Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d43cc54b-e7ff-4945-90bc-fd4761ccc302/0/34352e3135342e362e302f32332d3234203d3e20383334.roa
File: 34352e3135342e362e302f32332d3234203d3e20383334.roa (raw, json)
Hash identifier: sEM+wvMa6H1pJO7WzojPoW/d6861xG/ziCdqwi+Y+Do=
Subject key identifier: 2C:E1:CB:B9:95:1D:63:B2:F3:C9:E3:24:F2:D5:C5:58:CE:E8:DF:62
Certificate issuer: /CN=da90910c27e0a78d5f8a404e69c260275561c59b
Certificate serial: 5A8D219A85C381C5115803077CA10DBCCDF38A83
Authority key identifier: DA:90:91:0C:27:E0:A7:8D:5F:8A:40:4E:69:C2:60:27:55:61:C5:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pCRDCfgp41fikBOacJgJ1VhxZs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d43cc54b-e7ff-4945-90bc-fd4761ccc302/0/34352e3135342e362e302f32332d3234203d3e20383334.roa
Signing time: Sat 04 May 2024 00:05:16 +0000
ROA not before: Sat 04 May 2024 00:00:16 +0000
ROA not after: Sat 03 May 2025 00:05:16 +0000
asID: 834
IP address blocks: 45.154.6.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:8d:21:9a:85:c3:81:c5:11:58:03:07:7c:a1:0d:bc:cd:f3:8a:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da90910c27e0a78d5f8a404e69c260275561c59b
Validity
Not Before: May 4 00:00:16 2024 GMT
Not After : May 3 00:05:16 2025 GMT
Subject: CN=2CE1CBB9951D63B2F3C9E324F2D5C558CEE8DF62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:fb:54:03:67:ad:7b:57:4f:16:3b:f8:64:94:
65:1f:82:06:45:04:a6:68:19:cd:ca:e8:bd:be:a7:
dd:ad:5f:35:b4:c7:f4:02:cc:ac:4f:12:2e:a7:3b:
38:33:9b:65:6c:74:31:49:bb:64:56:9b:11:1d:e3:
75:d5:58:11:1e:30:9b:ef:38:ab:d3:5c:25:eb:f7:
28:a9:f5:80:b4:04:69:5c:f7:f2:3d:2e:70:e7:ce:
76:da:73:d5:12:aa:3a:32:5a:87:78:4c:5d:5a:6e:
ba:cc:8e:e3:f3:39:68:4e:76:7b:ad:b6:dd:e0:b7:
9c:97:12:c6:e2:c9:b5:7f:27:03:04:6e:19:11:76:
1e:fc:22:b0:00:6e:96:7d:97:6e:fe:8f:c0:a2:60:
9e:13:45:dd:c2:62:e9:25:e8:56:d6:f4:5e:ff:a0:
5c:e8:6a:79:48:c4:36:9e:95:ac:0b:22:98:75:c3:
88:4a:a0:d1:c8:c2:ed:7f:72:37:9c:d5:05:75:8b:
09:71:04:b2:2a:35:ed:14:58:55:31:4a:1c:03:f6:
e9:2a:4e:e8:e7:68:04:87:66:d0:6f:e4:df:ca:84:
b2:eb:5c:0d:81:45:4e:ab:47:ea:e7:d5:7e:d0:ec:
03:e8:27:f4:4d:4a:93:d7:34:76:58:ac:a2:9a:84:
b8:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:E1:CB:B9:95:1D:63:B2:F3:C9:E3:24:F2:D5:C5:58:CE:E8:DF:62
X509v3 Authority Key Identifier:
keyid:DA:90:91:0C:27:E0:A7:8D:5F:8A:40:4E:69:C2:60:27:55:61:C5:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d43cc54b-e7ff-4945-90bc-fd4761ccc302/0/DA90910C27E0A78D5F8A404E69C260275561C59B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pCRDCfgp41fikBOacJgJ1VhxZs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d43cc54b-e7ff-4945-90bc-fd4761ccc302/0/34352e3135342e362e302f32332d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.6.0/23
Signature Algorithm: sha256WithRSAEncryption
3a:82:d2:80:a0:c9:49:41:61:18:f3:75:d1:2f:8f:6b:96:20:
e7:19:64:46:cc:61:84:26:4e:61:4f:a9:4d:82:b4:6b:52:ec:
ee:98:13:fc:ee:37:17:1e:85:8b:42:ef:f0:0d:ca:0f:1c:5f:
ad:92:6e:5f:35:2f:fd:20:41:f9:de:7a:9e:65:b9:d8:60:57:
13:4f:f6:d7:81:fb:5c:66:17:13:03:4e:2b:1b:72:e1:93:89:
fe:5b:cc:cc:b2:87:d3:f9:bc:a2:ba:f1:e8:ef:07:2d:d0:32:
dc:44:0f:54:06:7e:49:93:47:1e:ec:39:2a:fb:78:70:ba:9d:
ae:45:97:91:37:fb:1c:c6:09:ba:24:8c:0b:77:20:11:37:93:
6e:4a:81:8f:31:b9:f7:61:dc:d9:14:8a:d1:a8:17:e4:2d:69:
be:a9:6e:c0:23:c0:c7:07:da:a2:bd:83:70:bd:a4:6e:60:6a:
8a:25:9b:e2:28:ca:73:99:3b:a5:5e:c1:1d:ca:67:64:79:fc:
d4:0d:89:5d:13:69:cf:ba:7f:c2:68:2a:89:41:6f:15:1a:7c:
b1:76:70:56:d5:a6:83:70:f8:35:a3:07:be:54:73:fd:98:d0:
9c:58:8d:81:a7:f0:75:bd:64:d7:b0:39:4a:24:2b:78:5e:a3:
c4:35:a3:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 16 10:03:40 2024 by rpki-client on console-ams.rpki-client.org