Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134302e33362e302f32342d3234203d3e203136323736.roa
File: 34352e3134302e33362e302f32342d3234203d3e203136323736.roa (raw, json)
Hash identifier: bbdkgz3gQGx4brckdYck4FKHluP707hNf2aov4e5c2A=
Subject key identifier: D2:B0:3B:5F:83:FF:BD:EE:41:07:CB:87:9C:37:41:F5:4E:54:E4:61
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 5254F1D1F944B48508C596964286FF64BB1EF8CB
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134302e33362e302f32342d3234203d3e203136323736.roa
Signing time: Mon 17 Feb 2025 13:11:06 +0000
ROA not before: Mon 17 Feb 2025 13:06:06 +0000
ROA not after: Mon 16 Feb 2026 13:11:06 +0000
asID: 16276
IP address blocks: 45.140.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:54:f1:d1:f9:44:b4:85:08:c5:96:96:42:86:ff:64:bb:1e:f8:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Feb 17 13:06:06 2025 GMT
Not After : Feb 16 13:11:06 2026 GMT
Subject: CN=D2B03B5F83FFBDEE4107CB879C3741F54E54E461
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:eb:2e:d4:e7:5b:4b:6e:69:b5:0f:2e:56:c8:
a1:73:85:34:42:01:5d:06:f3:60:76:19:36:99:01:
45:9e:28:b5:3c:01:46:e9:39:53:2c:84:fb:dc:18:
a5:74:2d:b6:4a:01:11:5a:fc:24:88:b7:80:c7:07:
14:0b:c3:66:b4:ba:64:12:00:bb:f0:09:9b:de:29:
d5:39:33:85:c7:72:23:13:a0:6a:82:1e:d2:58:1b:
34:b9:8b:ea:93:04:14:66:39:ea:76:cc:41:08:5d:
d7:15:df:96:0e:51:3f:c1:e4:84:cd:b7:bd:80:d0:
78:f3:a5:a3:8e:2e:1d:2b:64:55:6a:c7:36:e3:68:
dd:d1:ae:73:bd:63:fd:07:68:3d:de:33:fd:09:c4:
24:e7:05:f5:5b:e0:90:27:47:0c:96:32:ed:7c:17:
3d:0b:c2:05:d3:a4:5e:67:88:fb:a7:b7:ef:e8:56:
29:89:b4:50:d6:8b:86:2c:1b:51:89:46:e9:b4:a7:
5d:c3:ec:df:25:3d:8e:09:88:3d:d2:15:59:e2:74:
2f:5f:b8:5a:7e:74:ae:47:56:44:94:16:0f:a6:1e:
57:a3:7f:6e:0e:45:15:a5:ef:ae:fe:61:87:f6:6d:
27:9c:89:80:31:16:f7:c5:fa:ed:28:6a:0a:2d:97:
a5:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:B0:3B:5F:83:FF:BD:EE:41:07:CB:87:9C:37:41:F5:4E:54:E4:61
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134302e33362e302f32342d3234203d3e203136323736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.36.0/24
Signature Algorithm: sha256WithRSAEncryption
29:45:5c:08:3f:7d:31:a7:d6:b3:db:46:f1:53:ef:52:8e:38:
8e:12:14:a4:eb:3d:fb:bc:35:3c:5c:d1:1b:a4:97:80:92:d4:
b5:a8:a0:9d:a6:0a:04:f4:fa:53:12:5a:28:64:0b:06:16:20:
ee:f6:54:2d:ae:b3:c9:44:f7:d8:17:58:e8:2a:23:3c:bb:f8:
