Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3133322e39362e302f32342d3234203d3e20323037393932.roa
File: 34352e3133322e39362e302f32342d3234203d3e20323037393932.roa (raw, json)
Hash identifier: Yo2QeRhSWKrPSxgf10CKLGvhI3BowbRpnYdLAxewDqY=
Subject key identifier: 77:74:40:4F:86:92:A2:9A:77:1F:1F:D3:D9:63:EE:75:1B:E2:7C:9F
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 28432732AED510C805E3439C3755391A5A327680
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3133322e39362e302f32342d3234203d3e20323037393932.roa
Signing time: Thu 06 Mar 2025 11:53:55 +0000
ROA not before: Thu 06 Mar 2025 11:48:55 +0000
ROA not after: Thu 05 Mar 2026 11:53:55 +0000
asID: 207992
IP address blocks: 45.132.96.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:43:27:32:ae:d5:10:c8:05:e3:43:9c:37:55:39:1a:5a:32:76:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Mar 6 11:48:55 2025 GMT
Not After : Mar 5 11:53:55 2026 GMT
Subject: CN=7774404F8692A29A771F1FD3D963EE751BE27C9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f6:64:e0:88:a9:0f:a2:dc:f0:cb:b4:c7:a7:
88:65:48:07:1c:e7:c2:da:87:1b:3b:f5:6a:67:a5:
79:30:79:0c:21:09:0a:b9:e4:e4:8c:e8:f4:42:aa:
72:40:f0:ee:2a:a4:c0:83:60:b7:69:51:1a:6d:ed:
27:98:71:43:85:43:e6:15:3b:ef:97:62:83:22:ef:
e0:e1:80:51:26:04:cb:ac:17:95:b3:fc:18:1b:2e:
5f:8e:a2:4e:6f:0d:1c:e7:fe:cd:8b:5a:6e:52:a3:
3c:39:bf:e8:7f:21:84:b8:4b:16:8a:f3:7c:b5:f5:
78:88:a7:e2:45:49:35:34:1c:5b:eb:cf:5a:8e:95:
3a:5e:9f:8a:0b:00:c1:2b:03:a5:6b:ca:64:b7:21:
24:b0:ab:58:a3:c7:f2:89:d3:45:0a:14:1c:69:5c:
46:41:21:7e:c5:44:4e:2c:3d:d5:35:cf:7f:0a:d2:
b2:28:86:67:2f:49:d4:57:20:2d:13:71:c7:73:24:
56:1f:b4:23:07:8e:ee:59:0c:d1:a3:ce:14:72:f3:
dc:ae:8b:a8:dd:fc:fd:14:4b:7d:61:c6:0f:0a:ba:
b9:9d:ae:56:e8:6c:5c:f0:40:5f:c5:d4:48:2c:ff:
de:30:1c:55:88:1f:6e:a6:11:9b:1f:22:dd:d0:23:
6d:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:74:40:4F:86:92:A2:9A:77:1F:1F:D3:D9:63:EE:75:1B:E2:7C:9F
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3133322e39362e302f32342d3234203d3e20323037393932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.96.0/24
Signature Algorithm: sha256WithRSAEncryption
66:1e:ae:cf:80:26:5d:fa:a1:7f:e0:f7:a8:39:57:6f:e0:ba:
89:7e:1f:1a:07:5e:de:9b:5a:b2:7e:0a:ec:10:fc:73:52:57:
64:69:ce:ca:81:fa:d5:d0:58:0b:46:d6:92:13:c2:b1:4c:a3:
a9:c8:2b:f1:72:8e:b8:ea:b8:4c:6f:ca:65:58:23:a8:43:96:
30:a9:4f:52:30:88:a6:71:79:da:f8:5d:c2:b0:2d:0a:c8:21:
1b:d5:2f:18:23:9c:2f:31:4d:e3:ca:df:02:e3:80:3a:4b:f7:
ec:32:ea:e2:36:60:15:3d:b7:9e:94:09:da:0f:de:c1:d5:49:
8e:04:a3:c0:5f:cb:86:09:45:07:40:c9:87:9d:d6:aa:f8:81:
6a:ad:0d:05:29:b3:a0:bc:cd:14:97:72:88:35:39:5f:c4:1c:
ca:08:dc:05:3d:4e:a4:be:00:fa:a9:db:a5:9f:01:a7:81:e5:
f1:03:c2:ad:c9:1c:b4:80:85:94:73:26:5d:25:94:be:40:ba:
48:a2:be:48:24:30:cc:4b:14:9a:7a:98:c7:58:ac:aa:5e:22:
e4:36:8f:fd:43:11:33:30:a1:5a:0c:92:16:d4:ff:76:0a:15:
40:48:62:c6:36:69:a1:60:d7:11:ad:7f:0d:53:60:12:ab:2c:
03:c6:d7:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:04:39 2025 by rpki-client