d2:8f:d4:e3:7a:05:84:68:7c:b0:83:
da:1e:a3:ad:71:5d:08:c0:1a:6b:70:ed:65:88:f6:22:55:c3:
e8:2f:88:b7:f4:e2:39:4d:bc:82:3f:62:ef:f4:1c:a1:c6:1f:
41:81:14:7a:a7:7d:85:97:e4:7a:24:66:00:3e:f5:85:cb:1f:
fa:08:a9:49:1a:cc:7f:fe:2e:61:c7:d5:51:9b:91:fa:a5:bd:
99:7e:3a:58:5b:89:b7:9d:6f:e7:51:74:57:e8:d7:ce:2c:5d:
98:c5:93:34:2e:6c:d4:d3:a6:d3:62:49:82:31:97:36:e3:af:
e2:23:8a:53:e8:67:24:0d:fb:3d:63:a1:b0:1e:12:d2:f8:c6:
a7:a0:98:05:2f:bc:e6:fa:8d:6c:e8:90:41:02:cc:57:c0:da:
03:4e:18:8b:3e:0d:1d:17:c6:e5:76:a5:77:e6:2c:e4:ca:31:
0c:e1:f0:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:38:07 2025 by rpki-client