Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/34352e3135362e3131392e302f32342d3234203d3e203533313037.roa
File: 34352e3135362e3131392e302f32342d3234203d3e203533313037.roa (raw, json)
Hash identifier: oUjLjFqkfhlIhlrcvn93w3Ar1FLewQY6BUdyTIXmOg8=
Subject key identifier: D4:4B:8C:C5:99:C3:18:1B:98:BF:FF:6C:9F:B2:2D:33:C6:A3:2D:B6
Certificate issuer: /CN=06da19f4285eb04d0310733f4ac00107b73337ad
Certificate serial: 0A9C732972F5EBCA7527EC3222066888C5293080
Authority key identifier: 06:DA:19:F4:28:5E:B0:4D:03:10:73:3F:4A:C0:01:07:B7:33:37:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BtoZ9ChesE0DEHM_SsABB7czN60.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/34352e3135362e3131392e302f32342d3234203d3e203533313037.roa
Signing time: Wed 28 Aug 2024 21:32:33 +0000
ROA not before: Wed 28 Aug 2024 21:27:33 +0000
ROA not after: Wed 27 Aug 2025 21:32:33 +0000
asID: 53107
IP address blocks: 45.156.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:9c:73:29:72:f5:eb:ca:75:27:ec:32:22:06:68:88:c5:29:30:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06da19f4285eb04d0310733f4ac00107b73337ad
Validity
Not Before: Aug 28 21:27:33 2024 GMT
Not After : Aug 27 21:32:33 2025 GMT
Subject: CN=D44B8CC599C3181B98BFFF6C9FB22D33C6A32DB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ca:b0:d3:d8:03:b2:18:77:34:f9:c8:0c:3d:
1d:b2:bb:0d:05:51:04:65:a0:4e:b8:36:de:2b:14:
d0:3e:43:5a:6a:a0:19:56:fc:c6:be:97:e3:dd:1e:
81:a3:c3:be:45:a4:56:6e:d6:e2:43:4c:f5:a6:ab:
55:9e:e5:a1:e6:6e:eb:49:0e:76:be:c1:5e:f0:47:
aa:e1:34:fe:7d:e7:59:a7:de:07:e9:81:8c:79:b6:
c4:0f:27:47:5b:b9:77:65:ac:84:55:a5:e1:01:ee:
3d:25:43:a2:79:cc:ac:e8:47:3c:a7:dd:3f:b7:5f:
ec:4a:69:37:b8:e9:85:bb:3c:9b:57:0e:dc:91:a3:
08:3b:a8:27:19:4d:de:73:01:a5:f4:2b:7f:88:d6:
b5:ba:ed:ae:0d:be:4c:2d:81:c7:01:a0:8a:2f:5f:
cc:66:70:64:95:68:90:8e:67:ac:f0:44:9d:b1:b9:
1b:63:3f:28:be:1f:af:16:6f:6c:33:31:f6:fa:b8:
a3:cf:cb:70:41:4a:f2:50:39:3c:e0:d5:ac:47:d4:
b5:ba:1a:13:cc:5f:ae:da:e9:ec:75:30:fb:45:4f:
5b:1e:5d:9d:f4:8a:42:25:4a:9e:00:cb:1e:cd:27:
36:76:e5:55:e3:43:69:45:6d:96:72:f8:7b:b3:2a:
d2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:4B:8C:C5:99:C3:18:1B:98:BF:FF:6C:9F:B2:2D:33:C6:A3:2D:B6
X509v3 Authority Key Identifier:
keyid:06:DA:19:F4:28:5E:B0:4D:03:10:73:3F:4A:C0:01:07:B7:33:37:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/06DA19F4285EB04D0310733F4AC00107B73337AD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BtoZ9ChesE0DEHM_SsABB7czN60.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/34352e3135362e3131392e302f32342d3234203d3e203533313037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.119.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:be:67:11:4f:3e:b6:3b:52:7a:ae:63:32:28:f9:51:8c:ad:
7d:01:1a:cc:a7:18:2f:a2:b5:01:f5:c2:bf:47:91:1e:79:52:
d3:20:bf:a1:a3:d4:45:8b:fa:8a:f6:ba:15:3a:c5:6e:e4:59:
00:f8:b5:fe:1c:d5:8a:a9:d4:91:d0:8e:e6:d3:cf:c8:63:74:
d8:b9:38:f4:20:7f:75:cd:95:63:97:8c:41:ed:6d:5c:c4:eb:
67:30:47:64:d5:25:e1:03:bc:e5:98:b3:64:61:e2:cf:5c:2b:
10:7b:89:8f:4e:40:50:6f:c6:c6:ad:a3:d9:31:74:4d:cb:bf:
19:9e:c0:70:17:76:64:ea:3b:80:d7:7b:37:f2:8f:9c:ef:e9:
e3:bd:84:a4:92:92:7b:27:96:12:11:5c:f0:82:75:f4:d7:d0:
78:c2:3e:3c:1d:82:85:dd:65:71:ac:a2:0a:d5:71:70:e6:b8:
a2:6a:f1:8b:06:89:24:29:a2:0a:95:bd:8a:a8:bd:d8:b8:bf:
f3:d1:ce:84:bb:dc:c6:3a:36:79:26:be:fc:79:9e:be:c4:1e:
60:48:db:6d:cf:06:b4:c1:7e:1c:a7:ad:8c:1a:c8:20:60:4f:
ed:c9:84:49:77:50:7c:31:88:ba:56:08:9d:bd:d7:dc:1c:a0:
98:ff:fa:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:35:34 2025 by rpki-client