Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/38b23de3-5277-462b-a265-cb8f80ac93ec/0/34352e3133322e3231362e302f32342d3234203d3e203536393133.roa
File: 34352e3133322e3231362e302f32342d3234203d3e203536393133.roa (raw, json)
Hash identifier: en1fQiUAaD1nco2UITrT+DQwPVqdGyZnpqDj4hALZh4=
Subject key identifier: D8:57:18:4A:3D:27:98:BF:1D:55:BC:8A:06:DB:8C:C8:18:4D:D9:43
Certificate issuer: /CN=35e3043c2ede0281f573512069c8cfab837d4dcd
Certificate serial: 2A6A5212EF0DDDE1E82C169BE039025A3BEA07F2
Authority key identifier: 35:E3:04:3C:2E:DE:02:81:F5:73:51:20:69:C8:CF:AB:83:7D:4D:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NeMEPC7eAoH1c1EgacjPq4N9Tc0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/38b23de3-5277-462b-a265-cb8f80ac93ec/0/34352e3133322e3231362e302f32342d3234203d3e203536393133.roa
Signing time: Mon 03 Apr 2023 17:32:05 +0000
ROA not before: Mon 03 Apr 2023 17:27:05 +0000
ROA not after: Mon 01 Apr 2024 17:32:05 +0000
asID: 56913
IP address blocks: 45.132.216.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:6a:52:12:ef:0d:dd:e1:e8:2c:16:9b:e0:39:02:5a:3b:ea:07:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35e3043c2ede0281f573512069c8cfab837d4dcd
Validity
Not Before: Apr 3 17:27:05 2023 GMT
Not After : Apr 1 17:32:05 2024 GMT
Subject: CN=D857184A3D2798BF1D55BC8A06DB8CC8184DD943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f0:78:f5:2e:6a:16:fe:96:25:70:c8:57:2f:
3a:78:7b:30:f4:e3:e7:0a:fc:05:d8:5a:97:25:89:
74:c9:34:1b:09:25:03:84:1d:5c:eb:fa:ab:c8:19:
2b:c5:16:bc:d3:dc:bc:cf:eb:5b:8b:73:18:b1:da:
9d:d9:eb:3c:d1:a0:4a:b0:5e:a9:1e:bb:ee:07:de:
38:1f:b2:8b:78:88:78:30:ac:ea:09:e9:22:ac:93:
fb:ff:bf:c9:34:9d:c7:9a:fd:bd:ea:ec:cc:88:71:
3f:09:b4:fb:ef:d7:70:48:9b:81:ed:be:40:6f:7f:
53:2b:37:b8:8e:a8:34:5d:a8:be:96:13:4a:ed:49:
49:64:f7:0b:11:6d:f8:ad:9a:9a:82:d6:b5:31:3c:
2e:86:40:43:88:bb:52:3b:3e:65:54:d1:a7:72:ae:
36:e2:0f:6d:45:31:7a:5e:08:08:32:05:bc:1d:79:
37:5f:d3:c6:4b:23:bd:af:11:44:ef:f0:e3:7f:e1:
b8:99:28:3d:ee:8b:59:09:a9:12:7a:aa:45:66:72:
53:b4:78:9a:09:e5:1b:aa:60:4a:e1:56:81:c0:fc:
62:24:08:5f:9c:4f:33:2b:2e:fb:e3:36:af:04:e2:
37:5c:4f:44:e0:82:80:06:70:e0:80:48:5e:ef:7b:
dc:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:57:18:4A:3D:27:98:BF:1D:55:BC:8A:06:DB:8C:C8:18:4D:D9:43
X509v3 Authority Key Identifier:
keyid:35:E3:04:3C:2E:DE:02:81:F5:73:51:20:69:C8:CF:AB:83:7D:4D:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/38b23de3-5277-462b-a265-cb8f80ac93ec/0/35E3043C2EDE0281F573512069C8CFAB837D4DCD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NeMEPC7eAoH1c1EgacjPq4N9Tc0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/38b23de3-5277-462b-a265-cb8f80ac93ec/0/34352e3133322e3231362e302f32342d3234203d3e203536393133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.216.0/24
Signature Algorithm: sha256WithRSAEncryption
61:ce:9d:ee:37:c9:72:e0:46:bb:84:71:f1:07:ea:5f:01:c1:
8b:4f:4f:1b:62:28:f0:00:23:a9:b6:75:14:f6:c0:d0:47:9b:
a4:36:4f:ef:67:ca:b2:5f:a9:12:a1:d3:ae:1d:f1:54:a0:17:
66:71:a3:8a:cf:78:a8:a2:5a:3f:9e:48:15:ba:cf:19:91:ad:
57:f4:56:9f:f9:70:53:76:d7:95:e4:a7:50:9d:4e:c6:af:ce:
72:6a:a3:f4:ab:48:39:b1:98:a4:47:f2:aa:12:7d:73:3f:0b:
88:22:b1:83:a2:fd:c9:ff:f6:7d:1e:f1:9d:dc:e3:28:99:06:
1e:4e:a7:16:c0:1d:8d:00:89:6b:ff:8f:0d:25:21:db:3c:62:
bd:81:d8:5b:d7:3c:82:9d:85:d6:1a:2c:c7:2b:26:54:62:0a:
8f:f6:6e:4d:ea:37:cc:a8:05:7d:31:02:a1:81:2d:28:cc:b3:
5d:c1:e8:ee:c0:01:5f:9e:54:ab:88:93:96:0c:e6:40:77:d8:
dd:56:22:65:3b:aa:70:7f:aa:1b:8f:3e:14:dc:39:a8:29:68:
a8:1c:d0:a5:cc:b4:b1:ce:73:0b:39:f2:94:20:c9:47:e9:aa:
22:30:1d:d1:93:74:2e:e4:02:c7:48:e1:dc:e5:35:4b:bd:06:
6b:d1:79:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:12 2024 by rpki-client on console-fra.rpki-client.org