Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e39302e3232312e302f32342d3234203d3e20323034313730.roa
File: 34352e39302e3232312e302f32342d3234203d3e20323034313730.roa (raw, json)
Hash identifier: T7DIdAe+4DqMe9tiWFxAFBwcpwmAyFQWiOp3DyE4xUQ=
Subject key identifier: 0D:BF:49:06:0A:B0:84:04:93:36:7C:9F:55:77:B2:4C:7A:63:D8:A1
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 0226B4F9B4289A764236F481E3E972514AAC3BD6
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e39302e3232312e302f32342d3234203d3e20323034313730.roa
Signing time: Mon 26 Feb 2024 08:52:58 +0000
ROA not before: Mon 26 Feb 2024 08:47:58 +0000
ROA not after: Mon 24 Feb 2025 08:52:58 +0000
asID: 204170
IP address blocks: 45.90.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:26:b4:f9:b4:28:9a:76:42:36:f4:81:e3:e9:72:51:4a:ac:3b:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 26 08:47:58 2024 GMT
Not After : Feb 24 08:52:58 2025 GMT
Subject: CN=0DBF49060AB0840493367C9F5577B24C7A63D8A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:70:d2:db:04:05:9c:52:1e:ea:30:f0:a3:0c:
08:33:0f:3a:6a:17:d0:6f:69:e1:36:d4:ab:9f:bd:
f2:b9:e3:44:33:c9:ab:10:3b:d9:c2:cb:90:61:e6:
d7:f5:45:0b:ed:f7:fa:e9:d6:8a:22:5d:ff:08:5f:
66:e0:fe:47:e4:08:8d:44:94:2c:ca:d3:80:85:fa:
fc:5e:72:b0:cc:4e:af:c8:12:27:f3:f5:e1:6a:1e:
73:ff:61:44:7a:bd:aa:e4:30:bf:76:c3:b6:a3:54:
18:b9:12:03:42:b7:9e:c4:c5:37:47:58:d8:8c:72:
cd:7f:50:c3:e0:0f:ba:99:c8:71:10:39:87:42:1a:
23:ba:10:d6:1e:14:51:0f:5b:2c:23:6c:a4:4c:11:
cd:f0:69:9b:52:b8:6e:3e:53:48:fb:55:d3:61:84:
21:e7:3d:7c:c1:96:7e:00:99:86:f1:88:de:6e:9d:
d5:5f:1b:37:0f:d1:ab:a4:68:fb:d7:73:e7:56:f9:
b3:73:9b:3d:b5:63:73:36:b9:2d:ad:71:fe:3a:dd:
fb:0e:55:f4:cd:98:78:be:68:80:cb:1d:4e:25:f6:
75:34:e5:bc:bf:80:55:19:73:5e:e2:51:c3:cc:d9:
71:d5:a5:41:38:5e:cd:c5:6c:12:86:a8:89:d1:67:
53:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:BF:49:06:0A:B0:84:04:93:36:7C:9F:55:77:B2:4C:7A:63:D8:A1
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e39302e3232312e302f32342d3234203d3e20323034313730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.221.0/24
Signature Algorithm: sha256WithRSAEncryption
97:4f:57:9f:a4:11:89:f4:b2:b2:82:49:92:24:92:73:59:bc:
de:d2:72:39:84:94:31:85:08:ae:82:86:be:03:bc:16:ad:8f:
3f:ba:63:13:90:56:9b:e2:43:87:05:2e:10:a0:47:a2:66:f1:
ab:42:ed:e6:f6:43:48:c2:1d:fe:9a:79:10:88:d0:f6:e2:36:
04:a4:87:65:3c:b3:0c:db:a0:3d:d0:47:00:5f:3b:77:60:5d:
ed:94:32:2c:e5:ae:27:c3:cc:4a:97:13:a3:74:89:2e:92:88:
49:5a:1d:6f:dd:eb:49:e9:b5:38:f7:dd:aa:8b:6d:ff:76:b3:
d5:f1:fe:54:a4:dd:b1:64:96:4d:30:b8:6e:e6:a1:3c:65:0b:
1a:6b:1e:88:1f:44:7b:b2:b8:ea:1c:5e:8f:01:1f:8a:aa:65:
de:2d:17:ec:a0:6a:92:86:ef:4e:0b:d7:39:7e:c1:2d:4f:22:
ea:2e:38:ba:f6:0b:59:6c:ec:54:99:5b:08:54:5a:c7:0d:f5:
45:67:62:54:6c:26:bf:9c:44:53:67:11:18:63:70:56:d9:22:
0f:d8:03:08:17:9a:87:bc:c5:7f:ee:eb:7e:33:6d:7a:27:ad:
d3:69:a6:64:76:95:04:82:82:2c:86:ae:64:66:3d:9a:04:f4:
c1:8e:cf:e9
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUAia0+bQomnZCNvSB4+lyUUqsO9YwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDhmYjliYTgyN2U2ZjEwYTdhZjM3NDkwODAzZGQ1YTA3
NjM5NzIzNTAeFw0yNDAyMjYwODQ3NThaFw0yNTAyMjQwODUyNThaMDMxMTAvBgNV
BAMTKDBEQkY0OTA2MEFCMDg0MDQ5MzM2N0M5RjU1NzdCMjRDN0E2M0Q4QTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZcNLbBAWcUh7qMPCjDAgzDzpq
F9BvaeE21KufvfK540QzyasQO9nCy5Bh5tf1RQvt9/rp1ooiXf8IX2bg/kfkCI1E
lCzK04CF+vxecrDMTq/IEifz9eFqHnP/YUR6varkML92w7ajVBi5EgNCt57ExTdH
WNiMcs1/UMPgD7qZyHEQOYdCGiO6ENYeFFEPWywjbKRMEc3waZtSuG4+U0j7VdNh
hCHnPXzBln4AmYbxiN5undVfGzcP0aukaPvXc+dW+bNzmz21Y3M2uS2tcf463fsO
VfTNmHi+aIDLHU4l9nU05by/gFUZc17iUcPM2XHVpUE4Xs3FbBKGqInRZ1MnAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUDb9JBgqwhASTNnyfVXeyTHpj2KEwHwYDVR0j
BBgwFoAUCPubqCfm8Qp683SQgD3VoHY5cjUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzIvMDhGQjlCQTgyN0U2RjEwQTdBRjM3NDkwODAzREQ1QTA3NjM5NzIzNS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NQdWJxQ2ZtOFFwNjgzU1FnRDNWb0hZ
NWNqVS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzIvMzQzNTJlMzkzMDJlMzIzMjMx
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMDM0MzEzNzMwLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
LVrdMA0GCSqGSIb3DQEBCwUAA4IBAQCXT1efpBGJ9LKygkmSJJJzWbze0nI5hJQx
hQiugoa+A7wWrY8/umMTkFab4kOHBS4QoEeiZvGrQu3m9kNIwh3+mnkQiND24jYE
pIdlPLMM26A90EcAXzt3YF3tlDIs5a4nw8xKlxOjdIkukohJWh1v3etJ6bU4992q
i23/drPV8f5UpN2xZJZNMLhu5qE8ZQsaax6IH0R7srjqHF6PAR+KqmXeLRfsoGqS
hu9OC9c5fsEtTyLqLji69gtZbOxUmVsIVFrHDfVFZ2JUbCa/nERTZxEYY3BW2SIP
2AMIF5qHvMV/7ut+M216J63TaaZkdpUEgoIshq5kZj2aBPTBjs/p
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:38:49 2025 by rpki-client