Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e36362e3133372e302f32342d3234203d3e20313336373837.roa
File: 34352e36362e3133372e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: zNgVi0/zssq/kIGKfYzldDUcXlGFMtEjw6k3E1mjKco=
Subject key identifier: C3:B2:F7:F0:DA:63:71:CD:BC:5A:9A:BA:86:98:31:55:AB:30:D4:19
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 1BA5E4C4632645DFC1B46FF5810B2E065FB45A94
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e36362e3133372e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 20 Dec 2024 15:23:30 +0000
ROA not before: Fri 20 Dec 2024 15:18:30 +0000
ROA not after: Fri 19 Dec 2025 15:23:30 +0000
asID: 136787
IP address blocks: 45.66.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:a5:e4:c4:63:26:45:df:c1:b4:6f:f5:81:0b:2e:06:5f:b4:5a:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 20 15:18:30 2024 GMT
Not After : Dec 19 15:23:30 2025 GMT
Subject: CN=C3B2F7F0DA6371CDBC5A9ABA86983155AB30D419
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:43:2c:c3:c2:71:b4:34:12:a6:77:dd:38:09:
6e:d9:d3:6a:39:03:23:79:41:ff:1d:c3:69:cb:69:
3a:e1:44:fc:b5:56:62:05:f0:c1:c0:e9:2c:47:f7:
68:a4:29:32:11:d7:9a:c2:42:39:48:c1:e9:2e:d4:
31:c3:ab:68:c2:db:82:6c:12:61:fa:c5:51:a4:dd:
e1:d9:15:8b:7a:6f:34:c2:94:4b:2e:5d:1e:d6:cb:
f0:1c:d8:1f:53:90:ff:82:fb:2d:45:d7:6e:89:c1:
5e:16:1a:5c:f6:29:1b:47:60:8f:8f:69:e3:6a:b7:
9b:82:90:c6:6f:ee:1e:65:54:87:c6:39:1f:82:42:
32:d1:0b:85:bb:e2:c0:e6:51:72:2b:cb:d4:fd:31:
f2:15:6b:7c:7a:18:bb:26:90:80:04:b1:64:d2:31:
ea:fc:b8:94:e5:38:5b:31:d3:dc:a4:10:db:0a:19:
83:bd:59:c7:24:c9:36:eb:3a:ac:30:a3:ce:c4:2b:
91:a2:e1:5a:ee:a0:77:b1:b5:44:fe:68:bd:a9:13:
3c:be:d4:9c:c3:57:0e:9f:54:1f:98:9d:5f:74:66:
6c:51:85:91:76:3f:fe:61:f5:d4:47:23:ea:52:7d:
40:61:43:1f:9f:e7:9d:3e:2a:b6:f4:76:e5:96:71:
a1:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:B2:F7:F0:DA:63:71:CD:BC:5A:9A:BA:86:98:31:55:AB:30:D4:19
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e36362e3133372e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.137.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:a0:2e:40:08:48:d3:8f:1c:1b:3b:ab:61:fb:0d:9b:b1:d3:
db:6b:f1:8e:d6:e2:1d:fc:2f:ab:b0:11:fa:a5:d9:37:6e:48:
c0:09:a8:b4:7a:32:93:a8:81:64:1f:ad:7f:ed:c7:a0:49:36:
9f:6a:e6:c0:25:83:a3:bb:cc:c7:bd:2b:77:89:b5:5e:d2:8a:
69:fa:f6:bf:77:10:b2:b7:87:35:a0:cc:c3:2b:c4:b8:90:5c:
cf:bf:06:83:2d:46:44:d5:cc:33:14:c4:f1:9a:e5:ff:76:c6:
8f:6f:20:df:d4:58:69:a7:ef:98:c2:75:6e:99:c8:35:9b:dc:
18:81:e6:8a:b1:84:33:9f:b6:46:6c:9a:e0:12:49:20:77:ca:
79:9b:8a:cb:5c:b8:2a:4d:b8:12:06:92:3b:d0:51:c9:fa:c7:
fb:a6:53:1b:f2:1b:2a:7e:9f:0a:90:d9:8b:f3:2e:01:b3:8b:
f9:e2:de:4a:05:e4:cf:d2:af:41:e2:34:4f:1e:f6:2d:24:b7:
13:1b:3e:ca:68:73:f0:3c:73:8f:0b:3a:10:56:ac:52:ff:46:
32:a3:a9:86:12:7c:89:a7:f8:88:2c:a6:e7:7b:9d:c9:25:ff:
48:00:f0:2e:3e:00:0a:d8:b1:31:6e:e7:10:8a:f6:ed:16:9d:
b5:6d:be:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:42:20 2025 by rpki-client