31:dd:1a:c3:97:bd:9a:af:11:1f:f6:29:1a:b9:30:28:63:e9:
fa:0b:62:ae:b0:e0:41:fb:e1:69:f1:40:ad:a7:71:1b:f2:df:
13:22:1b:b9:d0:da:73:c7:5b:70:82:c7:c2:a3:56:7b:a8:b8:
50:0a:e4:1a:80:ce:be:05:8f:4d:97:70:da:2b:8f:1a:9d:9b:
f3:19:98:64:e6:cb:3f:4b:b2:65:cd:84:6f:38:fa:54:fc:f0:
17:25:9b:fc:7a:dd:de:b3:a3:04:e4:53:a7:17:7b:1f:ca:14:
49:36:5a:9e:66:ab:68:a9:3f:40:c2:4e:56:79:e0:9b:f3:f5:
87:58:f9:93:12:d4:7b:fd:47:a3:d4:71:81:68:0c:23:d8:ad:
ec:bf:5a:fc:87:71:37:42:42:f8:cd:97:16:60:a0:6b:70:32:
39:7a:97:26:09:4b:7a:ba:9d:50:c4:90:09:8d:4f:5b:29:41:
3e:f2:52:75
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUUlTx0flEtIUIxZaWQob/ZLse+MswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODMwZTA2NDE5ZmM0NmEyODAyZjZmMDNiNzEzNjhhYzdi
YWFmNjRjZTAeFw0yNTAyMTcxMzA2MDZaFw0yNjAyMTYxMzExMDZaMDMxMTAvBgNV
BAMTKEQyQjAzQjVGODNGRkJERUU0MTA3Q0I4NzlDMzc0MUY1NEU1NEU0NjEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh6y7U51tLbmm1Dy5WyKFzhTRC
AV0G82B2GTaZAUWeKLU8AUbpOVMshPvcGKV0LbZKARFa/CSIt4DHBxQLw2a0umQS
ALvwCZveKdU5M4XHciMToGqCHtJYGzS5i+qTBBRmOep2zEEIXdcV35YOUT/B5ITN
t72A0HjzpaOOLh0rZFVqxzbjaN3RrnO9Y/0HaD3eM/0JxCTnBfVb4JAnRwyWMu18
Fz0LwgXTpF5niPunt+/oVimJtFDWi4YsG1GJRum0p13D7N8lPY4JiD3SFVnidC9f
uFp+dK5HVkSUFg+mHlejf24ORRWl767+YYf2bSeciYAxFvfF+u0oagotl6WzAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQU0rA7X4P/ve5BB8uHnDdB9U5U5GEwHwYDVR0j
BBgwFoAUgw4GQZ/EaigC9vA7cTaKx7qvZM4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvOGUwZDZhNGQtYmE2Ny00OTc5LThkMTItMGVkNDc0OGZj
ODZlLzAvODMwRTA2NDE5RkM0NkEyODAyRjZGMDNCNzEzNjhBQzdCQUFGNjRDRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2d3NEdRWl9FYWlnQzl2QTdjVGFLeDdx
dlpNNC5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOGUwZDZhNGQt
YmE2Ny00OTc5LThkMTItMGVkNDc0OGZjODZlLzAvMzQzNTJlMzEzNDMwMmUzMzM2
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNjMyMzczNi5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2M
JDANBgkqhkiG9w0BAQsFAAOCAQEAKUVcCD99MafWs9tG8VPvUo44jhIUpOs9+7w1
PFzRG6SXgJLUtaignaYKBPT6UxJaKGQLBhYg7vZULa6zyUT32BdY6CojPLv4Md0a
w5e9mq8RH/YpGrkwKGPp+gtirrDgQfvhafFAradxG/LfEyIbudDac8dbcILHwqNW
e6i4UArkGoDOvgWPTZdw2iuPGp2b8xmYZObLP0uyZc2Ebzj6VPzwFyWb/Hrd3rOj
BORTpxd7H8oUSTZanmaraKk/QMJOVnngm/P1h1j5kxLUe/1Ho9RxgWgMI9it7L9a
/IdxN0JC+M2XFmCga3AyOXqXJglLerqdUMSQCY1PWylBPvJSdQ==
-----END CERTIFICATE-----
Generated at Sat Apr 5 21:55:59 2025 by rpki-client