Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e31302e3135382e302f32332d3233203d3e203136313235.roa
File: 34352e31302e3135382e302f32332d3233203d3e203136313235.roa (raw, json)
Hash identifier: L9wXFRSTCjEgjCadEDaeCNDdMAC0gPVzPkdLtUazCAw=
Subject key identifier: 03:AA:96:78:A9:E5:D7:78:65:CB:45:43:57:19:AD:8A:E8:03:99:C9
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 7EF17664DE62269334B391DDFA064255F335BD07
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e31302e3135382e302f32332d3233203d3e203136313235.roa
Signing time: Fri 01 Mar 2024 16:36:41 +0000
ROA not before: Fri 01 Mar 2024 16:31:41 +0000
ROA not after: Fri 28 Feb 2025 16:36:41 +0000
asID: 16125
IP address blocks: 45.10.158.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:f1:76:64:de:62:26:93:34:b3:91:dd:fa:06:42:55:f3:35:bd:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Mar 1 16:31:41 2024 GMT
Not After : Feb 28 16:36:41 2025 GMT
Subject: CN=03AA9678A9E5D77865CB45435719AD8AE80399C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b6:34:41:a3:9a:42:64:32:e7:50:e4:19:5a:
41:0e:1f:80:96:cc:b9:4e:70:92:3d:83:93:e8:d2:
a1:bc:f1:3c:54:79:e5:7e:9c:36:69:3a:1e:57:da:
0d:b5:66:2f:d4:30:af:a3:42:60:d8:ba:8d:e2:d9:
bd:f8:73:25:01:4e:39:85:a8:8d:bc:57:46:b6:92:
e8:00:c6:00:d4:be:ad:71:0b:9c:50:e2:ef:a7:b9:
07:bb:64:dc:4c:47:b4:19:06:bf:c9:74:89:93:17:
7f:33:0a:52:44:87:cf:69:04:01:ff:1e:a6:a0:fc:
7c:5b:51:e8:a8:fe:17:40:d6:9f:8c:90:89:14:36:
5a:98:a9:b7:85:e6:9f:e9:d4:73:2c:ab:b7:b3:76:
1b:dd:82:0e:f7:ed:5e:ad:4b:12:f7:56:05:db:8a:
11:ad:e9:39:bb:a7:98:7c:9b:f3:d2:ee:ef:6a:04:
12:f0:e8:6c:62:df:dc:c8:38:76:43:ce:08:17:87:
0e:ed:63:94:58:bb:28:16:63:f0:d2:d0:08:4b:88:
44:9b:cd:62:a1:68:5d:98:08:bf:5e:45:5d:67:18:
d8:3d:5e:d5:4c:f2:58:37:09:f3:5d:7a:62:21:da:
0e:57:30:c2:a0:de:33:ac:91:7c:0f:83:d5:06:b2:
6d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:AA:96:78:A9:E5:D7:78:65:CB:45:43:57:19:AD:8A:E8:03:99:C9
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e31302e3135382e302f32332d3233203d3e203136313235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.158.0/23
Signature Algorithm: sha256WithRSAEncryption
27:a7:46:89:e9:f8:f2:7b:4b:78:d8:e1:5a:e4:83:f3:59:8c:
81:0d:1c:c2:63:73:28:80:3f:b5:e8:70:90:a5:81:0c:ca:08:
35:99:07:1a:11:96:d6:fb:f2:7d:41:a3:dc:63:a7:aa:98:99:
21:57:52:3c:05:27:46:90:b7:f6:73:fb:1a:6b:31:56:a5:8b:
b8:e1:ea:82:38:43:80:40:de:a7:56:d4:cf:98:db:8a:76:7b:
e6:7f:78:6b:ac:44:76:90:6b:e5:fd:38:8e:bf:12:77:8c:71:
74:61:e5:cc:7c:65:82:67:7c:e6:1e:ef:ef:2e:5b:1b:2b:de:
1c:c4:5a:c8:2d:08:30:80:47:d4:a9:58:25:ad:28:2b:5a:4e:
c6:a5:79:05:50:23:e7:87:78:ad:dd:e5:f6:cf:c2:24:5e:b3:
e3:ff:f9:8c:e1:29:9a:00:80:68:d4:19:bc:c6:92:88:9d:08:
e5:75:9d:4d:ed:b1:70:29:d0:66:2f:90:6e:39:db:fd:e4:fc:
fd:a4:a1:d3:ce:18:f7:29:ce:7c:4a:60:8b:d0:6d:20:1a:06:
be:c7:57:95:91:65:be:d4:8e:9f:fd:47:ca:51:64:be:67:a9:
36:b0:e4:96:71:ee:d2:96:e7:fb:e7:37:52:e2:ec:e4:0d:fe:
71:80:9e:c8
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUfvF2ZN5iJpM0s5Hd+gZCVfM1vQcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDhmYjliYTgyN2U2ZjEwYTdhZjM3NDkwODAzZGQ1YTA3
NjM5NzIzNTAeFw0yNDAzMDExNjMxNDFaFw0yNTAyMjgxNjM2NDFaMDMxMTAvBgNV
BAMTKDAzQUE5Njc4QTlFNUQ3Nzg2NUNCNDU0MzU3MTlBRDhBRTgwMzk5QzkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHtjRBo5pCZDLnUOQZWkEOH4CW
zLlOcJI9g5Po0qG88TxUeeV+nDZpOh5X2g21Zi/UMK+jQmDYuo3i2b34cyUBTjmF
qI28V0a2kugAxgDUvq1xC5xQ4u+nuQe7ZNxMR7QZBr/JdImTF38zClJEh89pBAH/
Hqag/HxbUeio/hdA1p+MkIkUNlqYqbeF5p/p1HMsq7ezdhvdgg737V6tSxL3VgXb
ihGt6Tm7p5h8m/PS7u9qBBLw6Gxi39zIOHZDzggXhw7tY5RYuygWY/DS0AhLiESb
zWKhaF2YCL9eRV1nGNg9XtVM8lg3CfNdemIh2g5XMMKg3jOskXwPg9UGsm3jAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUA6qWeKnl13hly0VDVxmtiugDmckwHwYDVR0j
BBgwFoAUCPubqCfm8Qp683SQgD3VoHY5cjUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzIvMDhGQjlCQTgyN0U2RjEwQTdBRjM3NDkwODAzREQ1QTA3NjM5NzIzNS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NQdWJxQ2ZtOFFwNjgzU1FnRDNWb0hZ
NWNqVS5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzIvMzQzNTJlMzEzMDJlMzEzNTM4
MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzEzNjMxMzIzNS5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAS0K
njANBgkqhkiG9w0BAQsFAAOCAQEAJ6dGien48ntLeNjhWuSD81mMgQ0cwmNzKIA/
tehwkKWBDMoINZkHGhGW1vvyfUGj3GOnqpiZIVdSPAUnRpC39nP7GmsxVqWLuOHq
gjhDgEDep1bUz5jbinZ75n94a6xEdpBr5f04jr8Sd4xxdGHlzHxlgmd85h7v7y5b
GyveHMRayC0IMIBH1KlYJa0oK1pOxqV5BVAj54d4rd3l9s/CJF6z4//5jOEpmgCA
aNQZvMaSiJ0I5XWdTe2xcCnQZi+Qbjnb/eT8/aSh084Y9ynOfEpgi9BtIBoGvsdX
lZFlvtSOn/1HylFkvmepNrDklnHu0pbn++c3UuLs5A3+cYCeyA==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:57:27 2025 by rpki-client