Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e3134382e3133382e302f32342d3234203d3e20313336373837.roa
File: 34352e3134382e3133382e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: gOPKKOQJ+083XZb785h0E5RlI6uWBqHhb53hD01feSA=
Subject key identifier: AF:8A:42:F0:12:40:E6:F8:21:03:F0:E2:AF:CA:6C:A0:7F:42:A3:83
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 29E83FCC355835ED27C677B69E783A03B7B5B954
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e3134382e3133382e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 11:47:31 +0000
ROA not before: Fri 27 Dec 2024 11:42:31 +0000
ROA not after: Fri 26 Dec 2025 11:47:31 +0000
asID: 136787
IP address blocks: 45.148.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:e8:3f:cc:35:58:35:ed:27:c6:77:b6:9e:78:3a:03:b7:b5:b9:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:31 2024 GMT
Not After : Dec 26 11:47:31 2025 GMT
Subject: CN=AF8A42F01240E6F82103F0E2AFCA6CA07F42A383
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0c:82:49:be:6d:1f:26:df:94:be:35:fe:86:
36:2b:76:20:45:01:f3:47:05:15:a7:3f:90:75:6c:
f2:98:68:89:69:27:07:bd:03:18:3d:22:3b:39:79:
7a:44:0b:6a:77:2f:8c:a3:6c:37:52:3f:3f:1a:42:
eb:3f:1c:83:87:ba:4a:0f:00:08:6f:da:7e:ce:4d:
7c:f8:7a:0a:72:3e:07:99:c0:98:fb:fa:df:c7:80:
97:c4:11:3a:4b:25:92:bd:8e:39:1d:a9:b4:10:7b:
f1:eb:8e:c3:08:1e:4b:f7:10:62:3a:94:85:4e:d7:
a7:2a:32:7e:f9:5b:95:2d:b1:4a:ff:c5:24:84:81:
39:ae:a6:0a:be:8a:6c:35:ca:51:fb:31:70:6f:2e:
73:32:b6:86:a8:d1:a7:3a:d5:be:e7:73:9c:d1:ef:
82:51:f1:41:60:74:68:f2:7a:ac:39:55:0d:a8:9e:
bb:4e:a1:5a:79:b0:fe:ec:32:20:dd:c2:ec:f8:7e:
86:40:66:ec:e3:53:af:63:e0:cd:06:c9:c0:26:2f:
75:a9:99:87:d6:56:e4:6b:df:06:cf:1d:9b:01:11:
bb:7e:c3:13:8b:ad:32:cd:43:3b:4a:fb:94:e8:8a:
2b:de:5f:d3:d1:3f:9e:79:47:09:c4:77:eb:b8:fa:
a5:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:8A:42:F0:12:40:E6:F8:21:03:F0:E2:AF:CA:6C:A0:7F:42:A3:83
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e3134382e3133382e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.138.0/24
Signature Algorithm: sha256WithRSAEncryption
db:cc:09:be:32:f6:af:0c:ee:1e:86:30:37:41:42:57:bf:0c:
4e:7e:ce:63:ff:f0:77:ff:02:e2:ee:86:b0:93:d3:c2:16:59:
63:be:a8:49:40:3a:27:43:91:02:bf:3a:e1:ba:80:08:52:66:
62:0c:10:ce:64:01:ef:dd:93:f7:07:50:09:c8:8d:7b:77:8b:
9c:7f:21:c7:03:b2:6f:e8:b4:1c:94:d6:e2:f4:62:95:a5:43:
da:e8:d9:38:99:1f:0f:03:73:3a:14:1c:1d:8c:b0:a9:c0:47:
73:b5:c7:51:42:2a:54:d5:9a:35:6d:85:6b:dd:8a:ca:00:3f:
90:e7:ea:f6:2c:7f:04:90:36:4f:88:68:5c:55:9a:e2:ab:29:
64:5a:d0:2d:6a:67:f5:a9:2b:c5:b7:03:ee:b7:a1:04:bc:47:
4b:86:62:d8:16:aa:dc:9a:f8:2b:91:4d:1e:34:76:a2:0b:36:
9e:56:57:6a:cb:c7:f5:09:8e:f8:b0:72:45:98:b0:6e:5b:fe:
96:cf:4e:6d:f6:ba:e9:db:50:b1:3c:28:ad:3f:29:77:6f:9e:
8a:27:78:54:30:f1:3b:2d:61:7b:3a:15:54:26:73:f6:3f:11:
e3:95:fd:98:d6:f7:7e:1e:48:9a:8b:a7:b2:a8:85:10:45:cf:
a5:15:45:ed
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Apr 10 01:27:18 2025 by rpki-client