Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3132392e33322e302f32342d3234203d3e20313336373837.roa
File: 34352e3132392e33322e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: Kjj6h2PpQiSHH7b9D8jhE1nrvY1BLCergfj8l/L5nBE=
Subject key identifier: 48:B8:97:E3:F2:CE:57:02:B7:1C:7C:90:B8:CA:A3:4E:04:89:73:61
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 533B39A814D72C63E3B182852B536AC795937BE9
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3132392e33322e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 20 May 2024 17:03:44 +0000
ROA not before: Mon 20 May 2024 16:58:44 +0000
ROA not after: Mon 19 May 2025 17:03:44 +0000
asID: 136787
IP address blocks: 45.129.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:3b:39:a8:14:d7:2c:63:e3:b1:82:85:2b:53:6a:c7:95:93:7b:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: May 20 16:58:44 2024 GMT
Not After : May 19 17:03:44 2025 GMT
Subject: CN=48B897E3F2CE5702B71C7C90B8CAA34E04897361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b9:98:0b:ef:61:6b:13:a9:18:7c:4e:f5:5d:
00:ca:14:62:52:dd:bd:00:72:3d:20:d5:c5:ec:3f:
e3:0d:b1:b1:35:58:f7:ba:f7:88:56:3f:f8:5e:45:
05:4c:7e:74:74:0c:be:88:61:6e:e3:81:c4:2c:5d:
f8:59:1f:8c:5f:f2:5d:b2:13:c3:e5:30:78:9f:3c:
f5:76:ed:88:59:c9:2b:86:8c:d7:83:91:d6:de:7c:
39:20:fd:c9:41:3d:a7:82:89:73:8f:a3:68:a6:41:
42:fa:e6:45:60:36:e2:ec:39:75:38:82:da:ba:24:
60:e9:ff:8b:2d:45:c4:14:5f:ab:cd:1f:50:56:58:
29:08:70:e8:c2:70:37:94:41:87:12:81:12:b7:2b:
5d:83:a5:a1:9e:37:21:64:1b:99:11:a6:5f:a5:e4:
1f:45:f0:c6:c3:8e:0c:1b:36:cb:08:96:f4:95:2d:
16:04:43:bd:96:b8:76:8e:0f:11:84:4e:c3:92:13:
be:5b:33:c9:fc:a7:4f:cb:4a:21:7c:c8:a8:57:bf:
6f:19:0a:36:a5:0c:ef:e5:d3:4e:de:38:ed:16:3c:
51:e0:68:5d:d7:50:71:c5:95:9c:4b:89:58:bc:c4:
5a:2d:0f:ab:9e:b8:e6:fa:f5:95:f8:21:31:97:38:
9e:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:B8:97:E3:F2:CE:57:02:B7:1C:7C:90:B8:CA:A3:4E:04:89:73:61
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3132392e33322e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.32.0/24
Signature Algorithm: sha256WithRSAEncryption
01:98:64:b1:e7:53:05:54:89:96:a9:ba:70:6b:77:dd:be:d7:
ce:80:82:6e:8d:c9:ec:d2:27:71:ad:eb:2f:9d:1b:1b:21:75:
53:43:9f:8d:c8:13:f1:13:ec:78:56:91:39:35:73:6e:8e:63:
50:25:80:1e:c7:1b:00:cd:4b:9c:e4:04:67:6e:75:93:16:cf:
f5:21:8c:87:7b:78:d6:33:b7:ec:c8:78:8c:b8:9b:99:f7:68:
3a:f0:64:76:82:39:fe:d3:59:f2:84:cd:a9:70:6a:33:cf:18:
85:f4:71:e2:9d:79:b1:94:04:cb:88:4d:17:c7:fa:f3:d9:d1:
ff:fe:4a:b1:73:2e:6e:7d:99:a7:60:c1:0a:9c:ee:40:28:59:
99:cd:6e:2c:90:0f:dc:e9:5a:97:76:b2:c3:54:8b:ff:59:d5:
c5:61:8d:f3:54:d4:13:43:3b:0c:c5:65:63:74:f0:27:9c:f9:
01:3c:d5:ce:69:f2:1f:9c:b7:b2:a2:2b:0d:b0:b0:9e:8d:bc:
1d:3c:d3:e9:92:91:f9:1e:8c:30:a7:8a:47:9b:24:58:59:67:
bc:8b:2a:db:8f:f0:f3:3d:a1:c3:a1:ba:de:2e:3c:19:1b:c3:
79:72:48:06:8a:18:97:8b:c1:dd:29:7c:cd:5c:67:99:e0:4e:
7f:b1:27:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:05 2025 by rpki-client