Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e3133372e37362e302f32342d3234203d3e20313336373837.roa
File: 34352e3133372e37362e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: eQW9syDOAQ/ngBbJNyg2CEQG552YtvucflNnK2Tu+mk=
Subject key identifier: 89:9F:72:DB:C0:12:AD:33:D7:C8:34:3B:96:4D:62:D3:65:FE:37:CE
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 1BB638CD000A018C8D04AAA4A61E23A914BD6624
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e3133372e37362e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 19:44:40 +0000
ROA not before: Fri 27 Dec 2024 19:39:40 +0000
ROA not after: Fri 26 Dec 2025 19:44:40 +0000
asID: 136787
IP address blocks: 45.137.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:b6:38:cd:00:0a:01:8c:8d:04:aa:a4:a6:1e:23:a9:14:bd:66:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Dec 27 19:39:40 2024 GMT
Not After : Dec 26 19:44:40 2025 GMT
Subject: CN=899F72DBC012AD33D7C8343B964D62D365FE37CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:65:1d:f3:93:18:a3:d3:22:9d:af:d9:d5:23:
b6:dd:ee:d0:e3:a2:7c:25:f8:57:ef:e3:31:79:d1:
aa:41:8d:cc:76:de:c7:fe:ed:f8:e9:ec:20:72:75:
ad:a1:6a:ad:c7:d1:5e:f5:c0:3b:70:3d:78:b3:1d:
7e:03:04:2c:56:12:a4:73:71:79:1f:96:45:3e:76:
9a:a6:6d:c5:f0:74:3c:73:a2:e0:19:39:ba:34:39:
77:88:36:14:10:d2:33:2c:ad:e4:71:c4:d2:c4:1d:
ed:88:09:6a:95:63:f6:d9:e3:60:9b:3b:3b:64:10:
2d:1f:4b:21:e5:f5:11:2c:6c:2a:06:ba:81:9a:20:
7a:90:e4:11:84:ae:04:f1:e3:af:6d:5d:37:37:98:
66:4b:3b:20:0f:d6:28:ac:af:ed:9d:6a:c3:a4:7f:
2d:47:4e:91:22:ff:1f:e0:cf:65:05:69:ca:5d:23:
7f:27:c4:28:a3:71:df:3d:01:b2:9a:7e:a1:ba:50:
ea:34:80:52:d9:89:56:62:c9:d3:fa:f2:e3:b4:aa:
b2:d8:36:45:92:f4:76:a8:75:62:e3:90:a9:f8:dc:
da:0e:2a:79:4d:0f:7d:f8:e2:94:36:3d:b6:f9:95:
16:4f:65:99:7d:f7:a3:c2:0f:06:2a:3a:d1:84:c6:
8f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:9F:72:DB:C0:12:AD:33:D7:C8:34:3B:96:4D:62:D3:65:FE:37:CE
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e3133372e37362e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.76.0/24
Signature Algorithm: sha256WithRSAEncryption
16:5e:39:30:c6:c7:b4:cd:d8:7d:a2:b7:fc:8f:11:cb:82:b7:
34:2f:5f:d3:80:ba:6b:ad:24:df:09:78:b0:bc:9b:27:c8:ff:
41:25:44:c0:5f:d3:34:b1:58:28:61:85:dc:86:44:57:f9:93:
d2:f0:7e:6f:64:09:db:2e:ab:27:e2:54:5a:20:08:af:86:66:
e4:a9:7e:3e:b3:47:e7:6a:f1:4b:b1:c0:39:71:40:b1:db:44:
54:0d:23:7f:7e:55:fb:89:5d:4b:91:fa:77:58:d0:2b:2e:fc:
72:49:91:46:62:cb:e7:d9:e1:d4:2c:8c:90:52:7f:c9:37:e9:
8b:e1:be:e4:c1:28:8d:85:a9:c6:37:d2:0a:56:2e:39:af:a8:
76:7d:c4:fe:72:0f:95:76:51:dc:39:e8:cc:f0:5d:b8:d8:45:
92:0b:12:3e:f6:69:49:6e:b2:de:ff:c1:f2:be:0a:ea:df:01:
4e:7c:e4:ed:83:7a:e4:b2:3b:3a:e4:59:84:90:68:9e:69:73:
32:06:b2:ee:52:d0:cb:9b:89:f7:94:53:a1:f0:20:3b:eb:ec:
af:ef:14:96:da:0e:aa:57:a2:ca:06:a9:bd:ef:b8:2e:93:e5:
b8:e4:c9:2a:64:c1:8c:02:12:7b:9b:e8:29:47:c7:9f:9b:bd:
e1:d8:02:8f
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUG7Y4zQAKAYyNBKqkph4jqRS9ZiQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNDEyMjcxOTM5NDBaFw0yNTEyMjYxOTQ0NDBaMDMxMTAvBgNV
BAMTKDg5OUY3MkRCQzAxMkFEMzNEN0M4MzQzQjk2NEQ2MkQzNjVGRTM3Q0UwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+ZR3zkxij0yKdr9nVI7bd7tDj
onwl+Ffv4zF50apBjcx23sf+7fjp7CByda2haq3H0V71wDtwPXizHX4DBCxWEqRz
cXkflkU+dpqmbcXwdDxzouAZObo0OXeINhQQ0jMsreRxxNLEHe2ICWqVY/bZ42Cb
OztkEC0fSyHl9REsbCoGuoGaIHqQ5BGErgTx469tXTc3mGZLOyAP1iisr+2dasOk
fy1HTpEi/x/gz2UFacpdI38nxCijcd89AbKafqG6UOo0gFLZiVZiydP68uO0qrLY
NkWS9HaodWLjkKn43NoOKnlND3344pQ2Pbb5lRZPZZl996PCDwYqOtGExo/vAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUiZ9y28ASrTPXyDQ7lk1i02X+N84wHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzQzNTJlMzEzMzM3MmUzNzM2
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
LYlMMA0GCSqGSIb3DQEBCwUAA4IBAQAWXjkwxse0zdh9orf8jxHLgrc0L1/TgLpr
rSTfCXiwvJsnyP9BJUTAX9M0sVgoYYXchkRX+ZPS8H5vZAnbLqsn4lRaIAivhmbk
qX4+s0fnavFLscA5cUCx20RUDSN/flX7iV1Lkfp3WNArLvxySZFGYsvn2eHULIyQ
Un/JN+mL4b7kwSiNhanGN9IKVi45r6h2fcT+cg+VdlHcOejM8F242EWSCxI+9mlJ
brLe/8Hyvgrq3wFOfOTtg3rksjs65FmEkGieaXMyBrLuUtDLm4n3lFOh8CA76+yv
7xSW2g6qV6LKBqm977guk+W45MkqZMGMAhJ7m+gpR8efm73h2AKP
-----END CERTIFICATE-----
Generated at Fri Apr 4 16:10:12 2025 by rpki-client