Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7d6a1636-1758-4bbd-ae81-3a7107d9a845/0/34352e3133322e3231372e302f32342d3234203d3e2037303138.roa
File: 34352e3133322e3231372e302f32342d3234203d3e2037303138.roa (raw, json)
Hash identifier: Mc+6Rql/49Jw+n7ANjIix3l4Kj1nE0SO31uxvGshDsc=
Subject key identifier: B1:C7:B5:8A:96:E7:FA:D2:BF:AC:8B:A7:90:E2:25:27:FF:08:68:2C
Certificate issuer: /CN=bcd46dba34fe6620d72d9e7f576ef7a88a6c961a
Certificate serial: 25019991092D817B002B05D3227738FF0A8191DC
Authority key identifier: BC:D4:6D:BA:34:FE:66:20:D7:2D:9E:7F:57:6E:F7:A8:8A:6C:96:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vNRtujT-ZiDXLZ5_V273qIpslho.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7d6a1636-1758-4bbd-ae81-3a7107d9a845/0/34352e3133322e3231372e302f32342d3234203d3e2037303138.roa
Signing time: Wed 05 Apr 2023 11:55:32 +0000
ROA not before: Wed 05 Apr 2023 11:50:32 +0000
ROA not after: Wed 03 Apr 2024 11:55:32 +0000
asID: 7018
IP address blocks: 45.132.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:01:99:91:09:2d:81:7b:00:2b:05:d3:22:77:38:ff:0a:81:91:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcd46dba34fe6620d72d9e7f576ef7a88a6c961a
Validity
Not Before: Apr 5 11:50:32 2023 GMT
Not After : Apr 3 11:55:32 2024 GMT
Subject: CN=B1C7B58A96E7FAD2BFAC8BA790E22527FF08682C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:d0:12:0b:05:7e:66:81:af:04:ca:15:d0:c8:
b3:09:c3:d1:81:fc:fb:1c:4e:c1:f3:d6:ed:56:d2:
8a:ea:2f:3c:86:9a:94:61:c9:52:8f:e9:6f:69:0d:
94:f6:a4:75:85:3c:28:d4:fc:ba:48:c1:c1:f1:05:
2a:5a:7a:d8:39:85:f5:4e:3b:97:a9:2a:03:87:be:
b2:f3:96:56:0e:24:b7:87:f0:76:c8:2d:1c:08:0c:
40:a7:7a:b6:df:e3:41:d7:29:95:7b:b5:66:78:a9:
b5:6e:51:27:8b:b7:08:2f:fb:5d:1d:24:37:f2:77:
98:17:12:27:a6:c9:1e:4d:bd:b2:73:b2:a3:4d:d3:
8e:57:ee:f8:78:d4:4c:2c:85:43:27:a2:4c:dd:d1:
4b:08:b4:cf:f1:3e:66:52:6b:15:26:c4:1a:e5:fa:
4e:37:a2:48:81:d0:2b:65:4a:b1:60:f5:74:91:17:
08:1d:dd:ac:48:ce:d5:77:74:31:ab:a4:cb:13:de:
3f:d0:2f:d8:6d:4a:19:05:86:26:e2:de:0a:13:41:
ad:80:10:83:ac:01:33:1c:ec:cc:c4:31:72:eb:f3:
33:3f:7b:e3:80:fc:3e:bc:d5:a1:c1:7a:5b:dd:c2:
90:dc:1f:37:37:1c:e2:d2:dc:27:ac:96:e7:ec:74:
7c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:C7:B5:8A:96:E7:FA:D2:BF:AC:8B:A7:90:E2:25:27:FF:08:68:2C
X509v3 Authority Key Identifier:
keyid:BC:D4:6D:BA:34:FE:66:20:D7:2D:9E:7F:57:6E:F7:A8:8A:6C:96:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7d6a1636-1758-4bbd-ae81-3a7107d9a845/0/BCD46DBA34FE6620D72D9E7F576EF7A88A6C961A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vNRtujT-ZiDXLZ5_V273qIpslho.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7d6a1636-1758-4bbd-ae81-3a7107d9a845/0/34352e3133322e3231372e302f32342d3234203d3e2037303138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.217.0/24
Signature Algorithm: sha256WithRSAEncryption
73:d0:1f:09:89:2d:ee:0d:fd:15:1c:3e:a3:32:b1:d6:e7:a8:
29:ed:79:a2:28:7f:e6:f1:41:fa:73:47:ff:67:60:be:f7:78:
a6:a3:20:c3:29:b8:e6:cb:50:71:de:61:2f:6e:8e:53:dc:a8:
a7:e0:65:29:a9:8f:9d:ee:8e:b5:40:bf:88:d2:d4:e6:0b:ad:
f9:ca:d3:92:cd:e9:c3:e2:31:33:1f:a4:eb:4a:f0:73:82:1c:
d1:b5:52:13:da:1c:b7:f6:25:49:d7:fd:b9:30:8c:9d:46:1c:
91:41:df:6c:81:56:e5:8f:36:e4:74:f8:62:dd:c7:58:e1:99:
7c:2f:38:06:cf:a4:e1:6a:36:52:8f:aa:cc:f5:87:eb:3d:b0:
cd:97:3d:27:6c:5f:3f:f5:0d:05:1b:44:60:a5:6f:be:40:5c:
23:59:e5:1d:77:2b:32:e1:70:42:b4:fd:08:37:58:60:fb:f4:
6f:d8:5b:8e:e0:f6:83:37:6a:a4:53:f0:6f:83:8e:dc:35:47:
8d:80:31:c1:98:8b:64:91:8e:3d:3b:e9:a5:5d:a9:41:42:b0:
58:33:04:79:7c:ff:ba:0e:43:76:39:83:a8:eb:c0:87:3d:19:
1a:8f:e3:59:e9:30:26:16:f6:e5:e2:71:3f:83:40:d0:c1:7b:
a5:9a:f4:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:16:07 2025 by rpki-client