Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e31302e3135372e302f32342d3234203d3e20383334.roa
File: 34352e31302e3135372e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: ldsNpEoDR4eMQA6X19JEfrWmU77KjzEjudHirDWrNHY=
Subject key identifier: F7:DC:D7:68:A7:32:CF:60:46:D3:12:93:84:71:85:BB:F3:5B:7F:B5
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 26931057C78CC000492BBC92CD9EA6EA6CB95288
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e31302e3135372e302f32342d3234203d3e20383334.roa
Signing time: Mon 20 May 2024 08:03:41 +0000
ROA not before: Mon 20 May 2024 07:58:41 +0000
ROA not after: Mon 19 May 2025 08:03:41 +0000
asID: 834
IP address blocks: 45.10.157.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:93:10:57:c7:8c:c0:00:49:2b:bc:92:cd:9e:a6:ea:6c:b9:52:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: May 20 07:58:41 2024 GMT
Not After : May 19 08:03:41 2025 GMT
Subject: CN=F7DCD768A732CF6046D31293847185BBF35B7FB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3f:7b:5d:71:52:07:c1:b9:a8:83:48:81:26:
b2:54:57:8c:f9:ba:e1:1c:ba:eb:f4:96:30:d9:e9:
31:19:2a:06:03:20:1a:a9:d7:95:27:75:7b:a0:b1:
4b:f7:59:6e:56:c0:4f:a9:c0:71:5c:f6:c5:e4:0c:
89:7f:39:c3:e9:1c:dd:81:bd:76:53:86:2f:c0:fa:
bd:f3:01:2d:a1:73:de:59:93:26:f0:fa:ee:59:94:
7c:e4:08:01:ee:87:5f:f8:12:89:52:93:5f:f5:87:
0c:28:2d:be:a1:be:f5:55:36:cb:f2:e9:0b:bf:b3:
25:19:6c:cb:65:e9:f0:26:8b:31:54:e9:43:80:5e:
75:68:4b:6d:5b:2d:0d:d0:63:58:33:f1:aa:ee:30:
68:fe:ec:69:b2:ac:a1:3b:01:e2:26:3e:ba:66:a7:
3f:3a:5c:e5:c1:6a:28:6f:a6:2a:21:c9:5d:de:67:
32:e1:9a:25:66:47:9f:d2:10:82:88:b6:e2:2e:d3:
d5:c8:5f:de:71:8c:9c:e7:28:94:30:e8:77:54:c6:
39:6d:5b:05:3d:43:50:0b:6f:7f:82:b9:34:d5:39:
99:7f:cb:de:e4:52:49:57:0a:6a:2e:10:db:2a:25:
cb:6e:e3:51:a9:ad:3e:2a:0a:b7:59:1a:8c:d2:1a:
e0:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:DC:D7:68:A7:32:CF:60:46:D3:12:93:84:71:85:BB:F3:5B:7F:B5
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e31302e3135372e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.157.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:cb:27:61:5d:98:d2:cd:fa:72:90:84:2a:b9:c1:c4:ad:ff:
4f:e5:12:0c:26:b2:7a:dd:3f:b1:1a:51:9e:1e:be:9d:35:1a:
c6:20:e9:a6:95:13:6e:cc:a5:96:fe:1f:2a:da:a6:73:de:cd:
00:0b:10:12:7e:ca:19:18:63:14:b6:6d:93:d9:d2:d1:bc:dd:
18:ae:e7:4b:22:89:ab:04:8e:06:2d:3f:2e:09:17:77:9f:05:
e8:84:87:93:97:20:3c:5c:18:35:42:da:51:d8:86:e4:aa:d8:
50:2a:f8:42:7e:d7:ac:dd:b6:03:f9:d6:03:d0:a1:ac:89:ff:
be:19:2a:60:d9:1a:3d:69:41:45:68:1e:f9:ea:53:f8:75:94:
94:76:15:b0:e2:99:72:9c:35:f1:6d:5f:a7:75:41:fa:9b:4b:
a2:5d:a3:a5:84:3a:57:3c:13:62:ca:89:28:65:05:3b:89:29:
21:68:53:6f:84:3c:70:61:71:63:b7:12:27:79:4a:40:25:34:
d3:b4:11:b9:4a:8b:00:29:65:5f:f4:c6:e6:b6:b2:b4:db:72:
81:cf:82:58:67:6c:2e:25:ca:b1:b6:dd:b5:81:27:97:34:9d:
2e:56:a0:7c:10:e4:d9:b3:db:ae:b0:e6:3d:39:0e:dc:9f:8d:
c3:27:b6:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:31:19 2025 by rpki-client