Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e31332e35392e302f32342d3332203d3e203531313637.roa
File: 34352e31332e35392e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: HEI4803e8iE3X0Gr82PfDZmPMBVCOPhTq7sK56E8/7Y=
Subject key identifier: EA:B7:9C:9D:BA:4C:1B:D0:FE:4F:C8:C2:3B:11:91:2E:2F:40:94:3F
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 3A3A903B3F60BBF644D2F269CF4EE914D4D4B698
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e31332e35392e302f32342d3332203d3e203531313637.roa
Signing time: Fri 27 Dec 2024 11:47:28 +0000
ROA not before: Fri 27 Dec 2024 11:42:28 +0000
ROA not after: Fri 26 Dec 2025 11:47:28 +0000
asID: 51167
IP address blocks: 45.13.59.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:3a:90:3b:3f:60:bb:f6:44:d2:f2:69:cf:4e:e9:14:d4:d4:b6:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:28 2024 GMT
Not After : Dec 26 11:47:28 2025 GMT
Subject: CN=EAB79C9DBA4C1BD0FE4FC8C23B11912E2F40943F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:c2:f8:97:cf:a2:cf:6a:98:2d:af:0b:4a:26:
8e:99:cd:b4:87:bc:7d:f7:da:1f:55:23:0a:ef:d1:
5e:f5:5b:fe:dc:05:5c:e0:ad:59:da:0d:13:ff:37:
e9:8d:22:89:3c:3c:6b:b4:fb:6f:34:75:3c:b3:ea:
85:23:6e:91:4e:99:ea:01:cc:d6:e8:25:82:1f:70:
82:a4:5b:b6:c6:d4:bd:1d:c4:0d:c2:83:ef:84:2e:
00:0b:36:ba:3d:fe:b7:fc:e3:af:1a:11:78:29:f2:
fc:27:d4:1c:5c:b2:01:26:1a:7b:65:77:8f:dc:1e:
8f:31:55:68:5d:1e:67:bd:5a:03:7d:8a:ab:fd:c7:
f5:6f:20:ab:e8:0e:9d:01:fb:9e:6f:cb:b3:e9:3d:
bd:b8:6d:cd:e5:92:60:dc:9f:46:56:b0:24:37:aa:
0c:36:e1:79:1b:54:f8:87:6d:18:94:a3:88:70:e8:
00:7c:74:4d:9f:95:b4:a1:36:8e:46:ad:23:32:8a:
31:eb:80:7b:c3:d3:1b:8c:4f:89:35:68:c7:77:a9:
8b:81:7f:0c:8a:2c:72:53:7e:a0:b7:26:fa:08:9e:
39:2e:9d:46:57:0d:b1:94:69:b9:f4:3d:e8:02:74:
3c:a2:0e:37:11:cf:72:07:d7:9e:52:c1:ff:24:ea:
7d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:B7:9C:9D:BA:4C:1B:D0:FE:4F:C8:C2:3B:11:91:2E:2F:40:94:3F
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e31332e35392e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.59.0/24
Signature Algorithm: sha256WithRSAEncryption
de:bd:fd:09:6c:77:73:57:19:4d:fb:66:22:0e:02:b8:06:63:
b3:d2:6c:4f:38:f9:6a:e9:8c:19:93:63:83:1c:0d:08:ed:69:
a2:c5:e3:2e:26:99:36:f3:e6:75:13:61:86:48:b0:26:ec:29:
33:e7:85:58:dc:ea:0f:38:28:e9:c5:17:da:37:5b:36:d7:69:
83:a3:f8:8e:15:96:ec:6c:45:fe:31:e1:17:f7:fa:01:e9:ba:
28:ff:a2:ee:ac:f4:72:50:07:bc:6e:76:58:04:52:8b:e6:4a:
4c:01:66:64:1e:a0:b0:0e:d5:d0:8f:c5:ea:b2:41:c0:22:bc:
74:c0:ce:ac:fd:ae:83:3a:7e:b3:99:be:4c:bf:de:55:79:eb:
ad:a0:fb:a0:93:69:0e:28:62:d6:4e:cc:ba:10:08:8e:0a:fd:
9f:e0:da:52:22:7b:4c:91:1d:e4:42:2e:48:ca:44:a8:31:d2:
a7:ca:d1:97:d2:83:1d:f2:9f:2a:c3:ed:a0:77:cd:f3:54:2c:
c8:bc:82:fc:6a:33:24:a9:87:de:8d:19:25:f6:81:9e:e5:27:
a7:24:5b:0c:38:a1:6e:d4:6a:30:66:a0:6a:16:c7:47:7e:8b:
ae:d1:5c:5f:05:67:12:ec:5e:a2:c8:44:82:21:0e:e0:0e:a2:
7f:68:fe:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 05:05:58 2025 by rpki-client