Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7d6a1636-1758-4bbd-ae81-3a7107d9a845/0/34352e3133322e3231382e302f32342d3234203d3e203536393133.roa
File: 34352e3133322e3231382e302f32342d3234203d3e203536393133.roa (raw, json)
Hash identifier: z+psGJ/lYDz6XUi7+ehhnA0orRTmjPS12faoc4iw+Kk=
Subject key identifier: F6:F9:08:16:E4:48:F3:2D:31:15:52:98:91:77:02:4B:8C:B2:33:F0
Certificate issuer: /CN=bcd46dba34fe6620d72d9e7f576ef7a88a6c961a
Certificate serial: 2C1FBDB8F67B6E2EA53C52D9719C1DD09048802B
Authority key identifier: BC:D4:6D:BA:34:FE:66:20:D7:2D:9E:7F:57:6E:F7:A8:8A:6C:96:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vNRtujT-ZiDXLZ5_V273qIpslho.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7d6a1636-1758-4bbd-ae81-3a7107d9a845/0/34352e3133322e3231382e302f32342d3234203d3e203536393133.roa
Signing time: Wed 05 Apr 2023 11:55:32 +0000
ROA not before: Wed 05 Apr 2023 11:50:32 +0000
ROA not after: Wed 03 Apr 2024 11:55:32 +0000
asID: 56913
IP address blocks: 45.132.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:1f:bd:b8:f6:7b:6e:2e:a5:3c:52:d9:71:9c:1d:d0:90:48:80:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcd46dba34fe6620d72d9e7f576ef7a88a6c961a
Validity
Not Before: Apr 5 11:50:32 2023 GMT
Not After : Apr 3 11:55:32 2024 GMT
Subject: CN=F6F90816E448F32D311552989177024B8CB233F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:fa:35:90:ef:de:e7:2a:61:1b:5a:2f:7d:e3:
a1:ec:41:90:c8:a2:25:8a:07:b6:cc:e2:16:89:62:
31:1d:a2:f1:ed:b9:14:2c:69:8f:bc:eb:43:62:f5:
32:a3:50:56:00:77:58:96:0d:73:ad:f4:37:d6:db:
e8:be:b8:fb:2e:d6:9f:3f:65:e8:62:19:e7:ca:66:
5f:97:25:0e:95:1b:b0:bf:f5:e6:62:90:5b:97:f0:
f2:3c:2a:be:e9:7b:24:ef:f8:90:dc:88:bc:dd:69:
ed:56:81:7d:6b:3e:10:75:f1:47:39:e9:79:e7:53:
8c:1e:57:70:d7:45:03:33:0d:ed:f9:d9:48:9d:0d:
16:ae:03:14:50:94:ae:ba:4b:bf:b5:ee:a7:aa:97:
7f:97:23:f5:5b:fc:0a:00:de:ed:b2:83:75:f6:7c:
df:55:8e:12:ec:93:57:93:1f:bd:2a:95:67:ce:9a:
e0:16:89:c0:2d:4c:da:30:7e:e8:e7:1c:b1:f8:1a:
f9:6d:4b:22:ec:d3:5b:33:69:fa:99:8a:8f:6d:18:
83:64:a2:ed:4f:12:14:24:95:11:3b:6a:bb:88:47:
45:62:8c:5c:1b:7e:db:3e:9c:85:b0:72:2b:e1:39:
25:a9:44:dc:b5:33:1f:2a:69:63:a6:b9:79:8d:d4:
15:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:F9:08:16:E4:48:F3:2D:31:15:52:98:91:77:02:4B:8C:B2:33:F0
X509v3 Authority Key Identifier:
keyid:BC:D4:6D:BA:34:FE:66:20:D7:2D:9E:7F:57:6E:F7:A8:8A:6C:96:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7d6a1636-1758-4bbd-ae81-3a7107d9a845/0/BCD46DBA34FE6620D72D9E7F576EF7A88A6C961A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vNRtujT-ZiDXLZ5_V273qIpslho.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7d6a1636-1758-4bbd-ae81-3a7107d9a845/0/34352e3133322e3231382e302f32342d3234203d3e203536393133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.218.0/24
Signature Algorithm: sha256WithRSAEncryption
37:07:93:0f:91:c7:85:8e:42:9f:e0:b6:70:67:8d:46:be:9b:
98:0c:4c:f6:ad:0d:fb:77:70:2d:a8:33:f3:32:f4:ad:65:92:
7a:86:0c:08:c8:e0:f7:8d:40:6d:97:de:44:22:9f:cd:6d:cc:
53:4b:be:7f:ba:cf:3e:d8:c2:97:ef:2b:75:cc:4f:80:98:9e:
8d:0d:32:c4:41:96:bb:00:3b:f4:d8:f4:1c:0f:7c:8a:01:3a:
3f:b4:f4:46:82:e1:a8:83:34:b8:3d:18:31:72:85:f2:bd:59:
e8:6d:4e:a1:ba:b1:52:5d:b6:7d:a5:33:2a:18:ef:4e:38:14:
67:ea:ab:94:0b:ad:d2:87:bf:f3:69:3c:29:0c:d2:58:08:51:
e6:8b:65:3a:53:a1:3e:01:ba:9f:2e:96:c7:4a:9a:08:ca:ee:
c5:9c:c9:0c:94:02:51:bd:27:c9:4d:2d:39:c9:68:2c:4e:69:
01:0f:a8:10:df:b2:c9:e1:b9:9a:63:8e:fc:db:dc:65:29:06:
47:19:f6:8a:0d:e2:62:8b:c8:01:00:4d:66:3b:95:10:93:0a:
e3:60:5f:83:7f:40:3d:e1:bd:06:54:1c:33:0f:03:ce:70:58:
72:7a:a8:16:5b:f5:9f:4f:99:11:68:06:20:21:3b:d7:ac:97:
e8:2b:62:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:28:27 2025 by rpki-client