Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133342e3232342e302f32342d3234203d3e20313437303439.roa
File: 34352e3133342e3232342e302f32342d3234203d3e20313437303439.roa (raw, json)
Hash identifier: nHAhu9tAJAmk03B/c5JmGEZegs+Bfa0zwHaKQi9F7cY=
Subject key identifier: E2:9A:13:02:A0:3E:A1:1A:A0:D3:46:03:B3:DB:E5:E3:4D:83:B5:22
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 35DC05006A27608E27B479245C769EADB443B83B
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133342e3232342e302f32342d3234203d3e20313437303439.roa
Signing time: Mon 19 Aug 2024 16:04:42 +0000
ROA not before: Mon 19 Aug 2024 15:59:42 +0000
ROA not after: Mon 18 Aug 2025 16:04:42 +0000
asID: 147049
IP address blocks: 45.134.224.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:dc:05:00:6a:27:60:8e:27:b4:79:24:5c:76:9e:ad:b4:43:b8:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Aug 19 15:59:42 2024 GMT
Not After : Aug 18 16:04:42 2025 GMT
Subject: CN=E29A1302A03EA11AA0D34603B3DBE5E34D83B522
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:58:35:c6:af:1a:04:34:ab:60:e6:a7:e2:86:
12:1c:7a:e1:fe:1d:b7:43:c5:bd:95:55:8d:55:3b:
ef:5f:d5:52:7b:d3:4f:9a:ed:b9:b8:bd:9a:8e:9b:
1d:ae:14:dd:46:f8:08:8d:9d:3c:46:47:39:51:ae:
1c:1a:2c:74:05:cf:47:88:80:e1:d6:39:10:4a:11:
cb:1a:89:3d:d8:ff:78:c7:3b:14:ee:ac:5e:83:ce:
2a:23:98:a3:cb:c3:02:3d:43:e6:cc:44:a5:16:d0:
cc:05:6b:5e:ce:b7:31:cb:b2:1f:d6:7a:d1:a6:3a:
61:16:f4:6c:ad:34:1d:56:2c:f8:f2:d0:4b:46:d7:
e9:37:27:17:f2:73:90:06:16:2a:a5:bb:e6:f6:76:
99:0e:45:9c:7b:da:02:2a:6f:d3:e3:51:2d:7e:2a:
9a:4a:1b:05:ac:5f:62:a1:c1:62:62:24:23:98:18:
e2:75:65:3a:2d:25:c6:bd:ac:07:c5:05:88:bb:c2:
0c:08:91:44:5c:a9:4f:2a:96:85:18:e5:af:1d:a9:
9e:f4:de:c4:9a:2b:35:da:c3:57:a2:ad:20:c2:59:
e5:ad:6d:88:73:af:5c:28:dc:65:93:b2:9b:f2:e0:
d9:44:76:9a:3c:44:73:8e:87:c3:c8:db:16:81:4c:
c0:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:9A:13:02:A0:3E:A1:1A:A0:D3:46:03:B3:DB:E5:E3:4D:83:B5:22
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133342e3232342e302f32342d3234203d3e20313437303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.224.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:6e:80:1e:f7:cd:c7:d3:06:88:d7:e7:de:53:04:ec:60:52:
2c:6d:7f:82:1a:3c:df:67:d5:a9:52:37:fd:43:71:27:fc:ac:
cf:a2:43:29:48:8a:a8:0b:d0:65:0a:a4:39:d2:d3:72:b1:30:
bb:d3:2e:d1:84:be:22:eb:31:0a:16:e1:4f:2c:06:79:6e:fd:
36:26:84:a6:e6:e3:35:ab:cf:2b:61:c9:a9:ea:61:67:53:f7:
e6:a6:9d:ee:33:f6:b8:ea:c1:e1:c5:90:1d:09:70:47:07:18:
fe:f4:ba:9d:fd:29:10:ce:be:01:98:0c:72:81:e3:b9:d7:81:
65:ce:89:70:41:12:2b:32:05:17:3f:62:59:03:9a:e2:4b:a4:
de:05:50:54:4d:18:0d:f7:bc:85:e6:20:40:fc:e9:8f:bc:54:
37:ad:80:c6:9f:55:a2:80:61:ee:51:30:a5:ca:09:fb:6e:96:
59:f3:79:e2:24:1d:d9:fc:be:cc:08:fa:9f:e5:97:6b:e1:0b:
7e:25:fc:4c:3b:2d:07:07:07:4b:c6:7c:11:d1:ae:32:89:ca:
2b:0d:c5:77:f5:58:07:2e:d0:92:c7:1f:7b:9c:d6:24:5c:b7:
e6:2c:29:e6:5f:ea:9f:b2:e1:6c:2f:fa:17:fd:b1:46:24:d0:
bd:da:ae:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:53:13 2025 by rpki-client