Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc9aa95f-7b38-426a-9966-5441939fe031/0/34352e3135302e352e302f32342d3234203d3e20323039383534.roa
File: 34352e3135302e352e302f32342d3234203d3e20323039383534.roa (raw, json)
Hash identifier: og23dgtoYqERERjtAqH2h8sLSaLgr4DxdJzsOAsyNMg=
Subject key identifier: 1B:E1:FE:2C:C3:49:B4:CE:69:93:24:EE:83:7C:85:CF:32:6E:B6:08
Certificate issuer: /CN=64af15419bd5fe6c8f97e224a86a4917a2e6fefe
Certificate serial: 5D20B20393D98107BD2DA60D0D01D79AEBF299C9
Authority key identifier: 64:AF:15:41:9B:D5:FE:6C:8F:97:E2:24:A8:6A:49:17:A2:E6:FE:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZK8VQZvV_myPl-IkqGpJF6Lm_v4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc9aa95f-7b38-426a-9966-5441939fe031/0/34352e3135302e352e302f32342d3234203d3e20323039383534.roa
Signing time: Tue 18 Feb 2025 11:53:55 +0000
ROA not before: Tue 18 Feb 2025 11:48:55 +0000
ROA not after: Tue 17 Feb 2026 11:53:55 +0000
asID: 209854
IP address blocks: 45.150.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:20:b2:03:93:d9:81:07:bd:2d:a6:0d:0d:01:d7:9a:eb:f2:99:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64af15419bd5fe6c8f97e224a86a4917a2e6fefe
Validity
Not Before: Feb 18 11:48:55 2025 GMT
Not After : Feb 17 11:53:55 2026 GMT
Subject: CN=1BE1FE2CC349B4CE699324EE837C85CF326EB608
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:48:fd:b0:b1:ad:ed:67:59:4f:10:14:db:da:
80:e0:76:95:2e:77:8c:f7:ba:91:14:c3:3b:8e:ef:
75:c8:52:81:80:9d:df:f0:14:d4:7f:8c:76:aa:d2:
1d:d4:88:c5:53:a0:1d:78:a0:78:d5:58:54:96:14:
d1:7c:20:53:dc:ad:ee:4a:6a:ab:52:e2:db:bc:77:
2c:30:1c:7e:b4:8c:aa:f9:68:bf:4d:45:ef:14:25:
a8:a2:ef:37:d9:87:38:55:7b:01:7c:17:70:73:9c:
63:97:cb:e6:70:1d:ae:70:52:5c:44:ad:55:46:94:
da:2f:dd:45:45:a7:23:fd:ef:67:24:ff:a7:44:95:
49:15:16:cc:28:cc:ff:9f:94:f5:a0:66:ba:ca:08:
15:c5:57:a9:62:46:77:e7:a3:1c:68:67:bc:52:3a:
f9:5d:eb:b2:16:c4:c8:d4:ac:4c:3a:3f:c3:b6:a4:
33:c6:f2:24:4a:1d:49:73:b1:48:98:34:ac:ec:17:
b4:11:64:e9:ef:3e:19:bb:47:af:0f:10:7e:b9:8e:
1f:ef:10:e1:ec:4e:69:2a:51:0e:8e:45:94:5f:b5:
96:73:7c:19:50:b0:b1:25:48:d0:59:e1:05:5e:c7:
bc:69:54:27:75:6f:54:a4:d9:d1:f7:52:8c:17:f0:
1c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:E1:FE:2C:C3:49:B4:CE:69:93:24:EE:83:7C:85:CF:32:6E:B6:08
X509v3 Authority Key Identifier:
keyid:64:AF:15:41:9B:D5:FE:6C:8F:97:E2:24:A8:6A:49:17:A2:E6:FE:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc9aa95f-7b38-426a-9966-5441939fe031/0/64AF15419BD5FE6C8F97E224A86A4917A2E6FEFE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZK8VQZvV_myPl-IkqGpJF6Lm_v4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc9aa95f-7b38-426a-9966-5441939fe031/0/34352e3135302e352e302f32342d3234203d3e20323039383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.5.0/24
Signature Algorithm: sha256WithRSAEncryption
70:a5:b3:d8:07:eb:2f:2f:18:4e:80:45:ea:31:f3:99:2a:e0:
e1:00:37:6e:03:7e:22:62:a5:14:16:5c:dc:4a:a1:27:d1:93:
27:95:03:06:b7:a2:9e:d5:7c:51:df:dc:6b:f1:48:26:61:2b:
39:0f:f2:91:42:4a:8a:31:45:51:57:38:8b:90:31:26:13:23:
a7:e5:c3:0e:c0:34:4b:d8:8e:50:62:54:af:53:36:a5:06:01:
a0:37:36:4d:d9:47:30:df:e8:42:2d:37:ad:a2:8b:e8:4b:2c:
df:e3:22:5b:e7:3f:98:cb:bf:d1:88:9d:21:11:aa:19:b6:c5:
a2:63:14:3e:5f:a9:5d:59:16:ca:f7:61:94:9b:3a:6c:64:9a:
07:94:b6:15:66:6d:69:8a:f2:21:9f:de:e8:f3:80:d8:c7:7c:
de:42:97:02:e8:80:5f:38:2f:ba:c7:f3:cd:35:dc:28:13:ce:
c5:9a:8f:f8:3a:44:03:f5:a0:e8:ed:9d:38:e7:d6:c5:b0:cc:
03:1d:b9:df:2c:03:15:54:9b:7b:05:b5:4d:ea:d1:e4:34:c6:
cc:01:54:86:18:fb:76:9b:13:66:9b:a3:53:4a:0a:37:9b:18:
7c:65:54:23:9e:8a:37:64:48:d4:c1:c8:93:2e:a2:66:dc:e1:
54:74:52:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 18:27:18 2025 by rpki-client